000000000000000
[ 1502.525693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1502.527212] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1502.528756] CPU: 1 PID: 8130 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1502.530231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1502.531966] Call Trace:
[ 1502.532535]  dump_stack+0x107/0x167
[ 1502.533303]  should_fail.cold+0x5/0xa
[ 1502.534121]  __alloc_pages_nodemask+0x182/0x600
[ 1502.535102]  ? lock_acquire+0x197/0x470
[ 1502.535943]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1502.537216]  ? find_held_lock+0x2c/0x110
[ 1502.538096]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1502.539205]  ? lock_downgrade+0x6d0/0x6d0
[ 1502.540070]  ? mark_held_locks+0x9e/0xe0
[ 1502.540927]  alloc_pages_current+0x187/0x280
[ 1502.541871]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1502.542973]  ? replace_page_cache_page+0x1200/0x1200
[ 1502.544050]  pte_alloc_one+0x16/0x1a0
[ 1502.544850]  ? replace_page_cache_page+0x1200/0x1200
[ 1502.545924]  handle_mm_fault+0x2ab2/0x3500
[ 1502.546820]  ? __lock_acquire+0x1657/0x5b00
[ 1502.547728]  ? __pmd_alloc+0x630/0x630
[ 1502.548561]  ? vmacache_find+0x55/0x2a0
[ 1502.549412]  do_user_addr_fault+0x56e/0xc60
[ 1502.550346]  exc_page_fault+0xa2/0x1a0
[ 1502.551174]  asm_exc_page_fault+0x1e/0x30
[ 1502.552051] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1502.553191] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1502.557064] RSP: 0018:ffff888042fa77b8 EFLAGS: 00050246
[ 1502.558197] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1502.559692] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042fa7888
[ 1502.561200] RBP: ffff888042fa7888 R08: 0000000000000001 R09: ffff888042fa7907
[ 1502.562709] R10: ffffed10085f4f20 R11: 0000000000000001 R12: 0000000020000100
[ 1502.564218] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1502.565759]  _copy_from_user+0x172/0x1b0
[ 1502.566630]  move_addr_to_kernel.part.0+0x31/0x110
[ 1502.567665]  move_addr_to_kernel+0x4f/0x70
[ 1502.568569]  io_connect+0x47a/0x610
[ 1502.569334]  ? io_prep_rw+0x1050/0x1050
[ 1502.570207]  ? __lock_acquire+0xbb1/0x5b00
[ 1502.571105]  io_issue_sqe+0x1611/0x77d0
[ 1502.571951]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1502.573053]  ? lock_chain_count+0x20/0x20
[ 1502.573941]  ? __is_insn_slot_addr+0x14c/0x290
[ 1502.574902]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1502.576005]  ? io_connect+0x610/0x610
[ 1502.576816]  ? lock_acquire+0x197/0x470
[ 1502.577658]  ? find_held_lock+0x2c/0x110
[ 1502.578535]  ? __fget_files+0x2cf/0x520
[ 1502.579377]  ? lock_downgrade+0x6d0/0x6d0
[ 1502.580256]  __io_queue_sqe+0x90/0x9d0
[ 1502.581079]  ? io_issue_sqe+0x77d0/0x77d0
[ 1502.581955]  ? __fget_files+0x2f8/0x520
[ 1502.582819]  io_submit_sqes+0x44a8/0x8610
[ 1502.583725]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.584776]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.585812]  ? find_held_lock+0x2c/0x110
[ 1502.586672]  ? io_submit_sqes+0x8610/0x8610
[ 1502.587585]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1502.588616]  ? wait_for_completion_io+0x270/0x270
[ 1502.589639]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1502.590621]  ? vfs_write+0x354/0xb10
[ 1502.591411]  ? fput_many+0x2f/0x1a0
[ 1502.592171]  ? ksys_write+0x1a9/0x260
[ 1502.592967]  ? __ia32_sys_read+0xb0/0xb0
[ 1502.593842]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1502.594938]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1502.596024]  do_syscall_64+0x33/0x40
[ 1502.596803]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1502.597886] RIP: 0033:0x7ff5992a9b19
[ 1502.598690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1502.602722] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1502.604387] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1502.605947] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1502.607497] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1502.609063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1502.610633] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:23:32 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x5aaf, 0xcacb, 0x0, 0x0, 0x0)

[ 1502.652410] FAULT_INJECTION: forcing a failure.
[ 1502.652410] name failslab, interval 1, probability 0, space 0, times 0
[ 1502.654951] CPU: 0 PID: 8129 Comm: syz-executor.1 Not tainted 5.10.246 #1
[ 1502.656401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1502.658174] Call Trace:
[ 1502.658746]  dump_stack+0x107/0x167
[ 1502.659521]  should_fail.cold+0x5/0xa
[ 1502.660327]  ? create_object.isra.0+0x3a/0xa30
[ 1502.661300]  should_failslab+0x5/0x20
[ 1502.662117]  kmem_cache_alloc+0x5b/0x310
[ 1502.662978]  ? mark_held_locks+0x9e/0xe0
[ 1502.663839]  create_object.isra.0+0x3a/0xa30
[ 1502.664765]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1502.665850]  kmem_cache_alloc_bulk+0x168/0x320
[ 1502.666818]  io_submit_sqes+0x6fe4/0x8610
[ 1502.667750]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.668809]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.669839]  ? find_held_lock+0x2c/0x110
[ 1502.670707]  ? io_submit_sqes+0x8610/0x8610
[ 1502.671625]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1502.672642]  ? wait_for_completion_io+0x270/0x270
[ 1502.673680]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1502.674659]  ? vfs_write+0x354/0xb10
[ 1502.675449]  ? fput_many+0x2f/0x1a0
[ 1502.676214]  ? ksys_write+0x1a9/0x260
[ 1502.677023]  ? __ia32_sys_read+0xb0/0xb0
[ 1502.677898]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1502.679004]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1502.680101]  do_syscall_64+0x33/0x40
[ 1502.680888]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1502.681978] RIP: 0033:0x7fde603ecb19
[ 1502.682766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1502.686684] RSP: 002b:00007fde5d962188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1502.688298] RAX: ffffffffffffffda RBX: 00007fde604fff60 RCX: 00007fde603ecb19
[ 1502.689817] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1502.691325] RBP: 00007fde5d9621d0 R08: 0000000000000000 R09: 0000000000000000
[ 1502.692834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1502.694380] R13: 00007ffcfd59f76f R14: 00007fde5d962300 R15: 0000000000022000
10:23:33 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/wireless\x00')
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
ioctl$sock_inet_SIOCGIFDSTADDR(r5, 0x8917, &(0x7f0000000040)={'macsec0\x00', {0x2, 0x0, @loopback}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:33 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

10:23:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:33 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup(r3)
getsockopt$bt_sco_SCO_OPTIONS(r4, 0x11, 0x1, &(0x7f0000000080)=""/198, &(0x7f0000000180)=0xc6)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1502.899108] FAULT_INJECTION: forcing a failure.
[ 1502.899108] name failslab, interval 1, probability 0, space 0, times 0
[ 1502.901840] CPU: 1 PID: 8147 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1502.903301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1502.905060] Call Trace:
[ 1502.905639]  dump_stack+0x107/0x167
[ 1502.906410]  should_fail.cold+0x5/0xa
[ 1502.907219]  ? ptlock_alloc+0x1d/0x70
[ 1502.908027]  should_failslab+0x5/0x20
[ 1502.908843]  kmem_cache_alloc+0x5b/0x310
[ 1502.909728]  ptlock_alloc+0x1d/0x70
[ 1502.910506]  pte_alloc_one+0x68/0x1a0
[ 1502.911309]  ? replace_page_cache_page+0x1200/0x1200
[ 1502.912381]  handle_mm_fault+0x2ab2/0x3500
[ 1502.913284]  ? __schedule+0x82c/0x1ea0
[ 1502.914127]  ? __pmd_alloc+0x630/0x630
[ 1502.914957]  ? vmacache_find+0x55/0x2a0
[ 1502.915813]  do_user_addr_fault+0x56e/0xc60
[ 1502.916742]  exc_page_fault+0xa2/0x1a0
[ 1502.917579]  asm_exc_page_fault+0x1e/0x30
[ 1502.918459] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1502.919597] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1502.923487] RSP: 0018:ffff8880410277b8 EFLAGS: 00050246
[ 1502.924612] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1502.926129] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041027888
[ 1502.927643] RBP: ffff888041027888 R08: 0000000000000001 R09: ffff888041027907
[ 1502.929143] R10: ffffed1008204f20 R11: 0000000000000001 R12: 0000000020000100
[ 1502.930650] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1502.932182]  _copy_from_user+0x172/0x1b0
[ 1502.933050]  move_addr_to_kernel.part.0+0x31/0x110
[ 1502.934102]  move_addr_to_kernel+0x4f/0x70
[ 1502.934998]  io_connect+0x47a/0x610
[ 1502.935781]  ? io_prep_rw+0x1050/0x1050
[ 1502.936645]  ? __lock_acquire+0xbb1/0x5b00
[ 1502.937558]  io_issue_sqe+0x1611/0x77d0
[ 1502.938411]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1502.939523]  ? lock_chain_count+0x20/0x20
[ 1502.940405]  ? __is_insn_slot_addr+0x14c/0x290
[ 1502.941375]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1502.942491]  ? io_connect+0x610/0x610
[ 1502.943301]  ? lock_acquire+0x197/0x470
[ 1502.944140]  ? find_held_lock+0x2c/0x110
[ 1502.945007]  ? __fget_files+0x2cf/0x520
[ 1502.945875]  ? lock_downgrade+0x6d0/0x6d0
[ 1502.946754]  __io_queue_sqe+0x90/0x9d0
[ 1502.947588]  ? io_issue_sqe+0x77d0/0x77d0
[ 1502.948469]  ? __fget_files+0x2f8/0x520
[ 1502.949327]  io_submit_sqes+0x44a8/0x8610
[ 1502.950239]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.951286]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1502.952307]  ? find_held_lock+0x2c/0x110
[ 1502.953165]  ? io_submit_sqes+0x8610/0x8610
[ 1502.954087]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1502.955103]  ? wait_for_completion_io+0x270/0x270
[ 1502.956131]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1502.957119]  ? vfs_write+0x354/0xb10
[ 1502.957923]  ? fput_many+0x2f/0x1a0
[ 1502.958687]  ? ksys_write+0x1a9/0x260
[ 1502.959498]  ? __ia32_sys_read+0xb0/0xb0
[ 1502.960362]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1502.961467]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1502.962576]  do_syscall_64+0x33/0x40
[ 1502.963359]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1502.964435] RIP: 0033:0x7ff5992a9b19
[ 1502.965219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1502.969105] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1502.970720] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1502.972214] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1502.973741] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1502.975226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1502.976721] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:23:33 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000001000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000008, 0xa050, r0, 0x10000000)
syz_io_uring_submit(r1, r4, &(0x7f00000000c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000040)=@ethernet={0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x22}}, 0x0, 0x0, 0x1}, 0x7fffffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:33 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x6ae7, &(0x7f0000000040)={0x0, 0xd726, 0x10, 0x2, 0x3d3, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000140)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x110, r8, 0x0)

10:23:46 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}], 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = eventfd(0x5)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
io_uring_enter(r9, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x800004, 0x110, r9, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r3, 0x9, {0x0, r8}, 0xfffffffd, 0x2}, 0x91)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

10:23:46 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

10:23:46 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

10:23:46 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000680)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000600)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r3, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=@sco, 0x80, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/152, 0x98}, {&(0x7f0000000240)=""/115, 0x73}, {&(0x7f0000000340)=""/71, 0x47}, {&(0x7f00000003c0)=""/188, 0xbc}], 0x4, &(0x7f0000000480)=""/144, 0x90}, 0x0, 0x40002000, 0x1, {0x2}}, 0x7)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x2000, @fd_index=0x7, 0x5, 0x7, 0x8}, 0x7f)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r7=>r6, @ANYBLOB="010ed10005ff7f000000000000653000"])
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(r1, 0x0, &(0x7f00000005c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0xa080}, 0x0, {0x0, r10}}, 0x400)

[ 1516.333863] FAULT_INJECTION: forcing a failure.
[ 1516.333863] name failslab, interval 1, probability 0, space 0, times 0
[ 1516.336771] CPU: 1 PID: 8179 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1516.337600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1516.338610] Call Trace:
[ 1516.338937]  dump_stack+0x107/0x167
[ 1516.339384]  should_fail.cold+0x5/0xa
[ 1516.339842]  ? create_object.isra.0+0x3a/0xa30
[ 1516.340389]  should_failslab+0x5/0x20
[ 1516.340843]  kmem_cache_alloc+0x5b/0x310
[ 1516.341338]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1516.342065]  create_object.isra.0+0x3a/0xa30
[ 1516.342589]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1516.343199]  kmem_cache_alloc+0x159/0x310
[ 1516.343699]  ptlock_alloc+0x1d/0x70
[ 1516.344137]  pte_alloc_one+0x68/0x1a0
[ 1516.344593]  ? replace_page_cache_page+0x1200/0x1200
[ 1516.345208]  handle_mm_fault+0x2ab2/0x3500
[ 1516.345716]  ? __lock_acquire+0x1657/0x5b00
[ 1516.346241]  ? __pmd_alloc+0x630/0x630
[ 1516.346714]  ? vmacache_find+0x55/0x2a0
[ 1516.347197]  do_user_addr_fault+0x56e/0xc60
[ 1516.347716]  exc_page_fault+0xa2/0x1a0
[ 1516.348190]  asm_exc_page_fault+0x1e/0x30
[ 1516.348698] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1516.349356] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1516.351572] RSP: 0018:ffff888040df77b8 EFLAGS: 00050246
[ 1516.352210] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1516.353073] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888040df7888
[ 1516.353947] RBP: ffff888040df7888 R08: 0000000000000001 R09: ffff888040df7907
[ 1516.354806] R10: ffffed10081bef20 R11: 0000000000000001 R12: 0000000020000100
[ 1516.355664] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1516.356543]  _copy_from_user+0x172/0x1b0
[ 1516.357043]  move_addr_to_kernel.part.0+0x31/0x110
[ 1516.357634]  move_addr_to_kernel+0x4f/0x70
[ 1516.358152]  io_connect+0x47a/0x610
[ 1516.358586]  ? io_prep_rw+0x1050/0x1050
[ 1516.359069]  ? __lock_acquire+0xbb1/0x5b00
[ 1516.359576]  io_issue_sqe+0x1611/0x77d0
[ 1516.360053]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.360679]  ? lock_chain_count+0x20/0x20
[ 1516.361172]  ? __is_insn_slot_addr+0x14c/0x290
[ 1516.361722]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.362356]  ? io_connect+0x610/0x610
[ 1516.362809]  ? lock_acquire+0x197/0x470
[ 1516.363284]  ? find_held_lock+0x2c/0x110
[ 1516.363773]  ? __fget_files+0x2cf/0x520
[ 1516.364248]  ? lock_downgrade+0x6d0/0x6d0
[ 1516.364752]  __io_queue_sqe+0x90/0x9d0
[ 1516.365225]  ? io_issue_sqe+0x77d0/0x77d0
[ 1516.365725]  ? __fget_files+0x2f8/0x520
[ 1516.366212]  io_submit_sqes+0x44a8/0x8610
[ 1516.366729]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.367322]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.367897]  ? find_held_lock+0x2c/0x110
[ 1516.368382]  ? io_submit_sqes+0x8610/0x8610
[ 1516.368898]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1516.369471]  ? wait_for_completion_io+0x270/0x270
[ 1516.370050]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1516.370602]  ? vfs_write+0x354/0xb10
[ 1516.371044]  ? fput_many+0x2f/0x1a0
[ 1516.371481]  ? ksys_write+0x1a9/0x260
[ 1516.371933]  ? __ia32_sys_read+0xb0/0xb0
[ 1516.372425]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1516.373048]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1516.373674]  do_syscall_64+0x33/0x40
[ 1516.374124]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1516.374742] RIP: 0033:0x7feaf290db19
[ 1516.375188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1516.377378] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1516.378295] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1516.379141] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1516.379976] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1516.380819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1516.381664] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1516.409601] FAULT_INJECTION: forcing a failure.
[ 1516.409601] name failslab, interval 1, probability 0, space 0, times 0
[ 1516.411205] CPU: 1 PID: 8182 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1516.412030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1516.413035] Call Trace:
[ 1516.413359]  dump_stack+0x107/0x167
[ 1516.413812]  should_fail.cold+0x5/0xa
[ 1516.414282]  ? create_object.isra.0+0x3a/0xa30
[ 1516.414833]  should_failslab+0x5/0x20
[ 1516.415293]  kmem_cache_alloc+0x5b/0x310
[ 1516.415794]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1516.416540]  create_object.isra.0+0x3a/0xa30
[ 1516.417072]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1516.417689]  kmem_cache_alloc+0x159/0x310
[ 1516.418200]  ptlock_alloc+0x1d/0x70
[ 1516.418632]  pte_alloc_one+0x68/0x1a0
[ 1516.419087]  ? replace_page_cache_page+0x1200/0x1200
[ 1516.419690]  handle_mm_fault+0x2ab2/0x3500
[ 1516.420198]  ? __lock_acquire+0x1657/0x5b00
[ 1516.420717]  ? __pmd_alloc+0x630/0x630
[ 1516.421197]  ? vmacache_find+0x55/0x2a0
[ 1516.421706]  do_user_addr_fault+0x56e/0xc60
[ 1516.422238]  exc_page_fault+0xa2/0x1a0
[ 1516.422706]  asm_exc_page_fault+0x1e/0x30
[ 1516.423205] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1516.423851] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1516.426057] RSP: 0018:ffff88800e2177b8 EFLAGS: 00050246
[ 1516.426712] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1516.427572] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88800e217888
[ 1516.428426] RBP: ffff88800e217888 R08: 0000000000000001 R09: ffff88800e217907
[ 1516.429275] R10: ffffed1001c42f20 R11: 0000000000000001 R12: 0000000020000100
[ 1516.430142] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1516.431017]  _copy_from_user+0x172/0x1b0
[ 1516.431523]  move_addr_to_kernel.part.0+0x31/0x110
[ 1516.432117]  move_addr_to_kernel+0x4f/0x70
[ 1516.432628]  io_connect+0x47a/0x610
[ 1516.433067]  ? io_prep_rw+0x1050/0x1050
[ 1516.433560]  ? __lock_acquire+0xbb1/0x5b00
[ 1516.434083]  io_issue_sqe+0x1611/0x77d0
[ 1516.434567]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.435192]  ? lock_chain_count+0x20/0x20
[ 1516.435685]  ? __is_insn_slot_addr+0x14c/0x290
[ 1516.436230]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.436853]  ? io_connect+0x610/0x610
[ 1516.437320]  ? lock_acquire+0x197/0x470
[ 1516.437800]  ? find_held_lock+0x2c/0x110
[ 1516.438291]  ? __fget_files+0x2cf/0x520
[ 1516.438764]  ? lock_downgrade+0x6d0/0x6d0
[ 1516.439264]  __io_queue_sqe+0x90/0x9d0
[ 1516.439729]  ? io_issue_sqe+0x77d0/0x77d0
[ 1516.440219]  ? __fget_files+0x2f8/0x520
[ 1516.440704]  io_submit_sqes+0x44a8/0x8610
[ 1516.441212]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.441808]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.442376]  ? find_held_lock+0x2c/0x110
[ 1516.442857]  ? io_submit_sqes+0x8610/0x8610
[ 1516.443374]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1516.443956]  ? wait_for_completion_io+0x270/0x270
[ 1516.444531]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1516.445090]  ? vfs_write+0x354/0xb10
[ 1516.445535]  ? fput_many+0x2f/0x1a0
[ 1516.445977]  ? ksys_write+0x1a9/0x260
[ 1516.446427]  ? __ia32_sys_read+0xb0/0xb0
[ 1516.446913]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1516.447545]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1516.448163]  do_syscall_64+0x33/0x40
[ 1516.448604]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1516.449232] RIP: 0033:0x7ff5992a9b19
[ 1516.449674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1516.451889] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1516.452812] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1516.453671] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1516.454525] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1516.455381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1516.456238] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:23:46 executing program 0:
r0 = syz_io_uring_setup(0x7da8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000080)=ANY=[@ANYBLOB="00000018000000", @ANYRES32=<r5=>r3, @ANYBLOB=' \x00\x00\x00\x00\x00\x00\x00./file0\x00'])
io_uring_enter(r5, 0x4d5f, 0x578b, 0x2, &(0x7f00000000c0)={[0x8]}, 0x8)

10:23:46 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

10:23:46 executing program 0:
r0 = syz_io_uring_setup(0x3b63, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x60d3, 0x318c, 0x2, &(0x7f0000000040)={[0x6]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xf, 0x10010, r4, 0x8000000)
syz_io_uring_setup(0x310c, &(0x7f0000000180)={0x0, 0x87d3, 0x0, 0x2, 0x8f, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000380)=@IORING_OP_WRITE={0x17, 0x0, 0x2007, @fd_index=0x4, 0x9, &(0x7f0000000340), 0x0, 0x10, 0x0, {0x0, r6}}, 0x6d47)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_evm(r7, &(0x7f00000000c0), &(0x7f0000000100)=@sha1={0x1, "e32fb2d63e21b48babfb7b8504a759cd5b71974f"}, 0x15, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:46 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000003, 0x4010, 0xffffffffffffffff, 0x8000000)
r8 = fsmount(0xffffffffffffffff, 0x0, 0x40)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r8, &(0x7f00000000c0)={0x84000, 0xe, 0x11}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r9}}, 0x95)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r10, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x2007, @fd_index=0x3, 0xa00, 0x0, 0x0, 0x4, 0x0, {0x2, r11}}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r12 = syz_io_uring_complete(r10)
io_uring_enter(r12, 0x5685, 0xffff, 0x0, &(0x7f0000000280)={[0xc863]}, 0x8)

10:23:46 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1516.629908] FAULT_INJECTION: forcing a failure.
[ 1516.629908] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1516.631386] CPU: 1 PID: 8200 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1516.632171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1516.633137] Call Trace:
[ 1516.633447]  dump_stack+0x107/0x167
[ 1516.633879]  should_fail.cold+0x5/0xa
[ 1516.634323]  __alloc_pages_nodemask+0x182/0x600
[ 1516.634853]  ? lock_acquire+0x197/0x470
[ 1516.635306]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1516.635991]  ? find_held_lock+0x2c/0x110
[ 1516.636459]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1516.637062]  ? lock_downgrade+0x6d0/0x6d0
[ 1516.637544]  ? mark_held_locks+0x9e/0xe0
[ 1516.638017]  alloc_pages_current+0x187/0x280
[ 1516.638530]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1516.639129]  ? replace_page_cache_page+0x1200/0x1200
[ 1516.639704]  pte_alloc_one+0x16/0x1a0
[ 1516.640139]  ? replace_page_cache_page+0x1200/0x1200
[ 1516.640726]  handle_mm_fault+0x2ab2/0x3500
[ 1516.641217]  ? __lock_acquire+0x1657/0x5b00
[ 1516.641708]  ? find_held_lock+0x2c/0x110
[ 1516.642179]  ? pgtable_bad+0x90/0x90
[ 1516.642611]  ? __pmd_alloc+0x630/0x630
[ 1516.643060]  ? vmacache_find+0x55/0x2a0
[ 1516.643527]  do_user_addr_fault+0x56e/0xc60
[ 1516.644023]  exc_page_fault+0xa2/0x1a0
[ 1516.644480]  asm_exc_page_fault+0x1e/0x30
[ 1516.644965] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1516.645651] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1516.647781] RSP: 0018:ffff88801f3377b8 EFLAGS: 00050287
[ 1516.648396] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1516.649217] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88801f337888
[ 1516.650051] RBP: ffff88801f337888 R08: 0000000000000001 R09: ffff88801f337907
[ 1516.650880] R10: ffffed1003e66f20 R11: 0000000000000001 R12: 0000000020000100
[ 1516.651718] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1516.652571]  _copy_from_user+0x172/0x1b0
[ 1516.653052]  move_addr_to_kernel.part.0+0x31/0x110
[ 1516.653620]  move_addr_to_kernel+0x4f/0x70
[ 1516.654119]  io_connect+0x47a/0x610
[ 1516.654537]  ? io_prep_rw+0x1050/0x1050
[ 1516.655013]  ? __lock_acquire+0xbb1/0x5b00
[ 1516.655517]  io_issue_sqe+0x1611/0x77d0
[ 1516.655988]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.656599]  ? lock_chain_count+0x20/0x20
[ 1516.657075]  ? __is_insn_slot_addr+0x14c/0x290
[ 1516.657611]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1516.658219]  ? io_connect+0x610/0x610
[ 1516.658670]  ? lock_acquire+0x197/0x470
[ 1516.659127]  ? find_held_lock+0x2c/0x110
[ 1516.659608]  ? __fget_files+0x2cf/0x520
[ 1516.660071]  ? lock_downgrade+0x6d0/0x6d0
[ 1516.660564]  __io_queue_sqe+0x90/0x9d0
[ 1516.661020]  ? io_issue_sqe+0x77d0/0x77d0
[ 1516.661506]  ? __fget_files+0x2f8/0x520
[ 1516.661985]  io_submit_sqes+0x44a8/0x8610
[ 1516.662485]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.663064]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1516.663620]  ? find_held_lock+0x2c/0x110
[ 1516.664088]  ? io_submit_sqes+0x8610/0x8610
[ 1516.664586]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1516.665142]  ? wait_for_completion_io+0x270/0x270
[ 1516.665705]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1516.666253]  ? vfs_write+0x354/0xb10
[ 1516.666682]  ? fput_many+0x2f/0x1a0
[ 1516.667104]  ? ksys_write+0x1a9/0x260
[ 1516.667550]  ? __ia32_sys_read+0xb0/0xb0
[ 1516.668030]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1516.668643]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1516.669247]  do_syscall_64+0x33/0x40
[ 1516.669690]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1516.670287] RIP: 0033:0x7ff5992a9b19
[ 1516.670725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1516.672848] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1516.673732] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1516.674558] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1516.675398] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1516.676208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1516.677021] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:23:47 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:59 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}], 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:59 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:59 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

10:23:59 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

10:23:59 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3, {0x800}}, './file0\x00'})
setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, &(0x7f0000000080)={0x1, 0x7}, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:59 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = dup2(r0, r0)
r4 = dup2(r3, 0xffffffffffffffff)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r13, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000020000000180000008f23f813cbb9cc8f70a534c04287d0ae5e008e04d172761cf8cf1d35a716b82facd6f8e11745da127c0d85521c7452f43d72be539f75dc92d2b886a9b5612ae615bd5882c0f7a4e4b9286cd42dc0321aa92256da30b18d76ccf70a01613fb8c74c160dcc282c975f9c0797cc45412c9608ce3fd062a82295d8cd2905573539edd0baa78c2397d3bf64690cc2a0d13ab060de338a98720f7a20e3adfd166aac657dae6ed31775678f5690c4c666c253e2e1e07a59f8010fc6f43fd0a560ad586f338f56e4dcdfe496c60dce81bd81b71d86", @ANYRES32, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
io_uring_enter(r13, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r8, r11, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x2004, @fd_index=0xa, 0x68, &(0x7f0000000080)="13065440a594b4c3256fee9339a1e6b5280593c9dba64eb1f91a7913544075f7", 0x20, 0x18, 0x1}, 0x80000001)

10:23:59 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:23:59 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

[ 1529.450875] FAULT_INJECTION: forcing a failure.
[ 1529.450875] name failslab, interval 1, probability 0, space 0, times 0
[ 1529.452784] CPU: 1 PID: 8222 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1529.453744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1529.454914] Call Trace:
[ 1529.455297]  dump_stack+0x107/0x167
[ 1529.455813]  should_fail.cold+0x5/0xa
[ 1529.456353]  ? ptlock_alloc+0x1d/0x70
[ 1529.456890]  should_failslab+0x5/0x20
[ 1529.457428]  kmem_cache_alloc+0x5b/0x310
[ 1529.458016]  ptlock_alloc+0x1d/0x70
[ 1529.458534]  pte_alloc_one+0x68/0x1a0
[ 1529.459075]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.459792]  handle_mm_fault+0x2ab2/0x3500
[ 1529.460396]  ? __lock_acquire+0x1657/0x5b00
[ 1529.461006]  ? find_held_lock+0x2c/0x110
[ 1529.461576]  ? pgtable_bad+0x90/0x90
[ 1529.462110]  ? __pmd_alloc+0x630/0x630
[ 1529.462665]  ? vmacache_find+0x55/0x2a0
[ 1529.463234]  do_user_addr_fault+0x56e/0xc60
[ 1529.463854]  exc_page_fault+0xa2/0x1a0
[ 1529.464409]  asm_exc_page_fault+0x1e/0x30
[ 1529.464998] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1529.465832] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1529.468433] RSP: 0018:ffff88802108f7b8 EFLAGS: 00050287
[ 1529.469189] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1529.470211] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88802108f888
[ 1529.471225] RBP: ffff88802108f888 R08: 0000000000000001 R09: ffff88802108f907
[ 1529.472234] R10: ffffed1004211f20 R11: 0000000000000001 R12: 0000000020000100
[ 1529.473246] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1529.474285]  _copy_from_user+0x172/0x1b0
[ 1529.474865]  move_addr_to_kernel.part.0+0x31/0x110
[ 1529.475572]  move_addr_to_kernel+0x4f/0x70
[ 1529.476178]  io_connect+0x47a/0x610
[ 1529.476697]  ? io_prep_rw+0x1050/0x1050
[ 1529.477280]  ? __lock_acquire+0xbb1/0x5b00
[ 1529.477887]  io_issue_sqe+0x1611/0x77d0
[ 1529.478482]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.479223]  ? lock_chain_count+0x20/0x20
[ 1529.479810]  ? __is_insn_slot_addr+0x14c/0x290
[ 1529.480458]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.481196]  ? io_connect+0x610/0x610
[ 1529.481741]  ? lock_acquire+0x197/0x470
[ 1529.482311]  ? find_held_lock+0x2c/0x110
[ 1529.482895]  ? __fget_files+0x2cf/0x520
[ 1529.483454]  ? lock_downgrade+0x6d0/0x6d0
[ 1529.484040]  __io_queue_sqe+0x90/0x9d0
[ 1529.484385] FAULT_INJECTION: forcing a failure.
[ 1529.484385] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1529.484593]  ? io_issue_sqe+0x77d0/0x77d0
[ 1529.484604]  ? __fget_files+0x2f8/0x520
[ 1529.484631]  io_submit_sqes+0x44a8/0x8610
[ 1529.488819]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.489517]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.490205]  ? find_held_lock+0x2c/0x110
[ 1529.490785]  ? io_submit_sqes+0x8610/0x8610
[ 1529.491393]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1529.492070]  ? wait_for_completion_io+0x270/0x270
[ 1529.492752]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1529.493406]  ? vfs_write+0x354/0xb10
[ 1529.493932]  ? fput_many+0x2f/0x1a0
[ 1529.494449]  ? ksys_write+0x1a9/0x260
[ 1529.494985]  ? __ia32_sys_read+0xb0/0xb0
[ 1529.495555]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1529.496289]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1529.497012]  do_syscall_64+0x33/0x40
[ 1529.497536]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1529.498262] RIP: 0033:0x7ff5992a9b19
[ 1529.498782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1529.501366] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1529.502585] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1529.503595] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1529.504595] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1529.505593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1529.506604] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
[ 1529.507628] CPU: 0 PID: 8237 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1529.509095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1529.510875] Call Trace:
[ 1529.511443]  dump_stack+0x107/0x167
[ 1529.512235]  should_fail.cold+0x5/0xa
[ 1529.513051]  __alloc_pages_nodemask+0x182/0x600
[ 1529.514055]  ? lock_acquire+0x197/0x470
[ 1529.514905]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1529.516187]  ? find_held_lock+0x2c/0x110
[ 1529.517061]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1529.518190]  ? lock_downgrade+0x6d0/0x6d0
[ 1529.519075]  ? mark_held_locks+0x9e/0xe0
[ 1529.519944]  alloc_pages_current+0x187/0x280
[ 1529.520881]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1529.522006]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.523086]  pte_alloc_one+0x16/0x1a0
[ 1529.523888]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.524959]  handle_mm_fault+0x2ab2/0x3500
[ 1529.525859]  ? __lock_acquire+0x1657/0x5b00
[ 1529.526776]  ? find_held_lock+0x2c/0x110
[ 1529.527628]  ? pgtable_bad+0x90/0x90
[ 1529.528419]  ? __pmd_alloc+0x630/0x630
[ 1529.529257]  ? vmacache_find+0x55/0x2a0
[ 1529.530120]  do_user_addr_fault+0x56e/0xc60
[ 1529.531057]  exc_page_fault+0xa2/0x1a0
[ 1529.531879]  asm_exc_page_fault+0x1e/0x30
[ 1529.532757] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1529.534010] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1529.537891] RSP: 0018:ffff888042d0f7b8 EFLAGS: 00050287
[ 1529.539046] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1529.540544] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042d0f888
[ 1529.542054] RBP: ffff888042d0f888 R08: 0000000000000001 R09: ffff888042d0f907
[ 1529.543553] R10: ffffed10085a1f20 R11: 0000000000000001 R12: 0000000020000100
[ 1529.545057] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1529.546595]  _copy_from_user+0x172/0x1b0
[ 1529.547460]  move_addr_to_kernel.part.0+0x31/0x110
[ 1529.548493]  move_addr_to_kernel+0x4f/0x70
[ 1529.549384]  io_connect+0x47a/0x610
[ 1529.550161]  ? io_prep_rw+0x1050/0x1050
[ 1529.551018]  ? __lock_acquire+0xbb1/0x5b00
[ 1529.551911]  io_issue_sqe+0x1611/0x77d0
[ 1529.552757]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.553857]  ? lock_chain_count+0x20/0x20
[ 1529.554738]  ? __is_insn_slot_addr+0x14c/0x290
[ 1529.555699]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.556803]  ? io_connect+0x610/0x610
[ 1529.557607]  ? lock_acquire+0x197/0x470
[ 1529.558540]  ? find_held_lock+0x2c/0x110
[ 1529.559548]  ? __fget_files+0x2cf/0x520
[ 1529.560522]  ? lock_downgrade+0x6d0/0x6d0
[ 1529.561535]  __io_queue_sqe+0x90/0x9d0
[ 1529.562499]  ? io_issue_sqe+0x77d0/0x77d0
[ 1529.563502]  ? __fget_files+0x2f8/0x520
[ 1529.564484]  io_submit_sqes+0x44a8/0x8610
[ 1529.565527]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.566756]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.567933]  ? find_held_lock+0x2c/0x110
[ 1529.568933]  ? io_submit_sqes+0x8610/0x8610
[ 1529.570001]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1529.571178]  ? wait_for_completion_io+0x270/0x270
[ 1529.572357]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1529.573501]  ? vfs_write+0x354/0xb10
[ 1529.574424]  ? fput_many+0x2f/0x1a0
[ 1529.575309]  ? ksys_write+0x1a9/0x260
[ 1529.576238]  ? __ia32_sys_read+0xb0/0xb0
[ 1529.577234]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1529.578515]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1529.579775]  do_syscall_64+0x33/0x40
[ 1529.580684]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1529.581943] RIP: 0033:0x7feaf290db19
[ 1529.582858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1529.587376] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1529.589224] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1529.590970] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1529.592706] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1529.594438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1529.596164] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:23:59 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

10:23:59 executing program 0:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xf349, 0x0, 0x1, 0x2b, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x20010, r0, 0x8000000)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_setup(0x7c89, &(0x7f0000000240)={0x0, 0x7b9c, 0x0, 0x1, 0x55, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f00000001c0))
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fcntl$F_SET_RW_HINT(r4, 0x40c, &(0x7f00000000c0)=0x2)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r5, 0x2, &(0x7f0000000080)=[r4, r6], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1529.675029] FAULT_INJECTION: forcing a failure.
[ 1529.675029] name failslab, interval 1, probability 0, space 0, times 0
[ 1529.676689] CPU: 1 PID: 8241 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1529.677638] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1529.678782] Call Trace:
[ 1529.679153]  dump_stack+0x107/0x167
[ 1529.679655]  should_fail.cold+0x5/0xa
[ 1529.680183]  ? create_object.isra.0+0x3a/0xa30
[ 1529.680815]  should_failslab+0x5/0x20
[ 1529.681352]  kmem_cache_alloc+0x5b/0x310
[ 1529.681915]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1529.682765]  create_object.isra.0+0x3a/0xa30
[ 1529.683371]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1529.684073]  kmem_cache_alloc+0x159/0x310
[ 1529.684647]  ptlock_alloc+0x1d/0x70
[ 1529.685153]  pte_alloc_one+0x68/0x1a0
[ 1529.685673]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.686376]  handle_mm_fault+0x2ab2/0x3500
[ 1529.686969]  ? __lock_acquire+0x1657/0x5b00
[ 1529.687564]  ? __pmd_alloc+0x630/0x630
[ 1529.688110]  ? vmacache_find+0x55/0x2a0
[ 1529.688662]  do_user_addr_fault+0x56e/0xc60
[ 1529.689262]  exc_page_fault+0xa2/0x1a0
[ 1529.689796]  asm_exc_page_fault+0x1e/0x30
[ 1529.690380] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1529.691119] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1529.693640] RSP: 0018:ffff888041d5f7b8 EFLAGS: 00050246
[ 1529.694386] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1529.695365] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041d5f888
[ 1529.696337] RBP: ffff888041d5f888 R08: 0000000000000001 R09: ffff888041d5f907
[ 1529.697309] R10: ffffed10083abf20 R11: 0000000000000001 R12: 0000000020000100
[ 1529.698292] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1529.699290]  _copy_from_user+0x172/0x1b0
[ 1529.699849]  move_addr_to_kernel.part.0+0x31/0x110
[ 1529.700525]  move_addr_to_kernel+0x4f/0x70
[ 1529.701107]  io_connect+0x47a/0x610
[ 1529.701603]  ? io_prep_rw+0x1050/0x1050
[ 1529.702169]  ? __lock_acquire+0xbb1/0x5b00
[ 1529.702752]  io_issue_sqe+0x1611/0x77d0
[ 1529.703304]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.704032]  ? lock_chain_count+0x20/0x20
[ 1529.704598]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1529.705319]  ? io_connect+0x610/0x610
[ 1529.705847]  ? lock_acquire+0x197/0x470
[ 1529.706394]  ? find_held_lock+0x2c/0x110
[ 1529.706950]  ? __fget_files+0x2cf/0x520
[ 1529.707498]  ? lock_downgrade+0x6d0/0x6d0
[ 1529.708065]  __io_queue_sqe+0x90/0x9d0
[ 1529.708606]  ? io_issue_sqe+0x77d0/0x77d0
[ 1529.709176]  ? __fget_files+0x2f8/0x520
[ 1529.709730]  io_submit_sqes+0x44a8/0x8610
[ 1529.710332]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.711011]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1529.711685]  ? find_held_lock+0x2c/0x110
[ 1529.712239]  ? io_submit_sqes+0x8610/0x8610
[ 1529.712830]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1529.713502]  ? wait_for_completion_io+0x270/0x270
[ 1529.714170]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1529.714808]  ? vfs_write+0x354/0xb10
[ 1529.715318]  ? fput_many+0x2f/0x1a0
[ 1529.715822]  ? ksys_write+0x1a9/0x260
[ 1529.716346]  ? __ia32_sys_read+0xb0/0xb0
[ 1529.716902]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1529.717618]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1529.718332]  do_syscall_64+0x33/0x40
[ 1529.718837]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1529.719542] RIP: 0033:0x7ff5992a9b19
[ 1529.720046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1529.722567] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1529.723607] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1529.724576] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1529.725543] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1529.726533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1529.727501] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:00 executing program 5:
r0 = syz_io_uring_setup(0x79ac, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x280}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2, 0x110, 0xffffffffffffffff, 0x8000000)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r3, r6, &(0x7f0000000100)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x8, &(0x7f00000000c0)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x6)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:00 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:00 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x7a3b, &(0x7f0000000040)={0x0, 0x6952, 0x2, 0x1, 0xe5}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ff8000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:00 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

[ 1529.970766] FAULT_INJECTION: forcing a failure.
[ 1529.970766] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1529.973501] CPU: 1 PID: 8254 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1529.974924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1529.976626] Call Trace:
[ 1529.977172]  dump_stack+0x107/0x167
[ 1529.977924]  should_fail.cold+0x5/0xa
[ 1529.978720]  __alloc_pages_nodemask+0x182/0x600
[ 1529.979675]  ? lock_acquire+0x197/0x470
[ 1529.980499]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1529.981737]  ? find_held_lock+0x2c/0x110
[ 1529.982583]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1529.983653]  ? lock_downgrade+0x6d0/0x6d0
[ 1529.984500]  ? mark_held_locks+0x9e/0xe0
[ 1529.985331]  alloc_pages_current+0x187/0x280
[ 1529.986247]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1529.987324]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.988352]  pte_alloc_one+0x16/0x1a0
[ 1529.989133]  ? replace_page_cache_page+0x1200/0x1200
[ 1529.990174]  handle_mm_fault+0x2ab2/0x3500
[ 1529.991043]  ? __lock_acquire+0x1657/0x5b00
[ 1529.991923]  ? find_held_lock+0x2c/0x110
[ 1529.992744]  ? pgtable_bad+0x90/0x90
[ 1529.993499]  ? __pmd_alloc+0x630/0x630
[ 1529.994308]  ? vmacache_find+0x55/0x2a0
[ 1529.995131]  do_user_addr_fault+0x56e/0xc60
[ 1529.996018]  exc_page_fault+0xa2/0x1a0
[ 1529.996816]  asm_exc_page_fault+0x1e/0x30
[ 1529.997661] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1529.998865] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1530.002612] RSP: 0018:ffff8880177f77b8 EFLAGS: 00050287
[ 1530.003696] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1530.005143] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff8880177f7888
[ 1530.006625] RBP: ffff8880177f7888 R08: 0000000000000001 R09: ffff8880177f7907
[ 1530.008086] R10: ffffed1002efef20 R11: 0000000000000001 R12: 0000000020000100
[ 1530.009538] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1530.011032]  _copy_from_user+0x172/0x1b0
[ 1530.011873]  move_addr_to_kernel.part.0+0x31/0x110
[ 1530.012868]  move_addr_to_kernel+0x4f/0x70
[ 1530.013733]  io_connect+0x47a/0x610
[ 1530.014490]  ? io_prep_rw+0x1050/0x1050
[ 1530.015317]  ? __lock_acquire+0xbb1/0x5b00
[ 1530.016177]  io_issue_sqe+0x1611/0x77d0
[ 1530.016994]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1530.018082]  ? lock_chain_count+0x20/0x20
[ 1530.018932]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1530.019997]  ? io_connect+0x610/0x610
[ 1530.020776]  ? lock_acquire+0x197/0x470
[ 1530.021588]  ? find_held_lock+0x2c/0x110
[ 1530.022420]  ? __fget_files+0x2cf/0x520
[ 1530.023230]  ? lock_downgrade+0x6d0/0x6d0
[ 1530.024085]  __io_queue_sqe+0x90/0x9d0
[ 1530.024880]  ? io_issue_sqe+0x77d0/0x77d0
[ 1530.025725]  ? __fget_files+0x2f8/0x520
[ 1530.026557]  io_submit_sqes+0x44a8/0x8610
[ 1530.027426]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1530.028443]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1530.029431]  ? find_held_lock+0x2c/0x110
[ 1530.030273]  ? io_submit_sqes+0x8610/0x8610
[ 1530.031160]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1530.032143]  ? wait_for_completion_io+0x270/0x270
[ 1530.033133]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1530.034087]  ? vfs_write+0x354/0xb10
[ 1530.034853]  ? fput_many+0x2f/0x1a0
[ 1530.035588]  ? ksys_write+0x1a9/0x260
[ 1530.036367]  ? __ia32_sys_read+0xb0/0xb0
[ 1530.037199]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1530.038279]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1530.039334]  do_syscall_64+0x33/0x40
[ 1530.040096]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1530.041137] RIP: 0033:0x7ff5992a9b19
[ 1530.041886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1530.045625] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1530.047191] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1530.048633] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1530.050094] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1530.051547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1530.052994] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:00 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:00 executing program 5:
r0 = syz_io_uring_setup(0x4079a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
openat(r4, &(0x7f0000000080)='./file0\x00', 0x533000, 0x100)

10:24:00 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:00 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

[ 1530.195766] FAULT_INJECTION: forcing a failure.
[ 1530.195766] name failslab, interval 1, probability 0, space 0, times 0
[ 1530.198151] CPU: 0 PID: 8271 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1530.199566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1530.201275] Call Trace:
[ 1530.201829]  dump_stack+0x107/0x167
[ 1530.202597]  should_fail.cold+0x5/0xa
[ 1530.203390]  ? ptlock_alloc+0x1d/0x70
[ 1530.204176]  should_failslab+0x5/0x20
[ 1530.204969]  kmem_cache_alloc+0x5b/0x310
[ 1530.205820]  ptlock_alloc+0x1d/0x70
[ 1530.206593]  pte_alloc_one+0x68/0x1a0
[ 1530.207392]  ? replace_page_cache_page+0x1200/0x1200
[ 1530.208440]  handle_mm_fault+0x2ab2/0x3500
[ 1530.209319]  ? __lock_acquire+0x1657/0x5b00
[ 1530.210220]  ? find_held_lock+0x2c/0x110
[ 1530.211061]  ? pgtable_bad+0x90/0x90
[ 1530.211844]  ? __pmd_alloc+0x630/0x630
[ 1530.212661]  ? vmacache_find+0x55/0x2a0
[ 1530.213497]  do_user_addr_fault+0x56e/0xc60
[ 1530.214415]  exc_page_fault+0xa2/0x1a0
[ 1530.215228]  asm_exc_page_fault+0x1e/0x30
[ 1530.216093] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1530.217330] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1530.221159] RSP: 0018:ffff88803f4af7b8 EFLAGS: 00050287
[ 1530.222271] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1530.223754] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803f4af888
[ 1530.225245] RBP: ffff88803f4af888 R08: 0000000000000001 R09: ffff88803f4af907
[ 1530.226727] R10: ffffed1007e95f20 R11: 0000000000000001 R12: 0000000020000100
[ 1530.228203] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1530.229714]  _copy_from_user+0x172/0x1b0
[ 1530.230575]  move_addr_to_kernel.part.0+0x31/0x110
[ 1530.231596]  move_addr_to_kernel+0x4f/0x70
[ 1530.232473]  io_connect+0x47a/0x610
[ 1530.233227]  ? io_prep_rw+0x1050/0x1050
[ 1530.234073]  ? __lock_acquire+0xbb1/0x5b00
[ 1530.234958]  io_issue_sqe+0x1611/0x77d0
[ 1530.235795]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1530.237036]  ? lock_chain_count+0x20/0x20
[ 1530.237919]  ? __is_insn_slot_addr+0x14c/0x290
[ 1530.238900]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1530.240006]  ? io_connect+0x610/0x610
[ 1530.240820]  ? lock_acquire+0x197/0x470
[ 1530.241652]  ? find_held_lock+0x2c/0x110
[ 1530.242530]  ? __fget_files+0x2cf/0x520
[ 1530.243381]  ? lock_downgrade+0x6d0/0x6d0
[ 1530.244254]  __io_queue_sqe+0x90/0x9d0
[ 1530.245078]  ? io_issue_sqe+0x77d0/0x77d0
[ 1530.245948]  ? __fget_files+0x2f8/0x520
[ 1530.246810]  io_submit_sqes+0x44a8/0x8610
[ 1530.247722]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1530.248778]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1530.249794]  ? find_held_lock+0x2c/0x110
[ 1530.250668]  ? io_submit_sqes+0x8610/0x8610
[ 1530.251587]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1530.252612]  ? wait_for_completion_io+0x270/0x270
[ 1530.253635]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1530.254624]  ? vfs_write+0x354/0xb10
[ 1530.255407]  ? fput_many+0x2f/0x1a0
[ 1530.256170]  ? ksys_write+0x1a9/0x260
[ 1530.256969]  ? __ia32_sys_read+0xb0/0xb0
[ 1530.257834]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1530.258941]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1530.260041]  do_syscall_64+0x33/0x40
[ 1530.260822]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1530.261904] RIP: 0033:0x7feaf290db19
[ 1530.262695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1530.266591] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1530.268204] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1530.269694] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1530.271219] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1530.272719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1530.274224] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:24:16 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

10:24:16 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x20010, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

10:24:16 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

10:24:16 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

[ 1545.922797] FAULT_INJECTION: forcing a failure.
[ 1545.922797] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1545.924749] CPU: 1 PID: 8284 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1545.925678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1545.926843] Call Trace:
[ 1545.927212]  dump_stack+0x107/0x167
[ 1545.927722]  should_fail.cold+0x5/0xa
[ 1545.928257]  __alloc_pages_nodemask+0x182/0x600
[ 1545.928909]  ? lock_acquire+0x197/0x470
[ 1545.929458]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1545.930069] FAULT_INJECTION: forcing a failure.
[ 1545.930069] name failslab, interval 1, probability 0, space 0, times 0
[ 1545.930296]  ? find_held_lock+0x2c/0x110
[ 1545.930316]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1545.930329]  ? lock_downgrade+0x6d0/0x6d0
[ 1545.930340]  ? mark_held_locks+0x9e/0xe0
[ 1545.930356]  alloc_pages_current+0x187/0x280
[ 1545.930380]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1545.936926]  ? replace_page_cache_page+0x1200/0x1200
[ 1545.937633]  pte_alloc_one+0x16/0x1a0
[ 1545.938172]  ? replace_page_cache_page+0x1200/0x1200
[ 1545.938885]  handle_mm_fault+0x2ab2/0x3500
[ 1545.939469]  ? __lock_acquire+0x1657/0x5b00
[ 1545.940071]  ? __pmd_alloc+0x630/0x630
[ 1545.940606]  ? vmacache_find+0x55/0x2a0
[ 1545.941155]  do_user_addr_fault+0x56e/0xc60
[ 1545.941769]  exc_page_fault+0xa2/0x1a0
[ 1545.942318]  asm_exc_page_fault+0x1e/0x30
[ 1545.942892] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1545.943649] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1545.946179] RSP: 0018:ffff888041cdf7b8 EFLAGS: 00050246
[ 1545.946917] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1545.947907] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041cdf888
[ 1545.948886] RBP: ffff888041cdf888 R08: 0000000000000001 R09: ffff888041cdf907
[ 1545.949868] R10: ffffed100839bf20 R11: 0000000000000001 R12: 0000000020000100
[ 1545.950857] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1545.951866]  _copy_from_user+0x172/0x1b0
[ 1545.952431]  move_addr_to_kernel.part.0+0x31/0x110
[ 1545.953123]  move_addr_to_kernel+0x4f/0x70
[ 1545.953712]  io_connect+0x47a/0x610
[ 1545.954216]  ? io_prep_rw+0x1050/0x1050
[ 1545.954777]  ? __lock_acquire+0xbb1/0x5b00
[ 1545.955358]  io_issue_sqe+0x1611/0x77d0
[ 1545.955914]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1545.956649]  ? lock_chain_count+0x20/0x20
[ 1545.957247]  ? __is_insn_slot_addr+0x14c/0x290
[ 1545.957870]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1545.958615]  ? io_connect+0x610/0x610
[ 1545.959144]  ? lock_acquire+0x197/0x470
[ 1545.959708]  ? find_held_lock+0x2c/0x110
[ 1545.960315]  ? __fget_files+0x2cf/0x520
[ 1545.960886]  ? lock_downgrade+0x6d0/0x6d0
[ 1545.961478]  __io_queue_sqe+0x90/0x9d0
[ 1545.962011]  ? io_issue_sqe+0x77d0/0x77d0
[ 1545.962597]  ? __fget_files+0x2f8/0x520
[ 1545.963143]  io_submit_sqes+0x44a8/0x8610
[ 1545.963720]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1545.964399]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1545.965087]  ? find_held_lock+0x2c/0x110
[ 1545.965640]  ? io_submit_sqes+0x8610/0x8610
[ 1545.966273]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1545.966946]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1545.967657]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1545.968426]  ? trace_hardirqs_on+0x5b/0x180
[ 1545.969052]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1545.969805]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1545.970523]  do_syscall_64+0x33/0x40
[ 1545.971028]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1545.971726] RIP: 0033:0x7ff5992a9b19
[ 1545.972232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1545.974830] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1545.975894] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1545.976908] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1545.977876] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1545.978861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1545.979853] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
[ 1545.980859] CPU: 0 PID: 8285 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1545.982341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1545.984112] Call Trace:
[ 1545.984669]  dump_stack+0x107/0x167
[ 1545.985476]  should_fail.cold+0x5/0xa
[ 1545.986300]  ? create_object.isra.0+0x3a/0xa30
[ 1545.987262]  should_failslab+0x5/0x20
[ 1545.988073]  kmem_cache_alloc+0x5b/0x310
[ 1545.988944]  create_object.isra.0+0x3a/0xa30
[ 1545.989869]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1545.990952]  kmem_cache_alloc+0x159/0x310
[ 1545.991840]  ptlock_alloc+0x1d/0x70
[ 1545.992613]  pte_alloc_one+0x68/0x1a0
[ 1545.993420]  ? replace_page_cache_page+0x1200/0x1200
[ 1545.994500]  handle_mm_fault+0x2ab2/0x3500
[ 1545.995407]  ? __lock_acquire+0x1657/0x5b00
[ 1545.996315]  ? find_held_lock+0x2c/0x110
[ 1545.997175]  ? pgtable_bad+0x90/0x90
[ 1545.997966]  ? __pmd_alloc+0x630/0x630
[ 1545.998807]  ? vmacache_find+0x55/0x2a0
[ 1545.999655]  do_user_addr_fault+0x56e/0xc60
[ 1546.000578]  exc_page_fault+0xa2/0x1a0
[ 1546.001411]  asm_exc_page_fault+0x1e/0x30
[ 1546.002300] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1546.003551] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1546.007435] RSP: 0018:ffff88802111f7b8 EFLAGS: 00050287
[ 1546.008559] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1546.010058] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88802111f888
[ 1546.011565] RBP: ffff88802111f888 R08: 0000000000000001 R09: ffff88802111f907
[ 1546.013073] R10: ffffed1004223f20 R11: 0000000000000001 R12: 0000000020000100
[ 1546.014583] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1546.016113]  _copy_from_user+0x172/0x1b0
[ 1546.016976]  move_addr_to_kernel.part.0+0x31/0x110
[ 1546.018013]  move_addr_to_kernel+0x4f/0x70
[ 1546.018919]  io_connect+0x47a/0x610
[ 1546.019688]  ? io_prep_rw+0x1050/0x1050
[ 1546.020544]  ? __lock_acquire+0xbb1/0x5b00
[ 1546.021445]  io_issue_sqe+0x1611/0x77d0
[ 1546.022296]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1546.023404]  ? lock_chain_count+0x20/0x20
[ 1546.024267]  ? __is_insn_slot_addr+0x14c/0x290
[ 1546.025244]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1546.026348]  ? io_connect+0x610/0x610
[ 1546.027159]  ? lock_acquire+0x197/0x470
[ 1546.027995]  ? find_held_lock+0x2c/0x110
[ 1546.028860]  ? __fget_files+0x2cf/0x520
[ 1546.029691]  ? lock_downgrade+0x6d0/0x6d0
[ 1546.030575]  __io_queue_sqe+0x90/0x9d0
[ 1546.031395]  ? io_issue_sqe+0x77d0/0x77d0
[ 1546.032254]  ? __fget_files+0x2f8/0x520
[ 1546.033096]  io_submit_sqes+0x44a8/0x8610
[ 1546.033998]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1546.035054]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1546.036069]  ? find_held_lock+0x2c/0x110
[ 1546.036924]  ? io_submit_sqes+0x8610/0x8610
[ 1546.037841]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1546.038875]  ? wait_for_completion_io+0x270/0x270
[ 1546.039890]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1546.040853]  ? vfs_write+0x354/0xb10
[ 1546.041635]  ? fput_many+0x2f/0x1a0
[ 1546.042414]  ? ksys_write+0x1a9/0x260
[ 1546.043208]  ? __ia32_sys_read+0xb0/0xb0
[ 1546.044060]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1546.045157]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1546.046237]  do_syscall_64+0x33/0x40
[ 1546.047020]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1546.048097] RIP: 0033:0x7feaf290db19
[ 1546.048884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1546.052958] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1546.054568] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1546.056048] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1546.057534] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1546.059030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1546.060520] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:24:16 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xbda}}, './file0\x00'})
io_uring_enter(r1, 0x53a6, 0x4f8b, 0x0, &(0x7f0000000040)={[0x3]}, 0x8)

10:24:16 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x2437, 0x20}}, './file0\x00'})
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x17cb, &(0x7f0000000040)={0x0, 0xcca6, 0x4, 0x3, 0x8b, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r7=>0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r9 = openat$random(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f00000001c0)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index=0xa, 0x8, {0x0, r8}, 0xfff, 0x1, 0x1, {0x0, 0x0, r9}}, 0x20)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r4, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x6fd9, 0xa7bb, 0x0, &(0x7f0000000040)={[0x4]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x41a400, 0x0)
fsconfig$FSCONFIG_SET_FD(r4, 0x5, &(0x7f00000000c0)='.$\'#\x00', 0x0, r3)

10:24:16 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

[ 1546.260932] FAULT_INJECTION: forcing a failure.
[ 1546.260932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1546.262611] CPU: 1 PID: 8309 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1546.263437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1546.264432] Call Trace:
[ 1546.264763]  dump_stack+0x107/0x167
[ 1546.265196]  should_fail.cold+0x5/0xa
[ 1546.265655]  _copy_from_user+0x2e/0x1b0
[ 1546.266133]  move_addr_to_kernel.part.0+0x31/0x110
[ 1546.266729]  move_addr_to_kernel+0x4f/0x70
[ 1546.267240]  io_connect+0x47a/0x610
[ 1546.267682]  ? io_prep_rw+0x1050/0x1050
[ 1546.268175]  ? __lock_acquire+0xbb1/0x5b00
[ 1546.268689]  io_issue_sqe+0x1611/0x77d0
[ 1546.269175]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1546.269804]  ? lock_chain_count+0x20/0x20
[ 1546.270314]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1546.270940]  ? io_connect+0x610/0x610
[ 1546.271405]  ? lock_acquire+0x197/0x470
[ 1546.271874]  ? find_held_lock+0x2c/0x110
[ 1546.272372]  ? __fget_files+0x2cf/0x520
[ 1546.272847]  ? lock_downgrade+0x6d0/0x6d0
[ 1546.273344]  __io_queue_sqe+0x90/0x9d0
[ 1546.273810]  ? io_issue_sqe+0x77d0/0x77d0
[ 1546.274323]  ? __fget_files+0x2f8/0x520
[ 1546.274811]  io_submit_sqes+0x44a8/0x8610
[ 1546.275329]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1546.275928]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1546.276519]  ? find_held_lock+0x2c/0x110
[ 1546.277014]  ? io_submit_sqes+0x8610/0x8610
[ 1546.277538]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1546.278116]  ? wait_for_completion_io+0x270/0x270
[ 1546.278707]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1546.279265]  ? vfs_write+0x354/0xb10
[ 1546.279708]  ? fput_many+0x2f/0x1a0
[ 1546.280138]  ? ksys_write+0x1a9/0x260
[ 1546.280599]  ? __ia32_sys_read+0xb0/0xb0
[ 1546.281084]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1546.281710]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1546.282336]  do_syscall_64+0x33/0x40
[ 1546.282783]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1546.283389] RIP: 0033:0x7ff5992a9b19
[ 1546.283830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1546.286024] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1546.286936] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1546.287778] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1546.288621] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1546.289466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1546.290327] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:16 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xf000000, 0x0, 0x0, 0x0)

10:24:16 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(r3, 0x11, 0x2, &(0x7f0000000040)=""/121, &(0x7f00000000c0)=0x79)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:16 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r4, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)

10:24:30 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

10:24:30 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000340)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r4, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f00000001c0)='\x00', &(0x7f0000000240)='./file0\x00', 0xffffffffffffffff)
ioctl$FIONCLEX(r0, 0x5450)
syz_io_uring_setup(0x47dd, &(0x7f0000000040)={0x0, 0x898e, 0x0, 0x1, 0x163, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r4=>0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000140)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd=r0, 0x6, 0x0, 0x20, 0x4}, 0xffff)

10:24:30 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0xf, 0x0, 0x0, 0x0)

10:24:30 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

[ 1559.999588] FAULT_INJECTION: forcing a failure.
[ 1559.999588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1560.002155] CPU: 1 PID: 8341 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1560.003610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1560.005359] Call Trace:
[ 1560.005918]  dump_stack+0x107/0x167
[ 1560.006700]  should_fail.cold+0x5/0xa
[ 1560.007515]  _copy_from_user+0x2e/0x1b0
[ 1560.008361]  move_addr_to_kernel.part.0+0x31/0x110
[ 1560.009390]  move_addr_to_kernel+0x4f/0x70
[ 1560.010286]  io_connect+0x47a/0x610
[ 1560.011075]  ? io_prep_rw+0x1050/0x1050
[ 1560.011930]  ? __lock_acquire+0xbb1/0x5b00
[ 1560.012831]  io_issue_sqe+0x1611/0x77d0
[ 1560.013674]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1560.014797]  ? lock_chain_count+0x20/0x20
[ 1560.015684]  ? __is_insn_slot_addr+0x14c/0x290
[ 1560.016655]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1560.017763]  ? io_connect+0x610/0x610
[ 1560.018578]  ? lock_acquire+0x197/0x470
[ 1560.019414]  ? find_held_lock+0x2c/0x110
[ 1560.020271]  ? __fget_files+0x2cf/0x520
[ 1560.021113]  ? lock_downgrade+0x6d0/0x6d0
[ 1560.021987]  __io_queue_sqe+0x90/0x9d0
[ 1560.022823]  ? io_issue_sqe+0x77d0/0x77d0
[ 1560.023693]  ? __fget_files+0x2f8/0x520
[ 1560.024478] FAULT_INJECTION: forcing a failure.
[ 1560.024478] name failslab, interval 1, probability 0, space 0, times 0
[ 1560.024548]  io_submit_sqes+0x44a8/0x8610
[ 1560.027964]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1560.029016]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1560.030045]  ? find_held_lock+0x2c/0x110
[ 1560.030906]  ? io_submit_sqes+0x8610/0x8610
[ 1560.031815]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1560.032839]  ? wait_for_completion_io+0x270/0x270
[ 1560.033855]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1560.034843]  ? vfs_write+0x354/0xb10
[ 1560.035628]  ? fput_many+0x2f/0x1a0
[ 1560.036392]  ? ksys_write+0x1a9/0x260
[ 1560.037187]  ? __ia32_sys_read+0xb0/0xb0
[ 1560.038046]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1560.039156]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1560.040253]  do_syscall_64+0x33/0x40
[ 1560.041035]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1560.042109] RIP: 0033:0x7feaf290db19
[ 1560.042911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1560.046786] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1560.048398] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1560.049899] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1560.051408] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1560.052903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1560.054409] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1560.055951] CPU: 0 PID: 8330 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1560.057513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1560.059393] Call Trace:
[ 1560.060024]  dump_stack+0x107/0x167
[ 1560.060851]  should_fail.cold+0x5/0xa
[ 1560.061725]  ? create_object.isra.0+0x3a/0xa30
[ 1560.062765]  should_failslab+0x5/0x20
[ 1560.063631]  kmem_cache_alloc+0x5b/0x310
[ 1560.064554]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1560.065922]  create_object.isra.0+0x3a/0xa30
[ 1560.066930]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1560.068093]  kmem_cache_alloc+0x159/0x310
[ 1560.069033]  ptlock_alloc+0x1d/0x70
[ 1560.069861]  pte_alloc_one+0x68/0x1a0
[ 1560.070729]  ? replace_page_cache_page+0x1200/0x1200
[ 1560.071879]  handle_mm_fault+0x2ab2/0x3500
[ 1560.072842]  ? __lock_acquire+0x1657/0x5b00
[ 1560.073826]  ? __pmd_alloc+0x630/0x630
[ 1560.074730]  ? vmacache_find+0x55/0x2a0
[ 1560.075641]  do_user_addr_fault+0x56e/0xc60
[ 1560.076637]  exc_page_fault+0xa2/0x1a0
[ 1560.077524]  asm_exc_page_fault+0x1e/0x30
[ 1560.078462] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1560.079699] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1560.083886] RSP: 0018:ffff888041de77b8 EFLAGS: 00050246
[ 1560.085089] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1560.086712] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041de7888
[ 1560.088329] RBP: ffff888041de7888 R08: 0000000000000001 R09: ffff888041de7907
[ 1560.089941] R10: ffffed10083bcf20 R11: 0000000000000001 R12: 0000000020000100
[ 1560.091565] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1560.093209]  _copy_from_user+0x172/0x1b0
[ 1560.094136]  move_addr_to_kernel.part.0+0x31/0x110
[ 1560.095259]  move_addr_to_kernel+0x4f/0x70
[ 1560.096223]  io_connect+0x47a/0x610
[ 1560.097053]  ? io_prep_rw+0x1050/0x1050
[ 1560.097978]  ? __lock_acquire+0xbb1/0x5b00
[ 1560.098947]  io_issue_sqe+0x1611/0x77d0
[ 1560.099854]  ? lock_chain_count+0x20/0x20
[ 1560.100796]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1560.102029]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1560.103221]  ? lock_chain_count+0x20/0x20
[ 1560.104167]  ? io_connect+0x610/0x610
[ 1560.105035]  ? lock_acquire+0x197/0x470
[ 1560.105942]  ? find_held_lock+0x2c/0x110
[ 1560.106879]  ? __fget_files+0x2cf/0x520
[ 1560.107781]  ? lock_downgrade+0x6d0/0x6d0
[ 1560.108729]  __io_queue_sqe+0x90/0x9d0
[ 1560.109617]  ? io_issue_sqe+0x77d0/0x77d0
[ 1560.110558]  ? __fget_files+0x2f8/0x520
[ 1560.111488]  io_submit_sqes+0x44a8/0x8610
[ 1560.112460]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1560.113579]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1560.114710]  ? find_held_lock+0x2c/0x110
[ 1560.115644]  ? io_submit_sqes+0x8610/0x8610
[ 1560.116632]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1560.117721]  ? wait_for_completion_io+0x270/0x270
[ 1560.118818]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1560.119873]  ? vfs_write+0x354/0xb10
[ 1560.120709]  ? fput_many+0x2f/0x1a0
[ 1560.121529]  ? ksys_write+0x1a9/0x260
[ 1560.122391]  ? __ia32_sys_read+0xb0/0xb0
[ 1560.123323]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1560.124523]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1560.125695]  do_syscall_64+0x33/0x40
[ 1560.126554]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1560.127724] RIP: 0033:0x7ff5992a9b19
[ 1560.128573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1560.132807] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1560.134551] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1560.136180] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1560.137801] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1560.139431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1560.141059] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:30 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x8, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r5, r8, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3}, 0x3)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r12=>0x0, &(0x7f0000000140)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r14 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0)
syz_io_uring_submit(r14, r13, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r14, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_RESIZE(r4, 0x50009403, &(0x7f0000000040)={{r0}, {@void, @actul_num={@val, 0xef69, 0x74}}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
memfd_create(&(0x7f0000000040)='\\@.-\x00', 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:30 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000008, 0x810, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:42 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x2ae5, &(0x7f0000000240)={0x0, 0x6ad3, 0x20, 0x3, 0xfffffffc, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:42 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:42 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:42 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0xf00, 0x0, 0x0, 0x0)

10:24:42 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)

10:24:42 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

10:24:42 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x40000000, 0x0, 0x0, 0x0)

10:24:42 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:42 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x6, 0x101, 0x0, 0x101, 0x0, 0x0, {0x0, r4}}, 0x6a5d)

[ 1572.267590] FAULT_INJECTION: forcing a failure.
[ 1572.267590] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1572.269291] CPU: 1 PID: 8386 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1572.270203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1572.271267] Call Trace:
[ 1572.271625]  dump_stack+0x107/0x167
[ 1572.272117]  should_fail.cold+0x5/0xa
[ 1572.272642]  __alloc_pages_nodemask+0x182/0x600
[ 1572.273276]  ? lock_acquire+0x197/0x470
[ 1572.273812]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1572.274612]  ? find_held_lock+0x2c/0x110
[ 1572.275156]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1572.275852]  ? lock_downgrade+0x6d0/0x6d0
[ 1572.276402]  ? mark_held_locks+0x9e/0xe0
[ 1572.276953]  alloc_pages_current+0x187/0x280
[ 1572.277543]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1572.278248]  ? replace_page_cache_page+0x1200/0x1200
[ 1572.278910]  pte_alloc_one+0x16/0x1a0
[ 1572.279395]  ? replace_page_cache_page+0x1200/0x1200
[ 1572.280037]  handle_mm_fault+0x2ab2/0x3500
[ 1572.280588]  ? __lock_acquire+0x1657/0x5b00
[ 1572.281141]  ? __pmd_alloc+0x630/0x630
[ 1572.281642]  ? vmacache_find+0x55/0x2a0
[ 1572.282153]  do_user_addr_fault+0x56e/0xc60
[ 1572.282723]  exc_page_fault+0xa2/0x1a0
[ 1572.283223]  asm_exc_page_fault+0x1e/0x30
[ 1572.283754] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1572.284438] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1572.286903] RSP: 0018:ffff88804290f7b8 EFLAGS: 00050246
[ 1572.287572] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1572.288472] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88804290f888
[ 1572.289367] RBP: ffff88804290f888 R08: 0000000000000001 R09: ffff88804290f907
[ 1572.290263] R10: ffffed1008521f20 R11: 0000000000000001 R12: 0000000020000100
[ 1572.291167] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1572.292082]  _copy_from_user+0x172/0x1b0
[ 1572.292598]  move_addr_to_kernel.part.0+0x31/0x110
[ 1572.293217]  move_addr_to_kernel+0x4f/0x70
[ 1572.293747]  io_connect+0x47a/0x610
[ 1572.294209]  ? io_prep_rw+0x1050/0x1050
[ 1572.294733]  ? __lock_acquire+0xbb1/0x5b00
[ 1572.295268]  io_issue_sqe+0x1611/0x77d0
[ 1572.295799]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.296461]  ? lock_chain_count+0x20/0x20
[ 1572.297015]  ? __is_insn_slot_addr+0x14c/0x290
[ 1572.297616]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.298301]  ? io_connect+0x610/0x610
[ 1572.298806]  ? lock_acquire+0x197/0x470
[ 1572.299331]  ? find_held_lock+0x2c/0x110
[ 1572.299847]  ? __fget_files+0x2cf/0x520
[ 1572.300386]  ? lock_downgrade+0x6d0/0x6d0
[ 1572.300914]  __io_queue_sqe+0x90/0x9d0
[ 1572.301406]  ? io_issue_sqe+0x77d0/0x77d0
[ 1572.301923]  ? __fget_files+0x2f8/0x520
[ 1572.302433]  io_submit_sqes+0x44a8/0x8610
[ 1572.303011]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.303671]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.304301]  ? find_held_lock+0x2c/0x110
[ 1572.304838]  ? io_submit_sqes+0x8610/0x8610
[ 1572.305418]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1572.306052]  ? wait_for_completion_io+0x270/0x270
[ 1572.306693]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1572.307312]  ? vfs_write+0x354/0xb10
[ 1572.307807]  ? fput_many+0x2f/0x1a0
[ 1572.308283]  ? ksys_write+0x1a9/0x260
[ 1572.308800]  ? __ia32_sys_read+0xb0/0xb0
[ 1572.309343]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1572.310032]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1572.310691]  do_syscall_64+0x33/0x40
[ 1572.311191]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1572.311873] RIP: 0033:0x7feaf290db19
[ 1572.312361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1572.314795] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1572.315803] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1572.316749] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1572.317678] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1572.318615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1572.319570] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:24:42 executing program 0:
r0 = syz_io_uring_setup(0x59a8, &(0x7f00000002c0)={0x0, 0x2000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000040)={<r3=>r0, 0x3, 0x10001})
io_uring_enter(r3, 0x111b, 0x52b9, 0x2, &(0x7f0000000080)={[0x7fffffff]}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1572.380575] FAULT_INJECTION: forcing a failure.
[ 1572.380575] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1572.383188] CPU: 0 PID: 8391 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1572.384650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1572.386390] Call Trace:
[ 1572.386964]  dump_stack+0x107/0x167
[ 1572.387736]  should_fail.cold+0x5/0xa
[ 1572.388550]  __alloc_pages_nodemask+0x182/0x600
[ 1572.389537]  ? lock_acquire+0x197/0x470
[ 1572.390380]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1572.391660]  ? find_held_lock+0x2c/0x110
[ 1572.392525]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1572.393636]  ? lock_downgrade+0x6d0/0x6d0
[ 1572.394511]  ? mark_held_locks+0x9e/0xe0
[ 1572.395384]  alloc_pages_current+0x187/0x280
[ 1572.396311]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1572.397415]  ? replace_page_cache_page+0x1200/0x1200
[ 1572.398484]  pte_alloc_one+0x16/0x1a0
[ 1572.399294]  ? replace_page_cache_page+0x1200/0x1200
[ 1572.400355]  handle_mm_fault+0x2ab2/0x3500
[ 1572.401259]  ? __lock_acquire+0x1657/0x5b00
[ 1572.402168]  ? find_held_lock+0x2c/0x110
[ 1572.403025]  ? pgtable_bad+0x90/0x90
[ 1572.403818]  ? __pmd_alloc+0x630/0x630
[ 1572.404651]  ? vmacache_find+0x55/0x2a0
[ 1572.405506]  do_user_addr_fault+0x56e/0xc60
[ 1572.406426]  exc_page_fault+0xa2/0x1a0
[ 1572.407261]  asm_exc_page_fault+0x1e/0x30
[ 1572.408135] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1572.409386] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1572.413273] RSP: 0018:ffff888041f277b8 EFLAGS: 00050287
[ 1572.414398] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1572.415900] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041f27888
[ 1572.417401] RBP: ffff888041f27888 R08: 0000000000000001 R09: ffff888041f27907
[ 1572.418905] R10: ffffed10083e4f20 R11: 0000000000000001 R12: 0000000020000100
[ 1572.420410] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1572.421946]  _copy_from_user+0x172/0x1b0
[ 1572.422827]  move_addr_to_kernel.part.0+0x31/0x110
[ 1572.423859]  move_addr_to_kernel+0x4f/0x70
[ 1572.424753]  io_connect+0x47a/0x610
[ 1572.425515]  ? io_prep_rw+0x1050/0x1050
[ 1572.426375]  ? __lock_acquire+0xbb1/0x5b00
[ 1572.427281]  io_issue_sqe+0x1611/0x77d0
[ 1572.428131]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.429237]  ? lock_chain_count+0x20/0x20
[ 1572.430105]  ? __is_insn_slot_addr+0x14c/0x290
[ 1572.431073]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.432175]  ? io_connect+0x610/0x610
[ 1572.432985]  ? lock_acquire+0x197/0x470
[ 1572.433822]  ? find_held_lock+0x2c/0x110
[ 1572.434687]  ? __fget_files+0x2cf/0x520
[ 1572.435532]  ? lock_downgrade+0x6d0/0x6d0
[ 1572.436406]  __io_queue_sqe+0x90/0x9d0
[ 1572.437234]  ? io_issue_sqe+0x77d0/0x77d0
[ 1572.438103]  ? __fget_files+0x2f8/0x520
[ 1572.438962]  io_submit_sqes+0x44a8/0x8610
[ 1572.439868]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.440913]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.441931]  ? find_held_lock+0x2c/0x110
[ 1572.442805]  ? io_submit_sqes+0x8610/0x8610
[ 1572.443724]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1572.444756]  ? wait_for_completion_io+0x270/0x270
[ 1572.445777]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1572.446765]  ? vfs_write+0x354/0xb10
[ 1572.447548]  ? fput_many+0x2f/0x1a0
[ 1572.448314]  ? ksys_write+0x1a9/0x260
[ 1572.449130]  ? __ia32_sys_read+0xb0/0xb0
[ 1572.449991]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1572.451101]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1572.452224]  do_syscall_64+0x33/0x40
[ 1572.453003]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1572.454073] RIP: 0033:0x7ff5992a9b19
[ 1572.454866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1572.458736] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1572.460339] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1572.461848] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1572.463359] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1572.464862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1572.466357] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:42 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x22f4, &(0x7f0000000400)={0x0, 0xf5b, 0x0, 0x3, 0x291, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000004c0))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
preadv(r5, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/142, 0x8e}, {&(0x7f0000000100)=""/121, 0x79}, {&(0x7f0000000340)=""/134, 0x86}, {&(0x7f0000000240)=""/92, 0x5c}], 0x4, 0x7, 0x1000)

10:24:42 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x310}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r4, 0x3a78, 0x34aa, 0x3, &(0x7f0000000040)={[0x6e]}, 0x8)

10:24:42 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 36)

10:24:42 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1572.644718] FAULT_INJECTION: forcing a failure.
[ 1572.644718] name failslab, interval 1, probability 0, space 0, times 0
[ 1572.646332] CPU: 1 PID: 8413 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1572.647130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1572.648128] Call Trace:
[ 1572.648457]  dump_stack+0x107/0x167
[ 1572.648897]  should_fail.cold+0x5/0xa
[ 1572.649370]  ? ptlock_alloc+0x1d/0x70
[ 1572.649825]  should_failslab+0x5/0x20
[ 1572.650282]  kmem_cache_alloc+0x5b/0x310
[ 1572.650784]  ptlock_alloc+0x1d/0x70
[ 1572.651224]  pte_alloc_one+0x68/0x1a0
[ 1572.651665]  ? replace_page_cache_page+0x1200/0x1200
[ 1572.652283]  handle_mm_fault+0x2ab2/0x3500
[ 1572.652789]  ? __lock_acquire+0x1657/0x5b00
[ 1572.653311]  ? find_held_lock+0x2c/0x110
[ 1572.653815]  ? pgtable_bad+0x90/0x90
[ 1572.654265]  ? __pmd_alloc+0x630/0x630
[ 1572.654750]  ? vmacache_find+0x55/0x2a0
[ 1572.655234]  do_user_addr_fault+0x56e/0xc60
[ 1572.655758]  exc_page_fault+0xa2/0x1a0
[ 1572.656242]  asm_exc_page_fault+0x1e/0x30
[ 1572.656750] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1572.657469] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1572.659688] RSP: 0018:ffff888041cdf7b8 EFLAGS: 00050287
[ 1572.660347] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1572.661200] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041cdf888
[ 1572.662055] RBP: ffff888041cdf888 R08: 0000000000000001 R09: ffff888041cdf907
[ 1572.662929] R10: ffffed100839bf20 R11: 0000000000000001 R12: 0000000020000100
[ 1572.663788] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1572.664663]  _copy_from_user+0x172/0x1b0
[ 1572.665157]  move_addr_to_kernel.part.0+0x31/0x110
[ 1572.665749]  move_addr_to_kernel+0x4f/0x70
[ 1572.666261]  io_connect+0x47a/0x610
[ 1572.666697]  ? io_prep_rw+0x1050/0x1050
[ 1572.667192]  ? __lock_acquire+0xbb1/0x5b00
[ 1572.667702]  io_issue_sqe+0x1611/0x77d0
[ 1572.668164]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.668798]  ? lock_chain_count+0x20/0x20
[ 1572.669294]  ? __is_insn_slot_addr+0x14c/0x290
[ 1572.669842]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1572.670447]  ? io_connect+0x610/0x610
[ 1572.670957]  ? lock_acquire+0x197/0x470
[ 1572.671523]  ? find_held_lock+0x2c/0x110
[ 1572.672092]  ? __fget_files+0x2cf/0x520
[ 1572.672567]  ? lock_downgrade+0x6d0/0x6d0
[ 1572.673061]  __io_queue_sqe+0x90/0x9d0
[ 1572.673528]  ? io_issue_sqe+0x77d0/0x77d0
[ 1572.674015]  ? __fget_files+0x2f8/0x520
[ 1572.674505]  io_submit_sqes+0x44a8/0x8610
[ 1572.675002]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.675600]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1572.676148]  ? find_held_lock+0x2c/0x110
[ 1572.676652]  ? io_submit_sqes+0x8610/0x8610
[ 1572.677143]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1572.677723]  ? wait_for_completion_io+0x270/0x270
[ 1572.678275]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1572.678839]  ? vfs_write+0x354/0xb10
[ 1572.679264]  ? fput_many+0x2f/0x1a0
[ 1572.679703]  ? ksys_write+0x1a9/0x260
[ 1572.680138]  ? __ia32_sys_read+0xb0/0xb0
[ 1572.680625]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1572.681248]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1572.681837]  do_syscall_64+0x33/0x40
[ 1572.682288]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1572.682872] RIP: 0033:0x7ff5992a9b19
[ 1572.683309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1572.685488] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1572.686380] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1572.687245] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1572.688084] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1572.688931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1572.689767] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:43 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4}}, './file0\x00'})
r1 = syz_io_uring_setup(0x79aa, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x800, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
getsockopt$bt_BT_CHANNEL_POLICY(r4, 0x112, 0xa, &(0x7f0000000040)=0x1ff, &(0x7f0000000080)=0x4)

10:24:43 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(r4, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:43 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:43 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4c23, &(0x7f0000000040)={0x0, 0xc01e, 0x1, 0x2, 0x1c4, 0x0, r4}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100))

10:24:56 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

10:24:56 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

10:24:56 executing program 5:
r0 = syz_io_uring_setup(0x10079a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1586.117429] FAULT_INJECTION: forcing a failure.
[ 1586.117429] name failslab, interval 1, probability 0, space 0, times 0
[ 1586.118764] CPU: 1 PID: 8445 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1586.119543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1586.120478] Call Trace:
[ 1586.120788]  dump_stack+0x107/0x167
[ 1586.121203]  should_fail.cold+0x5/0xa
[ 1586.121646]  ? ptlock_alloc+0x1d/0x70
[ 1586.122077]  should_failslab+0x5/0x20
[ 1586.122510]  kmem_cache_alloc+0x5b/0x310
[ 1586.122990]  ptlock_alloc+0x1d/0x70
[ 1586.123406]  pte_alloc_one+0x68/0x1a0
[ 1586.123844]  ? replace_page_cache_page+0x1200/0x1200
10:24:56 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 37)

10:24:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

[ 1586.124425]  handle_mm_fault+0x2ab2/0x3500
[ 1586.125039]  ? __lock_acquire+0x1657/0x5b00
[ 1586.125547]  ? __pmd_alloc+0x630/0x630
[ 1586.125996]  ? vmacache_find+0x55/0x2a0
[ 1586.126455]  do_user_addr_fault+0x56e/0xc60
[ 1586.126963]  exc_page_fault+0xa2/0x1a0
[ 1586.127409]  asm_exc_page_fault+0x1e/0x30
[ 1586.127890] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1586.128510] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1586.130612] RSP: 0018:ffff888042a477b8 EFLAGS: 00050246
[ 1586.131243] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1586.132062] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042a47888
[ 1586.132871] RBP: ffff888042a47888 R08: 0000000000000001 R09: ffff888042a47907
[ 1586.133680] R10: ffffed1008548f20 R11: 0000000000000001 R12: 0000000020000100
[ 1586.134487] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1586.135323]  _copy_from_user+0x172/0x1b0
[ 1586.135790]  move_addr_to_kernel.part.0+0x31/0x110
[ 1586.136346]  move_addr_to_kernel+0x4f/0x70
[ 1586.136835]  io_connect+0x47a/0x610
[ 1586.137249]  ? io_prep_rw+0x1050/0x1050
[ 1586.137713]  ? __lock_acquire+0xbb1/0x5b00
[ 1586.138197]  io_issue_sqe+0x1611/0x77d0
[ 1586.138662]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.139268]  ? lock_chain_count+0x20/0x20
[ 1586.139743]  ? __is_insn_slot_addr+0x14c/0x290
[ 1586.140267]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.140863]  ? io_connect+0x610/0x610
[ 1586.141298]  ? lock_acquire+0x197/0x470
[ 1586.141754]  ? find_held_lock+0x2c/0x110
[ 1586.142226]  ? __fget_files+0x2cf/0x520
[ 1586.142682]  ? lock_downgrade+0x6d0/0x6d0
[ 1586.143197]  __io_queue_sqe+0x90/0x9d0
[ 1586.143715]  ? io_issue_sqe+0x77d0/0x77d0
[ 1586.144278]  ? __fget_files+0x2f8/0x520
[ 1586.144816]  io_submit_sqes+0x44a8/0x8610
[ 1586.145302]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.145868]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.146416]  ? find_held_lock+0x2c/0x110
[ 1586.146886]  ? io_submit_sqes+0x8610/0x8610
[ 1586.147388]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1586.147938]  ? wait_for_completion_io+0x270/0x270
[ 1586.148492]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1586.149021]  ? vfs_write+0x354/0xb10
[ 1586.149446]  ? fput_many+0x2f/0x1a0
[ 1586.149864]  ? ksys_write+0x1a9/0x260
[ 1586.150302]  ? __ia32_sys_read+0xb0/0xb0
[ 1586.150767]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1586.151374]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1586.151976]  do_syscall_64+0x33/0x40
[ 1586.152397]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1586.152982] RIP: 0033:0x7feaf290db19
[ 1586.153409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1586.155513] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1586.156383] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1586.157193] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1586.158004] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1586.158818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1586.159633] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1586.165803] FAULT_INJECTION: forcing a failure.
[ 1586.165803] name failslab, interval 1, probability 0, space 0, times 0
[ 1586.168609] CPU: 0 PID: 8440 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1586.170101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1586.172017] Call Trace:
[ 1586.172629]  dump_stack+0x107/0x167
[ 1586.173462]  should_fail.cold+0x5/0xa
[ 1586.174287]  ? create_object.isra.0+0x3a/0xa30
[ 1586.175321]  should_failslab+0x5/0x20
[ 1586.176194]  kmem_cache_alloc+0x5b/0x310
[ 1586.177123]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1586.178438]  create_object.isra.0+0x3a/0xa30
[ 1586.179439]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1586.180612]  kmem_cache_alloc+0x159/0x310
[ 1586.181498]  ptlock_alloc+0x1d/0x70
[ 1586.182327]  pte_alloc_one+0x68/0x1a0
[ 1586.183205]  ? replace_page_cache_page+0x1200/0x1200
[ 1586.184366]  handle_mm_fault+0x2ab2/0x3500
[ 1586.185294]  ? __schedule+0x82c/0x1ea0
[ 1586.186176]  ? __pmd_alloc+0x630/0x630
[ 1586.187090]  ? vmacache_find+0x55/0x2a0
[ 1586.188006]  do_user_addr_fault+0x56e/0xc60
[ 1586.188999]  exc_page_fault+0xa2/0x1a0
[ 1586.189886]  asm_exc_page_fault+0x1e/0x30
[ 1586.190837] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1586.192184] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1586.196364] RSP: 0018:ffff888042f677b8 EFLAGS: 00050287
[ 1586.197576] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1586.199200] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042f67888
[ 1586.200816] RBP: ffff888042f67888 R08: 0000000000000001 R09: ffff888042f67907
[ 1586.202439] R10: ffffed10085ecf20 R11: 0000000000000001 R12: 0000000020000100
[ 1586.204060] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1586.205704]  _copy_from_user+0x172/0x1b0
[ 1586.206628]  move_addr_to_kernel.part.0+0x31/0x110
[ 1586.207758]  move_addr_to_kernel+0x4f/0x70
[ 1586.208714]  io_connect+0x47a/0x610
[ 1586.209543]  ? io_prep_rw+0x1050/0x1050
[ 1586.210469]  ? __lock_acquire+0xbb1/0x5b00
[ 1586.211444]  io_issue_sqe+0x1611/0x77d0
[ 1586.212356]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.213559]  ? lock_chain_count+0x20/0x20
[ 1586.214501]  ? __is_insn_slot_addr+0x14c/0x290
[ 1586.215549]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.216734]  ? io_connect+0x610/0x610
[ 1586.217605]  ? lock_acquire+0x197/0x470
[ 1586.218501]  ? find_held_lock+0x2c/0x110
[ 1586.219434]  ? __fget_files+0x2cf/0x520
[ 1586.220334]  ? lock_downgrade+0x6d0/0x6d0
[ 1586.221282]  __io_queue_sqe+0x90/0x9d0
[ 1586.222170]  ? io_issue_sqe+0x77d0/0x77d0
[ 1586.223111]  ? __fget_files+0x2f8/0x520
[ 1586.224024]  io_submit_sqes+0x44a8/0x8610
[ 1586.224990]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.226113]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.227212]  ? find_held_lock+0x2c/0x110
[ 1586.228137]  ? io_submit_sqes+0x8610/0x8610
[ 1586.229118]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1586.230208]  ? wait_for_completion_io+0x270/0x270
[ 1586.231315]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1586.232375]  ? vfs_write+0x354/0xb10
[ 1586.233223]  ? fput_many+0x2f/0x1a0
[ 1586.234045]  ? ksys_write+0x1a9/0x260
[ 1586.234911]  ? __ia32_sys_read+0xb0/0xb0
[ 1586.235852]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1586.237041]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1586.238218]  do_syscall_64+0x33/0x40
[ 1586.239066]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1586.240225] RIP: 0033:0x7ff5992a9b19
[ 1586.241063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1586.245237] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1586.246967] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1586.248594] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1586.250215] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1586.251829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1586.253432] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000f80)={<r5=>0x0}, &(0x7f0000000fc0)=0xc)
move_pages(r5, 0x4, &(0x7f0000001000)=[&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil], &(0x7f0000001040)=[0x4, 0x6fb, 0x9], &(0x7f0000001080)=[0x0], 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, &(0x7f0000000f40)={0x5, &(0x7f0000000e80)=[{0x15e7, 0x15, &(0x7f0000000c00)="34771e361a6e1c5d2a80ec1d1290863302e55b6e51", 0x1, 0x1}, {0x40, 0x2f, &(0x7f0000000c40)="06025687881b840c3773a920aceef1e8f4229475ea7c0b54e02550014dc153ba1b03900ab4ef5c77255048ac91a33f"}, {0x3, 0x56, &(0x7f0000000c80)="52a0320d235ef38f03c283458592abbf0720751727e22a48024eeb00a474022a99375a8708b7ee9e7896153dd06dc6b743626f70cfd692a9137eea663aec6ee1cb8c4f3efc965b4e0c420169a64d608b16e9b9af251e", 0x0, 0x1}, {0x800, 0xcb, &(0x7f0000000d00)="625c53dc7879ec6bd70c3c4e36ff5880efb54c35586e1c942f42fd5c9096af9f9ed30d08f8cec16593dec780cb07917f0f684de26237a550b0b92b2969c79d02de566a35723b56bc0658e911db7d3d8de236b1a8a85555f6e56f522bbebf8e2b2ff466d63d8b90f5d713957f8b99d5a444a0c0f29500cc83ccd03182e2253f83b2f520c48e128769069722c75a5047ed8305e701be62d408f79c3b2018d4a5d11dcf3daa91211e280bfa9b300718ca28d09550af3bad46bbef70dd61c9bd2756c1ecf97370bc24aa36c9de", 0x1}, {0xad000000, 0x62, &(0x7f0000000e00)="9c521da873dc6619ebb19431c6543ba59833cfad96052694c31911f69f0b1475340d291a8d9be76cd84e493a52901c480d1eb03e87da14e20a20f9e33e194d1b767efa92985d467ac2b11e0d3394327c1db8e2e919e086d7782c3a90dafd1a1818cf", 0x0, 0x1}]})
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
r7 = syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000340)='./file0\x00', 0x5, 0x4, &(0x7f0000000640)=[{&(0x7f0000000380)="a544ba9a773d455ff4947534f186043dc1d890d82c56873c2ec9eb64333ba51c4cdd7e229ac2f5185f87c4c7ee5edc18a679e02cb6581ae93a0554311a479d594159780b18b2d2156093fa6f9ac796285213d262d0f3b4eb4c119c2ef702944795b5effad22c97b403745590ff8490", 0x6f, 0xfffffffffffff801}, {&(0x7f0000000400)="50e3a097c6229f0d530f8b86d76ac1200a9410cba1acc53395ace53178f130f12a4da0f4a09f1087ae5bf4a5a86d378ea6c22678a3a60c7ac97bb3a4db0151ce36035b5790943928d443d2acf6049e2148fedc7cebe23e3e207df66b4d0909", 0x5f, 0x783}, {&(0x7f0000000480)="d6cbfce7d6fb9b76229ad95fffd8a8571b86309fe2d65b22ffbaae3fe4ef27803a4116ccfcdb2c6baf0edd613a00c66c137d4b71c254d5656e89e03727f10ffd770ea03321ffc39ccb78c67733d2c8a92a5fb831d38a82531e7c7d1b68983123dfebcaa449702ff2db23f8453a298ec65ce86ce78fc2e20b3c8861604859a928c8698c2f674b071117e0d5a973ef0f21d3873dcc9b8dc55fb1f778a4c5ca62753b9e3ea7863332388996ce0139f547b430178e7c69f21f032a2c4dd4086a55c4c5e3acd1", 0xc4, 0x101}, {&(0x7f0000000580)="8806d46bf4f4cce1d46c8609497ed2ebc939db82cb2dd1dd1b2f9e0374783fedc2108337385b39be779d80262fc89e801dbb3591afab94d625708413d3a54beac6065a33f96a7cf405bbda4a2d7c8d0692ed17c40badb873ed6814e6d2d0d2c0473d4f3aaa2a9bd0dab88d866288777f6ca9b54cdafc3a5a0d58e4265468a81db9d015dac05331bced400dda5b3f17d0585a22bae44c7fc1699769175d6e4140b1f2ca9752898516a5dd", 0xaa, 0x5}], 0x40, &(0x7f00000006c0)={[{@nocompress}, {@hide}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@session={'session', 0x3d, 0x5c}}, {@map_normal}, {@map_normal}, {@sbsector={'sbsector', 0x3d, 0xcf}}, {@overriderock}, {@session={'session', 0x3d, 0x3b}}, {@overriderock}], [{@subj_type={'subj_type', 0x3d, 'Z'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}]})
write$binfmt_elf64(r7, &(0x7f00000007c0)={{0x7f, 0x45, 0x4c, 0x46, 0xe9, 0x1, 0x6, 0x4, 0x0, 0x3, 0x6, 0x9, 0x1cd, 0x40, 0x2c8, 0x200, 0x9, 0x38, 0x2, 0x2, 0xff59, 0xa00}, [{0x7, 0x401, 0x4a, 0x9, 0x3f, 0xfff, 0x7f, 0x5}], "26abb728054359d2d0337b578d97117da6e0d7a8292d586363a7b3ba3fef78af76a9eb832f561d8c9723c69c533068322d0bad1e856142108c17fca6a33d7b4c80c7ad46e8061be9c4e120653557ad07aa47a128e2123032e06a3cc24e4c8d69f7edfb9f1ebd664e3206a4bbbeecee8f222e6d9641c9bfb314aa62e91795e842aaa82c31582375d5c2a2d425", ['\x00', '\x00', '\x00']}, 0x404)
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
ioctl$sock_TIOCOUTQ(r6, 0x5411, &(0x7f0000000040))
io_uring_enter(r0, 0x58ab, 0x0, 0x1, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r8, &(0x7f0000000000)=""/59, 0x3b, 0x8)
getsockopt$bt_sco_SCO_OPTIONS(r8, 0x11, 0x1, &(0x7f0000000080)=""/236, &(0x7f00000001c0)=0xec)

10:24:56 executing program 0:
r0 = syz_io_uring_setup(0x3920, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x80010, r0, 0x8000000)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000008, 0x10010, r0, 0x8000000)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, 0x40010, r0, 0x0)
io_uring_enter(r9, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r9, 0x4dee, 0x84ef, 0x0, &(0x7f00000000c0)={[0x2]}, 0x8)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000080)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r8, 0x0, 0x0, 0x4, 0x8, 0x0, {0x0, 0x0, r0}}, 0x2)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf, 0x0, 0x0)

[ 1586.362251] loop5: detected capacity change from 0 to 8384512
[ 1586.366075] ======================================================
[ 1586.366075] WARNING: the mand mount option is being deprecated and
[ 1586.366075]          will be removed in v5.15!
[ 1586.366075] ======================================================
10:24:56 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

10:24:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MAC_ACL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040), 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x110, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7b, 0x20}}}}, [@NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xd7, 0xbe, "72960ec69df58a307e5b643c18e78378b07c68e527f510a0285e56991c039c0f1b5658f375a50e6ea04a34ad005eeff0b79de0b77c3fb5a6eaa102d6c0b723c30d5d872414fcb34a8548cbc0d4d6ac8be6ab8db0d599b53fd07c29cd7c5b6d353b8c74cda8905c251ef89d8137fafb46ebe2fd051dfe7bacdbd8b78e9036f25e4ee082286e86496cfb403f72dd1c285d80625b18d06c3869ad5b8043df0212d647553ab300418b382051c7c82885ad39ec18c9c5722f05d981bc669ca6f6c696cba83940d50916c28d15ab39f79441340c0943"}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, r2}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x9}]}, 0x110}, 0x1, 0x0, 0x0, 0x404a000}, 0x440008d5)
r3 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000180)=<r5=>0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000240)={'wg2\x00', <r4=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000480)={'ip6tnl0\x00', &(0x7f0000000400)={'ip6gre0\x00', <r5=>0x0, 0x29, 0x40, 0x2, 0x7, 0x20, @loopback, @dev={0xfe, 0x80, '\x00', 0xd}, 0x8000, 0x10, 0x6, 0x7f}})
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000000600)={'syztnl0\x00', &(0x7f0000000580)={'syztnl1\x00', <r6=>0x0, 0x29, 0xe1, 0x3, 0x0, 0x10, @mcast2, @mcast1, 0x10, 0x40, 0x8, 0x10000}})
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000640)={0x1e4, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x24, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x4}]}, @ETHTOOL_A_STRSET_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}, @ETHTOOL_A_STRSET_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x140, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x1e4}, 0x1, 0x0, 0x0, 0x8c1}, 0x24044800)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
r8 = syz_open_dev$vcsa(&(0x7f0000000100), 0x6, 0x44000)
pread64(r8, &(0x7f0000000000)=""/54, 0x36, 0x8)
open_tree(r7, &(0x7f0000000040)='./file0/file0\x00', 0x48001)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
fstat(r0, &(0x7f0000000080))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:56 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:57 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 38)

[ 1586.700818] FAULT_INJECTION: forcing a failure.
[ 1586.700818] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1586.702257] CPU: 1 PID: 8482 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1586.703049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1586.703998] Call Trace:
[ 1586.704307]  dump_stack+0x107/0x167
[ 1586.704728]  should_fail.cold+0x5/0xa
[ 1586.705174]  __alloc_pages_nodemask+0x182/0x600
[ 1586.705717]  ? lock_acquire+0x197/0x470
[ 1586.706172]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1586.706858]  ? find_held_lock+0x2c/0x110
[ 1586.707334]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1586.707937]  ? lock_downgrade+0x6d0/0x6d0
[ 1586.708397]  ? mark_held_locks+0x9e/0xe0
[ 1586.708873]  alloc_pages_current+0x187/0x280
[ 1586.709359]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1586.709966]  ? replace_page_cache_page+0x1200/0x1200
[ 1586.710557]  pte_alloc_one+0x16/0x1a0
[ 1586.710984]  ? replace_page_cache_page+0x1200/0x1200
[ 1586.711569]  handle_mm_fault+0x2ab2/0x3500
[ 1586.712030]  ? __lock_acquire+0x1657/0x5b00
[ 1586.712494]  ? find_held_lock+0x2c/0x110
[ 1586.712933]  ? pgtable_bad+0x90/0x90
[ 1586.713344]  ? __pmd_alloc+0x630/0x630
[ 1586.713774]  ? vmacache_find+0x55/0x2a0
[ 1586.714210]  do_user_addr_fault+0x56e/0xc60
[ 1586.714684]  exc_page_fault+0xa2/0x1a0
[ 1586.715115]  asm_exc_page_fault+0x1e/0x30
[ 1586.715568] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1586.716216] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1586.718219] RSP: 0018:ffff888042aa77b8 EFLAGS: 00050287
[ 1586.718799] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1586.719588] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042aa7888
[ 1586.720364] RBP: ffff888042aa7888 R08: 0000000000000001 R09: ffff888042aa7907
[ 1586.721140] R10: ffffed1008554f20 R11: 0000000000000001 R12: 0000000020000100
[ 1586.721914] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1586.722707]  _copy_from_user+0x172/0x1b0
[ 1586.723172]  move_addr_to_kernel.part.0+0x31/0x110
[ 1586.723708]  move_addr_to_kernel+0x4f/0x70
[ 1586.724169]  io_connect+0x47a/0x610
[ 1586.724563]  ? io_prep_rw+0x1050/0x1050
[ 1586.725002]  ? __lock_acquire+0xbb1/0x5b00
[ 1586.725469]  io_issue_sqe+0x1611/0x77d0
[ 1586.725912]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.726486]  ? lock_chain_count+0x20/0x20
[ 1586.726937]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1586.727521]  ? io_connect+0x610/0x610
[ 1586.727937]  ? lock_acquire+0x197/0x470
[ 1586.728366]  ? find_held_lock+0x2c/0x110
[ 1586.728812]  ? __fget_files+0x2cf/0x520
[ 1586.729254]  ? lock_downgrade+0x6d0/0x6d0
[ 1586.729711]  __io_queue_sqe+0x90/0x9d0
[ 1586.730137]  ? io_issue_sqe+0x77d0/0x77d0
[ 1586.730587]  ? __fget_files+0x2f8/0x520
[ 1586.731036]  io_submit_sqes+0x44a8/0x8610
[ 1586.731513]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.732058]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1586.732592]  ? find_held_lock+0x2c/0x110
[ 1586.733038]  ? io_submit_sqes+0x8610/0x8610
[ 1586.733517]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1586.734046]  ? wait_for_completion_io+0x270/0x270
[ 1586.734577]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1586.735096]  ? vfs_write+0x354/0xb10
[ 1586.735504]  ? fput_many+0x2f/0x1a0
[ 1586.735895]  ? ksys_write+0x1a9/0x260
[ 1586.736307]  ? __ia32_sys_read+0xb0/0xb0
[ 1586.736748]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1586.737322]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1586.737879]  do_syscall_64+0x33/0x40
[ 1586.738283]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1586.738839] RIP: 0033:0x7ff5992a9b19
[ 1586.739248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1586.741251] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1586.742080] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1586.742851] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1586.743645] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1586.744415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1586.745190] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:24:57 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x61ac, &(0x7f0000000040)={0x0, 0x1854, 0x8, 0x1, 0x2a4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x6, 0x4000010, r4, 0x8000000)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x4000010, r4, 0x0)

10:24:57 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:24:57 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 39)

[ 1587.055800] FAULT_INJECTION: forcing a failure.
[ 1587.055800] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1587.058670] CPU: 0 PID: 8502 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1587.060127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1587.061861] Call Trace:
[ 1587.062414]  dump_stack+0x107/0x167
[ 1587.063194]  should_fail.cold+0x5/0xa
[ 1587.064033]  __alloc_pages_nodemask+0x182/0x600
[ 1587.065032]  ? lock_acquire+0x197/0x470
[ 1587.065864]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1587.067123]  ? find_held_lock+0x2c/0x110
[ 1587.067974]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1587.069064]  ? lock_downgrade+0x6d0/0x6d0
[ 1587.069931]  ? mark_held_locks+0x9e/0xe0
[ 1587.070787]  alloc_pages_current+0x187/0x280
[ 1587.071727]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1587.072823]  ? replace_page_cache_page+0x1200/0x1200
[ 1587.073883]  pte_alloc_one+0x16/0x1a0
[ 1587.074685]  ? replace_page_cache_page+0x1200/0x1200
[ 1587.075766]  handle_mm_fault+0x2ab2/0x3500
[ 1587.076659]  ? __lock_acquire+0x1657/0x5b00
[ 1587.077560]  ? __pmd_alloc+0x630/0x630
[ 1587.078385]  ? vmacache_find+0x55/0x2a0
[ 1587.079230]  do_user_addr_fault+0x56e/0xc60
[ 1587.080140]  exc_page_fault+0xa2/0x1a0
[ 1587.080954]  asm_exc_page_fault+0x1e/0x30
[ 1587.081824] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1587.082951] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1587.086854] RSP: 0018:ffff888041cb77b8 EFLAGS: 00050246
[ 1587.087980] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1587.089461] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041cb7888
[ 1587.090990] RBP: ffff888041cb7888 R08: 0000000000000001 R09: ffff888041cb7907
[ 1587.092476] R10: ffffed1008396f20 R11: 0000000000000001 R12: 0000000020000100
[ 1587.093970] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1587.095485]  _copy_from_user+0x172/0x1b0
[ 1587.096342]  move_addr_to_kernel.part.0+0x31/0x110
[ 1587.097359]  move_addr_to_kernel+0x4f/0x70
[ 1587.098279]  io_connect+0x47a/0x610
[ 1587.099056]  ? io_prep_rw+0x1050/0x1050
[ 1587.099905]  ? __lock_acquire+0xbb1/0x5b00
[ 1587.100794]  io_issue_sqe+0x1611/0x77d0
[ 1587.101633]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1587.102734]  ? lock_chain_count+0x20/0x20
[ 1587.103613]  ? __is_insn_slot_addr+0x14c/0x290
[ 1587.104561]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1587.105644]  ? io_connect+0x610/0x610
[ 1587.106440]  ? lock_acquire+0x197/0x470
[ 1587.107276]  ? find_held_lock+0x2c/0x110
[ 1587.108133]  ? __fget_files+0x2cf/0x520
[ 1587.108961]  ? lock_downgrade+0x6d0/0x6d0
[ 1587.109833]  __io_queue_sqe+0x90/0x9d0
[ 1587.110651]  ? io_issue_sqe+0x77d0/0x77d0
[ 1587.111525]  ? __fget_files+0x2f8/0x520
[ 1587.112370]  io_submit_sqes+0x44a8/0x8610
[ 1587.113261]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1587.114299]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1587.115305]  ? find_held_lock+0x2c/0x110
[ 1587.116157]  ? io_submit_sqes+0x8610/0x8610
[ 1587.117057]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1587.118059]  ? wait_for_completion_io+0x270/0x270
[ 1587.119068]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1587.120036]  ? vfs_write+0x354/0xb10
[ 1587.120807]  ? fput_many+0x2f/0x1a0
[ 1587.121554]  ? ksys_write+0x1a9/0x260
[ 1587.122348]  ? __ia32_sys_read+0xb0/0xb0
[ 1587.123204]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1587.124289]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1587.125357]  do_syscall_64+0x33/0x40
[ 1587.126135]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1587.127198] RIP: 0033:0x7ff5992a9b19
[ 1587.127966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1587.131783] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1587.133361] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1587.134836] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1587.136326] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1587.137823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1587.139323] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:10 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 40)

10:25:10 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

10:25:10 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00, 0x0, 0x0)

10:25:10 executing program 0:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r2 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:10 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x4}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={<r4=>0x0}, &(0x7f0000000080)=0xc)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000100)={0xa, 0x4e20, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7fffffff}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000140)="e6a2a11c15db1a122a8bdf54debabf19de6015cd4bc3f01e1b708293bff081295e55f415fec81b", 0x27}, {&(0x7f00000001c0)}, {&(0x7f0000000240)="efcd472ea32a8177cf9d760ded7bd34e649c7b0ce7948f3fbfa06d770afc86c91195b112ea10f05926d098f9699e56ce7fdf58be90f5339e7cb42aa6a3a85db2739a49a6dd1d6f", 0x47}], 0x3, &(0x7f0000000380)=[@dstopts_2292={{0x70, 0x29, 0x4, {0x73, 0xa, '\x00', [@calipso={0x7, 0x50, {0x3, 0x12, 0x1, 0x8, [0x6e5, 0x2, 0xfff, 0x46, 0xfffffffffffff801, 0x77b, 0x100000000, 0xfff, 0x60aef874]}}, @enc_lim={0x4, 0x1, 0x81}]}}}, @rthdrdstopts={{0xd8, 0x29, 0x37, {0x5c, 0x17, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x28, {0x3, 0x8, 0xff, 0x3, [0x6, 0x5ce, 0x89, 0x1]}}, @calipso={0x7, 0x18, {0x2, 0x4, 0xff, 0x7ff, [0xff, 0x8001]}}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0xffff}, @calipso={0x7, 0x40, {0x1, 0xe, 0x9, 0x8001, [0x0, 0x3, 0x1, 0x0, 0x0, 0xc994, 0x80000001]}}, @calipso={0x7, 0x20, {0x1, 0x6, 0x9, 0x1f, [0x5, 0x7, 0x8001]}}]}}}], 0x148}, 0x8050)
ioctl$sock_FIOSETOWN(r3, 0x8901, &(0x7f00000000c0)=r4)

10:25:10 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

10:25:10 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:10 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1600.604744] FAULT_INJECTION: forcing a failure.
[ 1600.604744] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.606188] CPU: 1 PID: 8512 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1600.607019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.608036] Call Trace:
[ 1600.608368]  dump_stack+0x107/0x167
[ 1600.608823]  should_fail.cold+0x5/0xa
[ 1600.609305]  ? create_object.isra.0+0x3a/0xa30
[ 1600.609862]  should_failslab+0x5/0x20
[ 1600.610328]  kmem_cache_alloc+0x5b/0x310
[ 1600.610812]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1600.611547]  create_object.isra.0+0x3a/0xa30
[ 1600.612077]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1600.612704]  kmem_cache_alloc+0x159/0x310
[ 1600.613214]  ptlock_alloc+0x1d/0x70
[ 1600.613657]  pte_alloc_one+0x68/0x1a0
[ 1600.614117]  ? replace_page_cache_page+0x1200/0x1200
[ 1600.614752]  handle_mm_fault+0x2ab2/0x3500
[ 1600.615282]  ? __lock_acquire+0x1657/0x5b00
[ 1600.615799]  ? __pmd_alloc+0x630/0x630
[ 1600.616273]  ? vmacache_find+0x55/0x2a0
[ 1600.616762]  do_user_addr_fault+0x56e/0xc60
[ 1600.617303]  exc_page_fault+0xa2/0x1a0
[ 1600.617790]  asm_exc_page_fault+0x1e/0x30
[ 1600.618299] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1600.618960] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1600.621191] RSP: 0018:ffff888041d7f7b8 EFLAGS: 00050246
[ 1600.621840] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1600.622709] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041d7f888
[ 1600.623583] RBP: ffff888041d7f888 R08: 0000000000000001 R09: ffff888041d7f907
[ 1600.624460] R10: ffffed10083aff20 R11: 0000000000000001 R12: 0000000020000100
[ 1600.625324] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1600.626194]  _copy_from_user+0x172/0x1b0
[ 1600.626685]  move_addr_to_kernel.part.0+0x31/0x110
[ 1600.627289]  move_addr_to_kernel+0x4f/0x70
[ 1600.627801]  io_connect+0x47a/0x610
[ 1600.628240]  ? io_prep_rw+0x1050/0x1050
[ 1600.628728]  ? __lock_acquire+0xbb1/0x5b00
[ 1600.629246]  io_issue_sqe+0x1611/0x77d0
[ 1600.629728]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.630350]  ? lock_chain_count+0x20/0x20
[ 1600.630842]  ? __is_insn_slot_addr+0x14c/0x290
[ 1600.631438]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.632068]  ? io_connect+0x610/0x610
[ 1600.632530]  ? lock_acquire+0x197/0x470
[ 1600.633000]  ? find_held_lock+0x2c/0x110
[ 1600.633488]  ? __fget_files+0x2cf/0x520
[ 1600.633962]  ? lock_downgrade+0x6d0/0x6d0
[ 1600.634461]  __io_queue_sqe+0x90/0x9d0
[ 1600.634925]  ? io_issue_sqe+0x77d0/0x77d0
[ 1600.635437]  ? __fget_files+0x2f8/0x520
[ 1600.635917]  io_submit_sqes+0x44a8/0x8610
[ 1600.636430]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.637036]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.637618]  ? find_held_lock+0x2c/0x110
[ 1600.638105]  ? io_submit_sqes+0x8610/0x8610
[ 1600.638622]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1600.639203]  ? wait_for_completion_io+0x270/0x270
[ 1600.639781]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1600.640332]  ? vfs_write+0x354/0xb10
[ 1600.640785]  ? fput_many+0x2f/0x1a0
[ 1600.641224]  ? ksys_write+0x1a9/0x260
[ 1600.641692]  ? __ia32_sys_read+0xb0/0xb0
[ 1600.642185]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.642811]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.643431]  do_syscall_64+0x33/0x40
[ 1600.643871]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.644487] RIP: 0033:0x7feaf290db19
[ 1600.644926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.647134] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1600.648059] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1600.648903] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1600.649751] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1600.650607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1600.651454] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1600.658334] FAULT_INJECTION: forcing a failure.
[ 1600.658334] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.659911] CPU: 1 PID: 8518 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1600.660717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.661691] Call Trace:
[ 1600.662001]  dump_stack+0x107/0x167
[ 1600.662432]  should_fail.cold+0x5/0xa
[ 1600.662878]  ? ptlock_alloc+0x1d/0x70
[ 1600.663345]  should_failslab+0x5/0x20
[ 1600.663795]  kmem_cache_alloc+0x5b/0x310
[ 1600.664286]  ptlock_alloc+0x1d/0x70
[ 1600.664715]  pte_alloc_one+0x68/0x1a0
[ 1600.665167]  ? replace_page_cache_page+0x1200/0x1200
[ 1600.665760]  handle_mm_fault+0x2ab2/0x3500
[ 1600.666239]  ? __lock_acquire+0x1657/0x5b00
[ 1600.666746]  ? __pmd_alloc+0x630/0x630
[ 1600.667220]  ? vmacache_find+0x55/0x2a0
[ 1600.667676]  do_user_addr_fault+0x56e/0xc60
[ 1600.668184]  exc_page_fault+0xa2/0x1a0
[ 1600.668642]  asm_exc_page_fault+0x1e/0x30
[ 1600.669104] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1600.669742] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1600.671792] RSP: 0018:ffff888040dc77b8 EFLAGS: 00050246
[ 1600.672420] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1600.673251] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888040dc7888
[ 1600.674044] RBP: ffff888040dc7888 R08: 0000000000000001 R09: ffff888040dc7907
[ 1600.674884] R10: ffffed10081b8f20 R11: 0000000000000001 R12: 0000000020000100
[ 1600.675731] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1600.676541]  _copy_from_user+0x172/0x1b0
[ 1600.677027]  move_addr_to_kernel.part.0+0x31/0x110
[ 1600.677583]  move_addr_to_kernel+0x4f/0x70
[ 1600.678087]  io_connect+0x47a/0x610
[ 1600.678523]  ? io_prep_rw+0x1050/0x1050
[ 1600.678979]  ? __lock_acquire+0xbb1/0x5b00
[ 1600.679489]  io_issue_sqe+0x1611/0x77d0
[ 1600.679958]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.680539]  ? lock_chain_count+0x20/0x20
[ 1600.681031]  ? __is_insn_slot_addr+0x14c/0x290
[ 1600.681539]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.682151]  ? io_connect+0x610/0x610
[ 1600.682599]  ? lock_acquire+0x197/0x470
[ 1600.683050]  ? find_held_lock+0x2c/0x110
[ 1600.683536]  ? __fget_files+0x2cf/0x520
[ 1600.683979]  ? lock_downgrade+0x6d0/0x6d0
[ 1600.684463]  __io_queue_sqe+0x90/0x9d0
[ 1600.684923]  ? io_issue_sqe+0x77d0/0x77d0
[ 1600.685409]  ? __fget_files+0x2f8/0x520
[ 1600.685877]  io_submit_sqes+0x44a8/0x8610
[ 1600.686373]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.686931]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.687499]  ? find_held_lock+0x2c/0x110
[ 1600.687950]  ? io_submit_sqes+0x8610/0x8610
[ 1600.688459]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1600.688989]  ? wait_for_completion_io+0x270/0x270
[ 1600.689558]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1600.690066]  ? vfs_write+0x354/0xb10
[ 1600.690475]  ? fput_many+0x2f/0x1a0
[ 1600.690897]  ? ksys_write+0x1a9/0x260
[ 1600.691322]  ? __ia32_sys_read+0xb0/0xb0
[ 1600.691799]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.692383]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.692992]  do_syscall_64+0x33/0x40
[ 1600.693403]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.694004] RIP: 0033:0x7ff5992a9b19
[ 1600.694420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.696589] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1600.697428] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1600.698209] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1600.698988] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1600.699772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1600.700558] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xd6e7}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000004, 0x10, r0, 0x10000000)
syz_io_uring_setup(0x6602, &(0x7f00000000c0)={0x0, 0x3d49, 0x0, 0x1, 0xc2, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140)=<r5=>0x0, &(0x7f00000001c0))
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000340)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r6, 0x8ce, 0x0, 0x7fffffff, 0x4, 0x1}, 0x7)
r7 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r8=>r7, {0x401}}, './file0\x00'})
close_range(r7, r8, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000100)=<r10=>0x0)
syz_io_uring_submit(r9, r10, 0x0, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r11}}, 0x101)
syz_io_uring_submit(r5, r4, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000240)='./file0\x00', 0x4, 0x41, 0x23456, {0x0, r11}}, 0x7ff)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x8, &(0x7f0000000040), 0x1, 0x1, 0x1, {0x0, r12}}, 0xfb7)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:11 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:11 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

10:25:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f00000000c0)={{}, {0x3}, 0x60, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000340)="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", 0x1c0, 0x0, &(0x7f0000000500)={0x2, 0xf5, {0x1, 0xc, 0x2f, "7ae690edab9960893cede4d75bbca7b0082c1af4dffd039dddbd1bb276a412877b1e4f9d1781d4a253095e482cf1b6", 0xb9, "b8c759bde4be2a77cdc784417d66827d6472d3b109659bb04a9928ba0014a43d4cf5f92936168fc2f2d76bc43a7db080e4120ae24a10b2cf8a870d4802cd4ff17fd7f6c9f6ae5b62a728bdd0c7fd2219a93f9fef4488147817c08afb15441658d2adc16d52367fef6e83405e5d83b8f133c65be5780c6c40799238718b55cf239f22a628b817221a6178a6c6538b987ea0fa742ac839491d68a37083f9ae937c43c573f006d7461246a594e95d5e5f751150f8a0355f181a1d"}, 0x22, "1ef9a246b98c569a5283e40e1795b27364dbd61355c2a9b7bddebb5d361e03160625"}, 0x123})

10:25:11 executing program 0:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)

10:25:11 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 41)

[ 1600.894460] FAULT_INJECTION: forcing a failure.
[ 1600.894460] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.896008] CPU: 1 PID: 8541 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1600.896798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.897756] Call Trace:
[ 1600.898066]  dump_stack+0x107/0x167
[ 1600.898484]  should_fail.cold+0x5/0xa
[ 1600.898925]  ? create_object.isra.0+0x3a/0xa30
[ 1600.899456]  should_failslab+0x5/0x20
[ 1600.899896]  kmem_cache_alloc+0x5b/0x310
[ 1600.900365]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1600.901059]  create_object.isra.0+0x3a/0xa30
[ 1600.901568]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1600.902155]  kmem_cache_alloc+0x159/0x310
[ 1600.902635]  ptlock_alloc+0x1d/0x70
[ 1600.903062]  pte_alloc_one+0x68/0x1a0
[ 1600.903517]  ? replace_page_cache_page+0x1200/0x1200
[ 1600.904099]  handle_mm_fault+0x2ab2/0x3500
[ 1600.904592]  ? __lock_acquire+0x1657/0x5b00
[ 1600.905091]  ? __pmd_alloc+0x630/0x630
[ 1600.905543]  ? vmacache_find+0x55/0x2a0
[ 1600.906005]  do_user_addr_fault+0x56e/0xc60
[ 1600.906517]  exc_page_fault+0xa2/0x1a0
[ 1600.906978]  asm_exc_page_fault+0x1e/0x30
[ 1600.907472] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1600.908097] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1600.910210] RSP: 0018:ffff888042ecf7b8 EFLAGS: 00050246
[ 1600.910828] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1600.911667] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042ecf888
[ 1600.912490] RBP: ffff888042ecf888 R08: 0000000000000001 R09: ffff888042ecf907
[ 1600.913315] R10: ffffed10085d9f20 R11: 0000000000000001 R12: 0000000020000100
[ 1600.914138] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1600.914978]  _copy_from_user+0x172/0x1b0
[ 1600.915459]  move_addr_to_kernel.part.0+0x31/0x110
[ 1600.916032]  move_addr_to_kernel+0x4f/0x70
[ 1600.916519]  io_connect+0x47a/0x610
[ 1600.916934]  ? io_prep_rw+0x1050/0x1050
[ 1600.917408]  ? __lock_acquire+0xbb1/0x5b00
[ 1600.917892]  io_issue_sqe+0x1611/0x77d0
[ 1600.918358]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.918962]  ? lock_chain_count+0x20/0x20
[ 1600.919444]  ? __is_insn_slot_addr+0x14c/0x290
[ 1600.919975]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1600.920569]  ? io_connect+0x610/0x610
[ 1600.921010]  ? lock_acquire+0x197/0x470
[ 1600.921471]  ? find_held_lock+0x2c/0x110
[ 1600.921946]  ? __fget_files+0x2cf/0x520
[ 1600.922401]  ? lock_downgrade+0x6d0/0x6d0
[ 1600.922886]  __io_queue_sqe+0x90/0x9d0
[ 1600.923344]  ? io_issue_sqe+0x77d0/0x77d0
[ 1600.923818]  ? __fget_files+0x2f8/0x520
[ 1600.924283]  io_submit_sqes+0x44a8/0x8610
[ 1600.924776]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.925353]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1600.925914]  ? find_held_lock+0x2c/0x110
[ 1600.926385]  ? io_submit_sqes+0x8610/0x8610
[ 1600.926885]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1600.927444]  ? wait_for_completion_io+0x270/0x270
[ 1600.928000]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1600.928532]  ? vfs_write+0x354/0xb10
[ 1600.928964]  ? fput_many+0x2f/0x1a0
[ 1600.929386]  ? ksys_write+0x1a9/0x260
[ 1600.929838]  ? __ia32_sys_read+0xb0/0xb0
[ 1600.930313]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.930913]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.931511]  do_syscall_64+0x33/0x40
[ 1600.931936]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.932527] RIP: 0033:0x7ff5992a9b19
[ 1600.932956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.935057] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1600.935945] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1600.936760] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1600.937581] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1600.938410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1600.939251] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x4)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f0000000080)={'wg2\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:11 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

10:25:11 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x4e23, @remote}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x4)

10:25:11 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

10:25:11 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

10:25:11 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:11 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 42)

10:25:11 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000, 0x0, 0x0)

[ 1601.135019] FAULT_INJECTION: forcing a failure.
[ 1601.135019] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1601.136496] CPU: 1 PID: 8557 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1601.137306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1601.138285] Call Trace:
[ 1601.138621]  dump_stack+0x107/0x167
[ 1601.139056]  should_fail.cold+0x5/0xa
[ 1601.139500]  __alloc_pages_nodemask+0x182/0x600
[ 1601.140019]  ? lock_acquire+0x197/0x470
[ 1601.140461]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1601.141105]  ? find_held_lock+0x2c/0x110
[ 1601.141556]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1601.142121]  ? lock_downgrade+0x6d0/0x6d0
[ 1601.142572]  ? mark_held_locks+0x9e/0xe0
[ 1601.143012]  alloc_pages_current+0x187/0x280
[ 1601.143497]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1601.144097]  ? replace_page_cache_page+0x1200/0x1200
[ 1601.144646]  pte_alloc_one+0x16/0x1a0
[ 1601.145079]  ? replace_page_cache_page+0x1200/0x1200
[ 1601.145641]  handle_mm_fault+0x2ab2/0x3500
[ 1601.146105]  ? __lock_acquire+0x1657/0x5b00
[ 1601.146605]  ? find_held_lock+0x2c/0x110
[ 1601.147049]  ? pgtable_bad+0x90/0x90
[ 1601.147482]  ? __pmd_alloc+0x630/0x630
[ 1601.147909]  ? vmacache_find+0x55/0x2a0
[ 1601.148368]  do_user_addr_fault+0x56e/0xc60
[ 1601.148843]  exc_page_fault+0xa2/0x1a0
[ 1601.149264]  asm_exc_page_fault+0x1e/0x30
[ 1601.149713] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1601.150355] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1601.152360] RSP: 0018:ffff888042ecf7b8 EFLAGS: 00050287
[ 1601.152932] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1601.153699] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042ecf888
[ 1601.154477] RBP: ffff888042ecf888 R08: 0000000000000001 R09: ffff888042ecf907
[ 1601.155250] R10: ffffed10085d9f20 R11: 0000000000000001 R12: 0000000020000100
[ 1601.156014] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1601.156797]  _copy_from_user+0x172/0x1b0
[ 1601.157247]  move_addr_to_kernel.part.0+0x31/0x110
[ 1601.157774]  move_addr_to_kernel+0x4f/0x70
[ 1601.158229]  io_connect+0x47a/0x610
[ 1601.158626]  ? io_prep_rw+0x1050/0x1050
[ 1601.159068]  ? __lock_acquire+0xbb1/0x5b00
[ 1601.159575]  io_issue_sqe+0x1611/0x77d0
[ 1601.160037]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1601.160645]  ? lock_chain_count+0x20/0x20
[ 1601.161123]  ? __is_insn_slot_addr+0x14c/0x290
[ 1601.161648]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1601.162249]  ? io_connect+0x610/0x610
[ 1601.162693]  ? lock_acquire+0x197/0x470
[ 1601.163152]  ? find_held_lock+0x2c/0x110
[ 1601.163625]  ? __fget_files+0x2cf/0x520
[ 1601.164058]  ? lock_downgrade+0x6d0/0x6d0
[ 1601.164508]  __io_queue_sqe+0x90/0x9d0
[ 1601.164957]  ? io_issue_sqe+0x77d0/0x77d0
[ 1601.165438]  ? __fget_files+0x2f8/0x520
[ 1601.165902]  io_submit_sqes+0x44a8/0x8610
[ 1601.166400]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1601.166974]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1601.167536]  ? find_held_lock+0x2c/0x110
[ 1601.168002]  ? io_submit_sqes+0x8610/0x8610
[ 1601.168500]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1601.169054]  ? wait_for_completion_io+0x270/0x270
[ 1601.169581]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1601.170126]  ? vfs_write+0x354/0xb10
[ 1601.170541]  ? fput_many+0x2f/0x1a0
[ 1601.170973]  ? ksys_write+0x1a9/0x260
[ 1601.171403]  ? __ia32_sys_read+0xb0/0xb0
[ 1601.171842]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1601.172408]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1601.172965]  do_syscall_64+0x33/0x40
[ 1601.173396]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1601.173949] RIP: 0033:0x7feaf290db19
[ 1601.174382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1601.176382] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1601.177200] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1601.177974] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1601.178754] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1601.179535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1601.180302] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:25:11 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x40007d0c, &(0x7f00000002c0)={0x0, 0x0, 0x4, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000400)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = syz_io_uring_setup(0x48f7, &(0x7f0000000040)={0x0, 0xca36, 0x20, 0x3, 0x33a, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r8=>0x0)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, r7, 0x10000000)
r10 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x363700, 0x0)
syz_io_uring_submit(r5, r9, &(0x7f0000000440)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index, 0xd4a, {0x0, r10}, 0x0, 0x6, 0x1, {0x0, 0x0, r4}}, 0x4)
syz_io_uring_submit(r5, r8, &(0x7f0000000140)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r3, 0x80, &(0x7f0000000240)=@ll={0x11, 0xf6, 0x0, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}}, 0x0, 0x0, 0x1}, 0x7ff)
io_uring_enter(r4, 0x65e, 0x114a, 0x0, &(0x7f0000000480)={[0x101]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1601.201285] FAULT_INJECTION: forcing a failure.
[ 1601.201285] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1601.202896] CPU: 1 PID: 8564 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1601.203693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1601.204644] Call Trace:
[ 1601.204950]  dump_stack+0x107/0x167
[ 1601.205369]  should_fail.cold+0x5/0xa
[ 1601.205813]  __alloc_pages_nodemask+0x182/0x600
[ 1601.206354]  ? lock_acquire+0x197/0x470
[ 1601.206817]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1601.207518]  ? find_held_lock+0x2c/0x110
[ 1601.207992]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1601.208591]  ? lock_downgrade+0x6d0/0x6d0
[ 1601.209062]  ? mark_held_locks+0x9e/0xe0
[ 1601.209534]  alloc_pages_current+0x187/0x280
[ 1601.210038]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1601.210642]  ? replace_page_cache_page+0x1200/0x1200
[ 1601.211230]  pte_alloc_one+0x16/0x1a0
[ 1601.211664]  ? replace_page_cache_page+0x1200/0x1200
[ 1601.212250]  handle_mm_fault+0x2ab2/0x3500
[ 1601.212740]  ? __lock_acquire+0x1657/0x5b00
[ 1601.213248]  ? __pmd_alloc+0x630/0x630
[ 1601.213705]  ? vmacache_find+0x55/0x2a0
[ 1601.214166]  do_user_addr_fault+0x56e/0xc60
[ 1601.214673]  exc_page_fault+0xa2/0x1a0
[ 1601.215116]  asm_exc_page_fault+0x1e/0x30
[ 1601.215603] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1601.216220] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1601.218352] RSP: 0018:ffff8880428b77b8 EFLAGS: 00050246
[ 1601.218962] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1601.219790] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff8880428b7888
[ 1601.220607] RBP: ffff8880428b7888 R08: 0000000000000001 R09: ffff8880428b7907
[ 1601.221433] R10: ffffed1008516f20 R11: 0000000000000001 R12: 0000000020000100
[ 1601.222257] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1601.223093]  _copy_from_user+0x172/0x1b0
[ 1601.223574]  move_addr_to_kernel.part.0+0x31/0x110
[ 1601.224139]  move_addr_to_kernel+0x4f/0x70
[ 1601.224633]  io_connect+0x47a/0x610
[ 1601.225048]  ? io_prep_rw+0x1050/0x1050
[ 1601.225519]  ? __lock_acquire+0xbb1/0x5b00
[ 1601.226006]  io_issue_sqe+0x1611/0x77d0
[ 1601.226465]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1601.227062]  ? lock_chain_count+0x20/0x20
[ 1601.227546]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1601.228153]  ? io_connect+0x610/0x610
[ 1601.228601]  ? lock_acquire+0x197/0x470
[ 1601.229061]  ? find_held_lock+0x2c/0x110
[ 1601.229537]  ? __fget_files+0x2cf/0x520
[ 1601.229995]  ? lock_downgrade+0x6d0/0x6d0
[ 1601.230470]  __io_queue_sqe+0x90/0x9d0
[ 1601.230920]  ? io_issue_sqe+0x77d0/0x77d0
[ 1601.231405]  ? __fget_files+0x2f8/0x520
[ 1601.231866]  io_submit_sqes+0x44a8/0x8610
[ 1601.232357]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1601.232931]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1601.233496]  ? find_held_lock+0x2c/0x110
[ 1601.233963]  ? io_submit_sqes+0x8610/0x8610
[ 1601.234463]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1601.235015]  ? wait_for_completion_io+0x270/0x270
[ 1601.235585]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1601.236120]  ? vfs_write+0x354/0xb10
[ 1601.236556]  ? fput_many+0x2f/0x1a0
[ 1601.236971]  ? ksys_write+0x1a9/0x260
[ 1601.237412]  ? __ia32_sys_read+0xb0/0xb0
[ 1601.237877]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1601.238482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1601.239078]  do_syscall_64+0x33/0x40
[ 1601.239522]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1601.240109] RIP: 0033:0x7ff5992a9b19
[ 1601.240535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1601.242641] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1601.243516] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1601.244332] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1601.245155] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1601.245979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1601.246797] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:24 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x60}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:24 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x65ea, 0x10, 0x0, 0x3e0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000080)=<r1=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000002, 0x2010, r0, 0x8000000)
syz_io_uring_submit(r3, r1, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0xfffffffe)

10:25:24 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000, 0x0, 0x0)

10:25:24 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0xf000000, 0x0, 0x0, 0x0)

10:25:24 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 43)

10:25:24 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

10:25:24 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:24 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1614.562643] FAULT_INJECTION: forcing a failure.
[ 1614.562643] name failslab, interval 1, probability 0, space 0, times 0
[ 1614.565151] CPU: 1 PID: 8586 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1614.566595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1614.568357] Call Trace:
[ 1614.568921]  dump_stack+0x107/0x167
[ 1614.569688]  should_fail.cold+0x5/0xa
[ 1614.570511]  ? ptlock_alloc+0x1d/0x70
[ 1614.571310]  should_failslab+0x5/0x20
[ 1614.572120]  kmem_cache_alloc+0x5b/0x310
[ 1614.572978]  ptlock_alloc+0x1d/0x70
[ 1614.573744]  pte_alloc_one+0x68/0x1a0
[ 1614.574546]  ? replace_page_cache_page+0x1200/0x1200
[ 1614.575624]  handle_mm_fault+0x2ab2/0x3500
[ 1614.576519]  ? __schedule+0x82c/0x1ea0
[ 1614.577337]  ? __pmd_alloc+0x630/0x630
[ 1614.578166]  ? vmacache_find+0x55/0x2a0
[ 1614.579009]  do_user_addr_fault+0x56e/0xc60
[ 1614.579934]  exc_page_fault+0xa2/0x1a0
[ 1614.580762]  asm_exc_page_fault+0x1e/0x30
[ 1614.581641] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1614.582880] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1614.586784] RSP: 0018:ffff888042a877b8 EFLAGS: 00050287
[ 1614.587931] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1614.589426] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042a87888
[ 1614.590918] RBP: ffff888042a87888 R08: 0000000000000001 R09: ffff888042a87907
[ 1614.592435] R10: ffffed1008550f20 R11: 0000000000000001 R12: 0000000020000100
[ 1614.593937] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1614.595490]  _copy_from_user+0x172/0x1b0
[ 1614.596354]  move_addr_to_kernel.part.0+0x31/0x110
[ 1614.597398]  move_addr_to_kernel+0x4f/0x70
[ 1614.598298]  io_connect+0x47a/0x610
[ 1614.599072]  ? io_prep_rw+0x1050/0x1050
[ 1614.599952]  ? __lock_acquire+0xbb1/0x5b00
[ 1614.600849]  io_issue_sqe+0x1611/0x77d0
[ 1614.601703]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1614.602807]  ? lock_chain_count+0x20/0x20
[ 1614.603722]  ? __is_insn_slot_addr+0x14c/0x290
[ 1614.604690]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1614.605788]  ? io_connect+0x610/0x610
[ 1614.606600]  ? lock_acquire+0x197/0x470
[ 1614.607451]  ? find_held_lock+0x2c/0x110
[ 1614.608317]  ? __fget_files+0x2cf/0x520
[ 1614.609161]  ? lock_downgrade+0x6d0/0x6d0
[ 1614.610040]  __io_queue_sqe+0x90/0x9d0
[ 1614.610865]  ? io_issue_sqe+0x77d0/0x77d0
[ 1614.611758]  ? __fget_files+0x2f8/0x520
[ 1614.612593]  io_submit_sqes+0x44a8/0x8610
[ 1614.613496]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1614.614546]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1614.615577]  ? find_held_lock+0x2c/0x110
[ 1614.616438]  ? io_submit_sqes+0x8610/0x8610
[ 1614.617355]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1614.618373]  ? wait_for_completion_io+0x270/0x270
[ 1614.619397]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1614.620382]  ? vfs_write+0x354/0xb10
[ 1614.621179]  ? fput_many+0x2f/0x1a0
[ 1614.621946]  ? ksys_write+0x1a9/0x260
[ 1614.622944]  ? __ia32_sys_read+0xb0/0xb0
[ 1614.623822]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1614.624930]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1614.626020]  do_syscall_64+0x33/0x40
[ 1614.626816]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1614.627899] RIP: 0033:0x7feaf290db19
[ 1614.628685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1614.632558] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1614.634173] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1614.635692] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1614.637201] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1614.638703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1614.640224] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1614.665906] FAULT_INJECTION: forcing a failure.
[ 1614.665906] name failslab, interval 1, probability 0, space 0, times 0
[ 1614.668697] CPU: 1 PID: 8580 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1614.670153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1614.671922] Call Trace:
[ 1614.672489]  dump_stack+0x107/0x167
[ 1614.673263]  should_fail.cold+0x5/0xa
[ 1614.674076]  ? ptlock_alloc+0x1d/0x70
[ 1614.674889]  should_failslab+0x5/0x20
[ 1614.675708]  kmem_cache_alloc+0x5b/0x310
[ 1614.676571]  ptlock_alloc+0x1d/0x70
[ 1614.677347]  pte_alloc_one+0x68/0x1a0
[ 1614.678162]  ? replace_page_cache_page+0x1200/0x1200
[ 1614.679242]  handle_mm_fault+0x2ab2/0x3500
[ 1614.680159]  ? __lock_acquire+0x1657/0x5b00
[ 1614.681078]  ? find_held_lock+0x2c/0x110
[ 1614.681932]  ? pgtable_bad+0x90/0x90
[ 1614.682725]  ? __pmd_alloc+0x630/0x630
[ 1614.683572]  ? vmacache_find+0x55/0x2a0
[ 1614.684427]  do_user_addr_fault+0x56e/0xc60
[ 1614.685348]  exc_page_fault+0xa2/0x1a0
[ 1614.686181]  asm_exc_page_fault+0x1e/0x30
[ 1614.687063] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1614.688336] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1614.692232] RSP: 0018:ffff888041e377b8 EFLAGS: 00050287
[ 1614.693359] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1614.694960] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041e37888
[ 1614.696644] RBP: ffff888041e37888 R08: 0000000000000001 R09: ffff888041e37907
[ 1614.698150] R10: ffffed10083c6f20 R11: 0000000000000001 R12: 0000000020000100
[ 1614.699672] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1614.701218]  _copy_from_user+0x172/0x1b0
[ 1614.702088]  move_addr_to_kernel.part.0+0x31/0x110
[ 1614.703130]  move_addr_to_kernel+0x4f/0x70
[ 1614.704029]  io_connect+0x47a/0x610
[ 1614.704799]  ? io_prep_rw+0x1050/0x1050
[ 1614.705657]  ? __lock_acquire+0xbb1/0x5b00
[ 1614.706567]  io_issue_sqe+0x1611/0x77d0
[ 1614.707417]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1614.708536]  ? lock_chain_count+0x20/0x20
[ 1614.709414]  ? __is_insn_slot_addr+0x14c/0x290
[ 1614.710378]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1614.711496]  ? io_connect+0x610/0x610
[ 1614.712310]  ? lock_acquire+0x197/0x470
[ 1614.713147]  ? find_held_lock+0x2c/0x110
[ 1614.714013]  ? __fget_files+0x2cf/0x520
[ 1614.714846]  ? lock_downgrade+0x6d0/0x6d0
[ 1614.715730]  __io_queue_sqe+0x90/0x9d0
[ 1614.716562]  ? io_issue_sqe+0x77d0/0x77d0
[ 1614.717432]  ? __fget_files+0x2f8/0x520
[ 1614.718298]  io_submit_sqes+0x44a8/0x8610
[ 1614.719200]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1614.720262]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1614.721288]  ? find_held_lock+0x2c/0x110
[ 1614.722147]  ? io_submit_sqes+0x8610/0x8610
[ 1614.723061]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1614.724086]  ? wait_for_completion_io+0x270/0x270
[ 1614.725098]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1614.726081]  ? vfs_write+0x354/0xb10
[ 1614.726861]  ? fput_many+0x2f/0x1a0
[ 1614.727638]  ? ksys_write+0x1a9/0x260
[ 1614.728443]  ? __ia32_sys_read+0xb0/0xb0
[ 1614.729309]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1614.730413]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1614.731516]  do_syscall_64+0x33/0x40
[ 1614.732301]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1614.733378] RIP: 0033:0x7ff5992a9b19
[ 1614.734158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1614.738046] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1614.739662] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1614.741157] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1614.742656] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1614.744172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1614.745680] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:25 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:39 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x42f, 0x30}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:39 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, 0x0, &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:39 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

10:25:39 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x20756d, 0x0, 0x0, 0xec}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r5 = fspick(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
fcntl$F_GET_FILE_RW_HINT(r5, 0x40d, &(0x7f0000000080))
mkdir(&(0x7f00000000c0)='./file0\x00', 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SPLICE={0x1e, 0x4, 0x0, @fd=r3, 0x0, {0x0, r4}, 0x6, 0xc, 0x0, {0x0, 0x0, r6}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:39 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 44)

10:25:39 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

10:25:39 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:39 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf000000, 0x0, 0x0)

[ 1628.996440] FAULT_INJECTION: forcing a failure.
[ 1628.996440] name failslab, interval 1, probability 0, space 0, times 0
[ 1628.996882] FAULT_INJECTION: forcing a failure.
[ 1628.996882] name failslab, interval 1, probability 0, space 0, times 0
[ 1628.998855] CPU: 0 PID: 8617 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1628.998866] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1628.998872] Call Trace:
[ 1628.998899]  dump_stack+0x107/0x167
[ 1628.998921]  should_fail.cold+0x5/0xa
[ 1628.998944]  ? create_object.isra.0+0x3a/0xa30
[ 1628.998962]  should_failslab+0x5/0x20
[ 1628.998981]  kmem_cache_alloc+0x5b/0x310
[ 1628.999001]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1628.999025]  create_object.isra.0+0x3a/0xa30
[ 1628.999041]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1628.999066]  kmem_cache_alloc+0x159/0x310
[ 1628.999100]  ptlock_alloc+0x1d/0x70
[ 1628.999120]  pte_alloc_one+0x68/0x1a0
[ 1628.999139]  ? replace_page_cache_page+0x1200/0x1200
[ 1628.999158]  handle_mm_fault+0x2ab2/0x3500
[ 1628.999182]  ? __lock_acquire+0x1657/0x5b00
[ 1628.999199]  ? find_held_lock+0x2c/0x110
[ 1628.999216]  ? pgtable_bad+0x90/0x90
[ 1628.999235]  ? __pmd_alloc+0x630/0x630
[ 1628.999264]  ? vmacache_find+0x55/0x2a0
[ 1628.999292]  do_user_addr_fault+0x56e/0xc60
[ 1628.999323]  exc_page_fault+0xa2/0x1a0
[ 1628.999345]  asm_exc_page_fault+0x1e/0x30
[ 1628.999368] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1628.999386] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1628.999407] RSP: 0018:ffff8880410c77b8 EFLAGS: 00050287
[ 1629.029525] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1629.031044] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff8880410c7888
[ 1629.032553] RBP: ffff8880410c7888 R08: 0000000000000001 R09: ffff8880410c7907
[ 1629.034125] R10: ffffed1008218f20 R11: 0000000000000001 R12: 0000000020000100
[ 1629.035665] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1629.037210]  _copy_from_user+0x172/0x1b0
[ 1629.038116]  move_addr_to_kernel.part.0+0x31/0x110
[ 1629.039234]  move_addr_to_kernel+0x4f/0x70
[ 1629.040171]  io_connect+0x47a/0x610
[ 1629.040924]  ? io_prep_rw+0x1050/0x1050
[ 1629.041779]  ? __lock_acquire+0xbb1/0x5b00
[ 1629.042673]  io_issue_sqe+0x1611/0x77d0
[ 1629.043560]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.044652]  ? lock_chain_count+0x20/0x20
[ 1629.045520]  ? __is_insn_slot_addr+0x14c/0x290
[ 1629.046477]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.047582]  ? io_connect+0x610/0x610
[ 1629.048397]  ? lock_acquire+0x197/0x470
[ 1629.049221]  ? find_held_lock+0x2c/0x110
[ 1629.050072]  ? __fget_files+0x2cf/0x520
[ 1629.050916]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.051825]  __io_queue_sqe+0x90/0x9d0
[ 1629.052683]  ? io_issue_sqe+0x77d0/0x77d0
[ 1629.053556]  ? __fget_files+0x2f8/0x520
[ 1629.054408]  io_submit_sqes+0x44a8/0x8610
[ 1629.055307]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1629.056379]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1629.057379]  ? find_held_lock+0x2c/0x110
[ 1629.058210]  ? io_submit_sqes+0x8610/0x8610
[ 1629.059095]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1629.060103]  ? wait_for_completion_io+0x270/0x270
[ 1629.061120]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1629.062098]  ? vfs_write+0x354/0xb10
[ 1629.062864]  ? fput_many+0x2f/0x1a0
[ 1629.063605]  ? ksys_write+0x1a9/0x260
[ 1629.064424]  ? __ia32_sys_read+0xb0/0xb0
[ 1629.065304]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1629.066405]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1629.067515]  do_syscall_64+0x33/0x40
[ 1629.068314]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1629.069383] RIP: 0033:0x7feaf290db19
[ 1629.070141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.073948] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1629.075541] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1629.077041] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1629.078538] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1629.080036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1629.081556] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1629.083055] CPU: 1 PID: 8611 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1629.084534] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1629.086283] Call Trace:
[ 1629.086864]  dump_stack+0x107/0x167
[ 1629.087639]  should_fail.cold+0x5/0xa
[ 1629.088458]  ? create_object.isra.0+0x3a/0xa30
[ 1629.089429]  should_failslab+0x5/0x20
[ 1629.090250]  kmem_cache_alloc+0x5b/0x310
[ 1629.091105]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1629.092383]  create_object.isra.0+0x3a/0xa30
[ 1629.093317]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1629.094402]  kmem_cache_alloc+0x159/0x310
[ 1629.095296]  ptlock_alloc+0x1d/0x70
[ 1629.096081]  pte_alloc_one+0x68/0x1a0
[ 1629.096885]  ? replace_page_cache_page+0x1200/0x1200
[ 1629.097952]  handle_mm_fault+0x2ab2/0x3500
[ 1629.098856]  ? __lock_acquire+0x1657/0x5b00
[ 1629.099785]  ? find_held_lock+0x2c/0x110
[ 1629.100637]  ? pgtable_bad+0x90/0x90
[ 1629.101421]  ? __pmd_alloc+0x630/0x630
[ 1629.102256]  ? vmacache_find+0x55/0x2a0
[ 1629.103105]  do_user_addr_fault+0x56e/0xc60
[ 1629.104037]  exc_page_fault+0xa2/0x1a0
[ 1629.104866]  asm_exc_page_fault+0x1e/0x30
[ 1629.105746] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1629.106993] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1629.110894] RSP: 0018:ffff888041f3f7b8 EFLAGS: 00050287
[ 1629.112031] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1629.113539] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041f3f888
[ 1629.115045] RBP: ffff888041f3f888 R08: 0000000000000001 R09: ffff888041f3f907
[ 1629.116566] R10: ffffed10083e7f20 R11: 0000000000000001 R12: 0000000020000100
[ 1629.118075] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1629.119613]  _copy_from_user+0x172/0x1b0
[ 1629.120501]  move_addr_to_kernel.part.0+0x31/0x110
[ 1629.121543]  move_addr_to_kernel+0x4f/0x70
[ 1629.122441]  io_connect+0x47a/0x610
[ 1629.123209]  ? io_prep_rw+0x1050/0x1050
[ 1629.124077]  ? __lock_acquire+0xbb1/0x5b00
[ 1629.124979]  io_issue_sqe+0x1611/0x77d0
[ 1629.125828]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.126935]  ? lock_chain_count+0x20/0x20
[ 1629.127866]  ? __is_insn_slot_addr+0x14c/0x290
[ 1629.128833]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.129938]  ? io_connect+0x610/0x610
[ 1629.130754]  ? lock_acquire+0x197/0x470
[ 1629.131604]  ? find_held_lock+0x2c/0x110
[ 1629.132484]  ? __fget_files+0x2cf/0x520
[ 1629.133328]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.134206]  __io_queue_sqe+0x90/0x9d0
[ 1629.135035]  ? io_issue_sqe+0x77d0/0x77d0
[ 1629.135916]  ? __fget_files+0x2f8/0x520
[ 1629.136773]  io_submit_sqes+0x44a8/0x8610
[ 1629.137682]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1629.138736]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1629.139761]  ? find_held_lock+0x2c/0x110
[ 1629.140625]  ? io_submit_sqes+0x8610/0x8610
[ 1629.141538]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1629.142561]  ? wait_for_completion_io+0x270/0x270
[ 1629.143583]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1629.144575]  ? vfs_write+0x354/0xb10
[ 1629.145362]  ? fput_many+0x2f/0x1a0
[ 1629.146130]  ? ksys_write+0x1a9/0x260
[ 1629.146939]  ? __ia32_sys_read+0xb0/0xb0
[ 1629.147820]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1629.148930]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1629.150012]  do_syscall_64+0x33/0x40
[ 1629.150802]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1629.151890] RIP: 0033:0x7ff5992a9b19
[ 1629.152678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.156566] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1629.158181] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1629.159706] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1629.161213] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1629.162721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1629.164232] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:39 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x10ae, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x0, 0x1, 0xed}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r3, {0x693f}}, './file0\x00'})
syz_io_uring_setup(0x7fff, &(0x7f0000000080)={0x0, 0xa343, 0x20, 0x1, 0x99, 0x0, r5}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f00000001c0))
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x13, r6, 0x8000000)
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000340), &(0x7f0000000400)=0x68)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1a, 0x80010, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', <r9=>0x0})
setsockopt$packet_int(r7, 0x107, 0x14, &(0x7f0000000040)=0x3f, 0x4)
bind$packet(r7, &(0x7f0000000240)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="daee0df939f6253a05343b112a474122d96ebc125a324e699fbcf151ad4b614a80b54200"/55, @ANYRES16=0x0, @ANYBLOB="02002bbd7000ffdbdf250500000008000500030000000800050040000000050006000600000014000180080003000000000008000100", @ANYRES32=r9, @ANYBLOB="1c0001ad0ce39b58034ea6b1bc5c371bc1448008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300020000002000018014000200776c616e31000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0xc000}, 0x4004)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, 0x0, &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x40000000, 0x0, 0x0, 0x0)

10:25:53 executing program 5:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r1 = syz_io_uring_setup(0x79ab, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x400)
syz_io_uring_setup(0x76bd, &(0x7f00000002c0)={0x0, 0x0, 0x5, 0x1, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r8=>0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(0x0, r8, &(0x7f0000000540)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x6, &(0x7f0000000500)={0x77359400}, 0x1, 0x1}, 0x200)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x6bd8, &(0x7f0000000480)={0x0, 0x2712, 0x8, 0x2, 0x21d, 0x0, r7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000580), &(0x7f0000000280))
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r14=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000400)={'ip6gre0\x00', r14, 0x29, 0x3, 0x1, 0xffffff81, 0x20, @ipv4={'\x00', '\xff\xff', @empty}, @private0, 0x700, 0x0, 0x77b8}})
syz_io_uring_submit(r5, r11, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x2007, @fd=r4, 0x81, 0x0, 0x0, 0x8, 0x1, {0x3, r13}}, 0xf4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 45)

10:25:53 executing program 0:
sync_file_range(0xffffffffffffffff, 0x1, 0xf7, 0x6)
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xe31d}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x7ff, 0x4e01)
readv(r3, &(0x7f0000000140)=[{&(0x7f0000000080)=""/183, 0xb7}], 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

10:25:53 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x20000000, 0x0, 0x0)

[ 1643.245595] FAULT_INJECTION: forcing a failure.
[ 1643.245595] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1643.246529] FAULT_INJECTION: forcing a failure.
[ 1643.246529] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1643.248180] CPU: 1 PID: 8648 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1643.250937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1643.252703] Call Trace:
[ 1643.253265]  dump_stack+0x107/0x167
[ 1643.254033]  should_fail.cold+0x5/0xa
[ 1643.254846]  _copy_from_user+0x2e/0x1b0
[ 1643.255688]  move_addr_to_kernel.part.0+0x31/0x110
[ 1643.256735]  move_addr_to_kernel+0x4f/0x70
[ 1643.257625]  io_connect+0x47a/0x610
[ 1643.258396]  ? io_prep_rw+0x1050/0x1050
[ 1643.259254]  ? __lock_acquire+0xbb1/0x5b00
[ 1643.260160]  io_issue_sqe+0x1611/0x77d0
[ 1643.261006]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.262105]  ? lock_chain_count+0x20/0x20
[ 1643.262980]  ? __is_insn_slot_addr+0x14c/0x290
[ 1643.263949]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.265057]  ? io_connect+0x610/0x610
[ 1643.265868]  ? lock_acquire+0x197/0x470
[ 1643.266706]  ? find_held_lock+0x2c/0x110
[ 1643.267565]  ? __fget_files+0x2cf/0x520
[ 1643.268412]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.269287]  __io_queue_sqe+0x90/0x9d0
[ 1643.270109]  ? io_issue_sqe+0x77d0/0x77d0
[ 1643.270977]  ? __fget_files+0x2f8/0x520
[ 1643.271834]  io_submit_sqes+0x44a8/0x8610
[ 1643.272748]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.273800]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.274825]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.275940]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1643.276876]  ? trace_hardirqs_on+0x5b/0x180
[ 1643.277786]  ? io_submit_sqes+0x8610/0x8610
[ 1643.278695]  ? finish_task_switch+0x1a4/0x5d0
[ 1643.279637]  ? __switch_to+0x572/0xf70
[ 1643.280466]  ? __switch_to_asm+0x3a/0x60
[ 1643.281313]  ? __switch_to_asm+0x34/0x60
[ 1643.282149]  ? __schedule+0x82c/0x1ea0
[ 1643.282976]  ? io_schedule_timeout+0x140/0x140
[ 1643.283941]  ? ksys_write+0x1a9/0x260
[ 1643.284750]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.285855]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1643.286946]  do_syscall_64+0x33/0x40
[ 1643.287731]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1643.288812] RIP: 0033:0x7feaf290db19
[ 1643.289593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.293461] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1643.295058] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1643.296577] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1643.298071] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1643.299577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1643.301088] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1643.302619] CPU: 0 PID: 8647 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1643.303423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1643.304389] Call Trace:
[ 1643.304699]  dump_stack+0x107/0x167
[ 1643.305116]  should_fail.cold+0x5/0xa
[ 1643.305563]  __alloc_pages_nodemask+0x182/0x600
[ 1643.306098]  ? lock_acquire+0x197/0x470
[ 1643.306555]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1643.307245]  ? find_held_lock+0x2c/0x110
[ 1643.307722]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1643.308329]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.308794]  ? mark_held_locks+0x9e/0xe0
[ 1643.309263]  alloc_pages_current+0x187/0x280
[ 1643.309763]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1643.310370]  ? replace_page_cache_page+0x1200/0x1200
[ 1643.310947]  pte_alloc_one+0x16/0x1a0
[ 1643.311387]  ? replace_page_cache_page+0x1200/0x1200
[ 1643.311967]  handle_mm_fault+0x2ab2/0x3500
[ 1643.312456]  ? __lock_acquire+0x1657/0x5b00
[ 1643.312947]  ? find_held_lock+0x2c/0x110
[ 1643.313411]  ? pgtable_bad+0x90/0x90
[ 1643.313832]  ? __pmd_alloc+0x630/0x630
[ 1643.314280]  ? vmacache_find+0x55/0x2a0
[ 1643.314735]  do_user_addr_fault+0x56e/0xc60
[ 1643.315240]  exc_page_fault+0xa2/0x1a0
[ 1643.315685]  asm_exc_page_fault+0x1e/0x30
[ 1643.316167] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1643.316842] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1643.318926] RSP: 0018:ffff88800e81f7b8 EFLAGS: 00050287
[ 1643.319563] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1643.320376] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88800e81f888
[ 1643.321186] RBP: ffff88800e81f888 R08: 0000000000000001 R09: ffff88800e81f907
[ 1643.321996] R10: ffffed1001d03f20 R11: 0000000000000001 R12: 0000000020000100
[ 1643.322809] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1643.323641]  _copy_from_user+0x172/0x1b0
[ 1643.324114]  move_addr_to_kernel.part.0+0x31/0x110
[ 1643.324674]  move_addr_to_kernel+0x4f/0x70
[ 1643.325159]  io_connect+0x47a/0x610
[ 1643.325571]  ? io_prep_rw+0x1050/0x1050
[ 1643.326037]  ? trace_hardirqs_on+0x5b/0x180
[ 1643.326535]  ? __lock_acquire+0xbb1/0x5b00
[ 1643.327017]  io_issue_sqe+0x1611/0x77d0
[ 1643.327479]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.328079]  ? lock_chain_count+0x20/0x20
[ 1643.328564]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.329157]  ? io_connect+0x610/0x610
[ 1643.329598]  ? lock_acquire+0x197/0x470
[ 1643.330049]  ? find_held_lock+0x2c/0x110
[ 1643.330519]  ? __fget_files+0x2cf/0x520
[ 1643.330990]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.331468]  __io_queue_sqe+0x90/0x9d0
[ 1643.331922]  ? io_issue_sqe+0x77d0/0x77d0
[ 1643.332398]  ? __fget_files+0x2f8/0x520
[ 1643.332859]  io_submit_sqes+0x44a8/0x8610
[ 1643.333349]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.333920]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.334473]  ? find_held_lock+0x2c/0x110
[ 1643.334934]  ? io_submit_sqes+0x8610/0x8610
[ 1643.335435]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1643.335992]  ? wait_for_completion_io+0x270/0x270
[ 1643.336550]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1643.337080]  ? vfs_write+0x354/0xb10
[ 1643.337512]  ? fput_many+0x2f/0x1a0
[ 1643.337927]  ? ksys_write+0x1a9/0x260
[ 1643.338360]  ? __ia32_sys_read+0xb0/0xb0
[ 1643.338830]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.339433]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1643.340037]  do_syscall_64+0x33/0x40
[ 1643.340466]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1643.341054] RIP: 0033:0x7ff5992a9b19
[ 1643.341480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.343583] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1643.344465] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1643.345286] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1643.346106] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1643.346927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1643.347744] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:53 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x40000000, 0x0, 0x0)

10:25:53 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001640)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, 0xfffffffffffffffe, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f0000001600)=ANY=[@ANYBLOB="0118387dff41ab0d00000200000000", @ANYRES32=r3, @ANYBLOB='?\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f00000015c0)={{0x1, 0x1, 0x18}, './file0\x00'})
sendmmsg(r5, &(0x7f0000001580)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="4930af9536800c874eb7578ef0f82fe83fd31bc00d946ce003e8a63e05567c6848b9760ad9648c991bfcd491739c40e400b1f3dcf654ff3c96c6531f74439d422c3cad522b5441f254f1be69dd8b8b1befac5eb008b9e49a8266a49c6d1e864178064ce97dbaafe3c1b89f8d803c5a88910d0871ba2976fabecd34a949831947f30f26dac4b1c6eb93abceb213ac52c36fd4bff97d41dfd96a8cdf239eec4611ce804aa7b1af57d72d35d425abe6b8e3a52f2770dd1f907a80cbe19e31bcf8ae151b37a026f78d0cbed1cc952bf2cc123159069cd46ae85cf83379aaefaf592e28661deb99ce610bd0f27a923d", 0xed}, {&(0x7f0000000240)="5cad4e6e5726d512777984fd5ea86a9c2c8536ad0340b9b5cac69feb370357412ec8d3ac295246359e04aaa9618d90d43eb83e4a4a4364be8d70f55af0468517d2e9c6de56a8a18e1b863aef743a891640", 0x51}, {&(0x7f0000000340)="180fa9d31bb18ded91b8b31a5a5583e0ff3ed4310776eec382090c72b0290e5f6304265b1d99a3ba1390c83201310e11548c078570e261f579f7336a923ea30b7ddab606fd644e725dafc73aa1286dfa66d4264ddcd960250291c0323deec43dd3e9041926c6403804ccd7e3f718c04b30260faae0999161944ed65d44e4190bf02b7ed19d50c978d1fe04fc321d1e93397051409b741ea494aae73be873bf2051bdd05f156fbaaba8e23706739d31b2ebeb450ca5078f8651ed172b065e0c35a9bce45170b707409c3894d30e761b106536a1428af70d5d3ce4195e87779f3913e54e0800390ff0f0586e51c703ab9124505d2f14cb0388f903fbc2f7e77edf10c6fe13b520d588cee97c922b05f6e935a73f48e62ed1af5f77a5fc4b0aeab9610cc523e95f05dfbbb1f14c46cbe91cf4d0e42a43c4d7a8118ff910eb783ce876e02622824573d492b9db331b851b99607d164ccc5183c2b5faf1f4774f7a994ea7c67b3f9a433db08dadb0df9c9eccf7b7848680ca63ae578a0d50e944023d05e009d0627f27119eeed7686a4c56d33467263c9ed1f912fceb46f70c58f7e245005be4ec6a263151e66d5610a76d3c6130973aebf4925897eef40586bd44e36143c37342792d3a6c09d1bd5a2dcfea553936651c525539fd95e6a9ee45164107f3425f14568d385009f74ab88d1473a4fb41473c79e4ffa0498796b7e4ef4560855c2e218f5d41e06955576f4655d505e6d9768c3a1e34303985a91861b3fa2aef5c0a0f861908b3b7b8d4c51eb7140ca74264289409666d4c8630048416335f588f729a381ec7ef96a7cbfab2579390176f42a9bd34e80e1bd01b0c8ee933a9095031fe593e157b68144c49fa307ad723d9cef12e5dc546bd005ddaedfc02d11e13a11f2485763e1fbc0f82f85657ca0c657ab2c475a008d15969a70d58d4aeeb6e24a1ed4356c1c426e81f79535eb76c4d38be4c8f29c31219ab44d4e54026654abd002c2d96256ed1ec1e4708750971eda30dd3dbc289436615a27439c016d30bd4b5e5cb2737019219c60dd950b25834ded332fb21e33745dfbe77ae6531745b56b6f6258ce2d74ffa34e997da31a6920135b016af2ff7945bb57c7cff92ea374a2d947abb6dc50d931f33721930cc32e7021ce356edcd15404c6458caf95bb0429e3785f9bedb9e4d33b0163a84bd87a33d9ec018cbea599eb27892675a8f2b24627f4503d28baefb2103781edbe851375fcf099d8c21655f5734b491869d46c32ef70e197738094629c30af0d3b6485666f7cc96063730a887bee0cc38f02fe8c02699075ae30575efc2a7b851c4373a7525aff850b3b89d389a12a2067ee78dd2018a40b770c2f848e3a1dcf8aaeccb8863da842032bfbb3021840d551341502334e479b160abd162f8486d273c10aaa5aef7c7127ef99e72beef1e500e3d2048fa644d07508d55862bb40f96c8ae464b494fbc7bd6ddd6b779cdf91df419d47b62eb82b801b5ef898566d239c84f539c83cd7850546efcd936757a0c732c463e8f543360e417cecd60d8fcc53ba2ecbc823725424672563222f577c0e1eba9339be0a0822042c8e5084e984d3306b85e80b4763d5834c75dd4fda30e38f261bd79d8bd5445f52a7e0e48c039c8016e58375d7b66fd680dcb3ff769496229e38f84bfbc2dad032b5ade5171e4a732d9a5f50fa7232aff1104d8f650c2a2f63694b33b2b61650001986814eac5df4dd9bb2fc7d1fdb7cd9ce644e572fb0b4c0cef0dda19a4dd4141b486784f1abb8ef41498d4ed4b0aca52dfbaccf6589560b297e805b98b38661818c51da68a9e46fc6dd824275f21fcd22a6c6bda75e185af7278df742b4dc3fb1dc0eed66a0a9826a8562574c61f165763c2457da6449c043867aa0579e36d3509b28627d24151007939b0376ba5c3d6457cc60970209259e3e10e19fd9240a63fc9fd261d52e32159494b0f98177cf8456207e082857e344cd93b213b4aec53fad0ed2e6f401ff57da1d0c58a6a85428fd6d8421ce90b9fa6de301c57044b9cbde2797c27d1066681509d8aa6864cb5a4ed46ac010fcb9558eaf9e133d22620147cf7d13814d956059e51c84cc6c557364dfa9b870ba37bd0c9493e0a06fef760f035b9294361b203bca4e050d585c9ff9552b03f4aa44e1bada02fd15080b91586731eba90d0d6d847e1556d43d69eb32b672325722b18fef818db97211944b6cb49648461ac0e134dfd00a7ea08f31da2ce44eaac5abc5a8dd0d6d572f0794fab306cb9b6ee42b3302fbd837281dff4f8d0d73510619afbdd86b888f9fb4a01f98b5dd11f67dda3339d89f0da69f81f0cc31a1b36275e8445cc04104e06057dac3440a9d2d81ab71a518c76aa46c58a704afaa19c875d84d2d530aaa23853a267d39d7dbfd6c721dd037362c95a7ebeb3593a5d137a390262f01fabe84f31bdf38594df08c72a150c613639679984f4122005092b7597cfdd5ba60d42f143667e0d33648979fcb22d45af3c7214ca36585a7e1b5226f137c278d18e5401dfa851073657722349432a55c35ad06284910bd635c0b1c66489137242ba6e456f07c7152d03724be648c5c9169365be00899c3e446fd06d9b1ced66a1dde92bbd7a95f1e90078a06f552f7a1be19fc4d0331ca289021a69862bb8eabaf5ea8b9aa5119f5b757c0ccf731f04e6d985cb25b76dd3003e57ceda5683a7c9d6b3d687b90de32d25b35dd0b5a9b9922327a56ac8c229da8446d71182621fcb70e4e04f7711981d3bf39c0097340a40d66e787dcf697044be0f18b9a830f70006a36f9a48bbd9768c4034d4824d72893727e09494c4d308195d3c1403512e9d8026bb9454e24090462920f339a0a3e6109384801a3ec02a1d70281fdae3499cb4870fd2acb0d4825021b9a841d44d1e57da09a5cceffe084623077c343d0b889681f1770188dd0f499a07cc02dbdbbf097fc67cbc01639d38a6ed1bb09104d41c915c1ff0be556787d1827058c0ceb77763b32b52cc463133a4c6bb1df55f4c6c6158da56a63a5d1ad3f041cd0c0d58fecc893ec50c34c4cda1940ac78bfa9c08f3ca82f100d15761eb66e12753834fb4dfa7f3298752cdd98070b85d857f8f0414a1f516f82fe29173888a42b11fa33df1c4d44848e8ce2d9d8e97dd1eec9239d2b879775bc6426325ecbcec46b9e7db6f9b8ea70bd6f4adb49fb8194f5182d73d2c5d40c8047ddaf278f42e55dea547c7eb45049fdce22ccd87a5c50ed14d8949e727e8eddc3ee9f3374afdde56ac650e05cd8506ea3295cb5bbc0a32f4f807a70cc6985284dd100e4d1c89957345f02f05e589218ee63bbe32d7aa5e81e901fbc32cfbca34c826b2a3a049f5404047305c93774b3d70baaec2ba33d0925c0b78435c7d59039ea357ed0ae673b9b91ccee6eae52ddcfa0ee1377a553f4fc8c6443b9006db3938371988ddd091a18e01c6f3531e2f444028cf8782cf8df56138e09d21891b7052467aefc5e8d8a1602ec9e4d412b88232fdfaf9b4422c6c158dc98c69e6e7a35e4a396c01b6e204c61805f870e74a5b059a31ff423f9410909bb1f6549c8b38fba80b845462d3e175aa7da8f52069a389c4b103fb564e204e89281663569cbc18d5c8cd1ed9cf4fa8bb01c7b79058319b4d02ace07bf4de5d4fd5a94d895e7d7772ca9fde097cbb2b1fe73ba08b6c5a9d3b4d22516eb833f46cabc35ac8c9b1d40f5cb26b774d44927d867cdd6bbcf451384fd17d849391f5c8560208434ccd8d927357038e81efea36141e104b7b6249c1aad42148f2fb4f3b0d45e873c23c259515ad3a5531ff59488cc0f7926a7872de2534386ed465be205ee5e4117396cc11ab3fdf439d456cc5eb0befedcf4ca4f60d360dba47240dc287a33b7b4c159c05ed3cc6c050846be1170751761aac71ffdf44348db17e0db9e287e970b8a2bdf000132696c2e3c47042a420dcef58127b18c4e1dae163e5894b73beed4f4c34fd4c3c45ac76f15e404efc5eac3f6ae9b5635fab3dc662897a747b3e12579a95c03abe992635dbbaccea64505860532a2b1282b92d5bff93694c457c6990ea3590b44251a74c5d7bbb58f1c7faa5abdda29701777a489bcddb65ad64cb47fadd457099cf5bdb3ff704cd24880e2e7e6358ed2f62368379f69142dbb662cf5973570fc75db7bb37eb7e40f3ce0902a977e4c7ec5799d71b00540bb8bcc1c6329e2481c57e2eaf15acef7cf15d304ee4517ad46573b0d5f950e508478949f16deffce3181c80740141dca97289685747237d3d67920610184baf1da70d2db052e48a88bc14c52f3f7fd3ad35a618b4f9ca8c7782e3b48b241ca40d632d3b4c419e8d6bdeacba7b4292af6e2086776f81492ff6017e72198b7f27ccb7e246509eb4232265158d428d7b8e72e462886d5d34c7c07dfd2e37c5776bc33f00db915bfb36af66e48d0ed0aa11114165e50c1aaee793af98a0c89ae7a3d2bb4764b6bd81a66fb5db47caf057cfa31c3ebcfde248e0f15014c33a388fccad1bade68ba5f12df8cc39def1ae99decce36723bc6d95c17a613516eab0a497429bbc98bbd7b9d4963363a5dd699987d0e92378b6186beef6ff4a11bfa4dd02f28534a9fedb77c5d2d8f3f49fbf306503189305ac3a2f9ad005600e7bc33c4f2191e64ca57ddd392b77bdc3056961d770143a77a5233109bfc02be82bed60ddb991461aaf810b75cc56c580f9f8e907b0fd51fd88f137abc37899f3de89051a52aa9cd28d0c86366bbdc2cef7846d962f1e2efdf3c19d946756f2c70b4f465d165b551b2b2a4d35dae614c011fb35ba10e31bf034a3d714fa9140c6f0f45af685d02fb5324117fb23d95c0f9126da35a0316887cea073e5051af3a2aa536bcc4be12e965792a3839f8b774a9ff4047a30fe740d39b6d103b0b1f994de8517e624494cf70df2fe4903cc088173656bfc880a956144997950d50daeac40ab45fe3435b46b72945ddb87c55a2551b7a8ab267a936227613465f4340e776e96517341ba7a635e1f923e612ebd1b4667427d43f09be8f51c61a425821094df06be6c902cd600aa4447b3cf3defdafed7dddccf17c294ff00fcdfda3f069a7a4addf24f3a46426a78ee1bc3e0f80df42065ae8cdb12f31ab189c49efdc3d2e742338b3e3d4bde50d74c26507b1b21078a23f492bd740a15f5b7c4b7be9b9fe52da0431d3e1f6831d33042f2a64cbc0982a3c8170b479f367c700dfca24b759a104ea7ed8277b82583c4954a1ba8352f25e2ddb0ad6a9cf38c5963009cb9ae0f165fc8b931da056935ed8169953f0865899729288a2e5911bbd991f99b6cd01c5b093db7d06e4c1fc53fe906b155789d987be81a73f1b24ebb744f2b9c89945de08356c6d4611f08188f2c312e13002508751d57a8de37d1f4e00ca09644a8cbeaff8418ff8957bfaff0f7d78928eefd788d8f56b4a48c1915323eb2194fae7fdbdacf6104c0c07076c5ceb7ce34a65aabafe10ae33ff37d9a12be2124ef74d1316f873f7228b770f7eab43c5bc1c93c481aa49f78b4f10182e10be67b64460e6768dc85d9d7238b206b831b7d3f9598cf3550406f3ba85a697ff4bb8b9a2b460e9cf672b3ded5abbdb3dccbbe7042f908a67dc51b806b7ac3172bec3ce2b3847682f93906c995c741c1344a155dcba945d06fabd5210fa9404ae712aa5c2ffcbf7f1cf9573f619a28b7fc6b56aafef7f791a96e20573dec93ab4504f953ffcc0864c6c9490a4944f13e13daa2e62888625bb3543ae29bd6d91c", 0x1000}, {&(0x7f0000000140)="c3f2853dee9967a49feb29cf3ee3d9a818b80d37e6878eae60cdf039ffc6058636699a4276c2c40a2017", 0x2a}], 0x4, &(0x7f0000001340)=[{0x60, 0x105, 0x5, "f567e821a5dcba02c645a33cab1ff09c84469e120fd974ecde3f35dc13aeb277db5b1ed4d29c10374defa0d0fbb5abd076795f364936b049d555621eec4437f4486ed724870045c32218"}, {0x30, 0x115, 0x4, "488543d4b4998f4babbc29d285a6f986358251da8f9158852d93e5ba11f9d143"}, {0x80, 0x10f, 0x4, "15b7ad10de8b7e0579f2e5b442f94988eeadcb3d52e2da833d8e5f6765b2a088972741f676dd0b36b39fb6cb450e459f7e2ce6d87dc1b028f560ac2f8324afe6157434e5fdd69e543fb09451f63fe82a15e52f404cd1c35a85d51d33287b1d67162495fdb1a70361387f"}, {0x110, 0x88, 0x6, "8093302206775bfed301162b9036b6bd6ed295c61d578da19c81e97e4dd5ab156f01b0d10de916c66babb1c976997abc1792f31c790a31860b20db98c7b100321acdc5c974995f3ced185e8a0b60750392756887e8ca9884d53ef8bba63cb408de4eea56b814f8c872658e57cb68ca7930403306a667c3286ac0bb32fc9bfa3c17f070e9beac9b58cda19fd1335d6f02fb5324d2d0e30c4e6c51a684f0ee8fd19cfef60121f6317a4c112f9ac85ee97398bc62ce3fc8288aad734e96fa4a0616a23490e701720ff9c54db5c36499ac525341d8dc1531435fb3f9a7a8201b3dc9ac3e97d39f540d5ffa3c1057d6ea063ee98d1baa6d30314d2fe7fb"}], 0x220}}], 0x1, 0x40000)

10:25:53 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x10000000000, 0x0, 0x0)

10:25:53 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r9=>r8, {0x401}}, './file0\x00'})
close_range(r8, r9, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r10=>0x0, &(0x7f0000000100)=<r11=>0x0)
syz_io_uring_submit(r10, r11, 0x0, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r12}}, 0x101)
syz_io_uring_submit(r3, r6, &(0x7f00000001c0)=@IORING_OP_STATX={0x15, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000340), &(0x7f0000000140)='./file0\x00', 0x14, 0x2000, 0x0, {0x0, r12}}, 0x5)
r13 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r14 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10, 0x80800)
getsockopt$IP_VS_SO_GET_SERVICES(r14, 0x0, 0x482, &(0x7f00000000c0)=""/58, &(0x7f0000000100)=0x3a)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r13, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:25:53 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

10:25:53 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 46)

10:25:53 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

[ 1643.645010] FAULT_INJECTION: forcing a failure.
[ 1643.645010] name failslab, interval 1, probability 0, space 0, times 0
[ 1643.646428] CPU: 0 PID: 8670 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1643.647216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1643.648176] Call Trace:
[ 1643.648493]  dump_stack+0x107/0x167
[ 1643.648914]  should_fail.cold+0x5/0xa
[ 1643.649357]  ? ptlock_alloc+0x1d/0x70
[ 1643.649804]  should_failslab+0x5/0x20
[ 1643.650252]  kmem_cache_alloc+0x5b/0x310
[ 1643.650721]  ptlock_alloc+0x1d/0x70
[ 1643.651148]  pte_alloc_one+0x68/0x1a0
[ 1643.651589]  ? replace_page_cache_page+0x1200/0x1200
[ 1643.652190]  handle_mm_fault+0x2ab2/0x3500
[ 1643.652682]  ? __lock_acquire+0x1657/0x5b00
[ 1643.653180]  ? find_held_lock+0x2c/0x110
[ 1643.653653]  ? pgtable_bad+0x90/0x90
[ 1643.654080]  ? __pmd_alloc+0x630/0x630
[ 1643.654540]  ? vmacache_find+0x55/0x2a0
[ 1643.655006]  do_user_addr_fault+0x56e/0xc60
[ 1643.655038] FAULT_INJECTION: forcing a failure.
[ 1643.655038] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1643.655510]  exc_page_fault+0xa2/0x1a0
[ 1643.655525]  asm_exc_page_fault+0x1e/0x30
[ 1643.655538] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1643.655550] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1643.655556] RSP: 0018:ffff888042f977b8 EFLAGS: 00050287
[ 1643.655566] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1643.655573] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042f97888
[ 1643.655591] RBP: ffff888042f97888 R08: 0000000000000001 R09: ffff888042f97907
[ 1643.664745] R10: ffffed10085f2f20 R11: 0000000000000001 R12: 0000000020000100
[ 1643.665563] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1643.666402]  _copy_from_user+0x172/0x1b0
[ 1643.666872]  move_addr_to_kernel.part.0+0x31/0x110
[ 1643.667446]  move_addr_to_kernel+0x4f/0x70
[ 1643.667939]  io_connect+0x47a/0x610
[ 1643.668363]  ? io_prep_rw+0x1050/0x1050
[ 1643.668830]  ? __lock_acquire+0xbb1/0x5b00
[ 1643.669324]  io_issue_sqe+0x1611/0x77d0
[ 1643.669783]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.670393]  ? lock_chain_count+0x20/0x20
[ 1643.670874]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.671480]  ? io_connect+0x610/0x610
[ 1643.671927]  ? lock_acquire+0x197/0x470
[ 1643.672389]  ? find_held_lock+0x2c/0x110
[ 1643.672865]  ? __fget_files+0x2cf/0x520
[ 1643.673326]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.673802]  __io_queue_sqe+0x90/0x9d0
[ 1643.674258]  ? io_issue_sqe+0x77d0/0x77d0
[ 1643.674734]  ? __fget_files+0x2f8/0x520
[ 1643.675201]  io_submit_sqes+0x44a8/0x8610
[ 1643.675692]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.676272]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.676830]  ? find_held_lock+0x2c/0x110
[ 1643.677303]  ? io_submit_sqes+0x8610/0x8610
[ 1643.677802]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1643.678365]  ? wait_for_completion_io+0x270/0x270
[ 1643.678916]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1643.679459]  ? vfs_write+0x354/0xb10
[ 1643.679889]  ? fput_many+0x2f/0x1a0
[ 1643.680327]  ? ksys_write+0x1a9/0x260
[ 1643.680768]  ? __ia32_sys_read+0xb0/0xb0
[ 1643.681241]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.681849]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1643.682443]  do_syscall_64+0x33/0x40
[ 1643.682875]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1643.683463] RIP: 0033:0x7feaf290db19
[ 1643.683891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.686006] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1643.686885] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1643.687708] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1643.688537] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1643.689365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1643.690190] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 1643.691036] CPU: 1 PID: 8669 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1643.692474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1643.694155] Call Trace:
[ 1643.694703]  dump_stack+0x107/0x167
[ 1643.695471]  should_fail.cold+0x5/0xa
[ 1643.696277]  __alloc_pages_nodemask+0x182/0x600
[ 1643.697272]  ? lock_acquire+0x197/0x470
[ 1643.698117]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1643.699418]  ? find_held_lock+0x2c/0x110
[ 1643.700311]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1643.701445]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.702295]  ? mark_held_locks+0x9e/0xe0
[ 1643.703140]  alloc_pages_current+0x187/0x280
[ 1643.704046]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1643.705118]  ? replace_page_cache_page+0x1200/0x1200
[ 1643.706159]  pte_alloc_one+0x16/0x1a0
[ 1643.706936]  ? replace_page_cache_page+0x1200/0x1200
[ 1643.707989]  handle_mm_fault+0x2ab2/0x3500
[ 1643.708869]  ? __lock_acquire+0x1657/0x5b00
[ 1643.709811]  ? __pmd_alloc+0x630/0x630
[ 1643.710612]  ? vmacache_find+0x55/0x2a0
[ 1643.711461]  do_user_addr_fault+0x56e/0xc60
[ 1643.712367]  exc_page_fault+0xa2/0x1a0
[ 1643.713177]  asm_exc_page_fault+0x1e/0x30
[ 1643.714053] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1643.715210] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1643.719015] RSP: 0018:ffff888042a1f7b8 EFLAGS: 00050246
[ 1643.720111] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1643.721574] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042a1f888
[ 1643.723038] RBP: ffff888042a1f888 R08: 0000000000000001 R09: ffff888042a1f907
[ 1643.724497] R10: ffffed1008543f20 R11: 0000000000000001 R12: 0000000020000100
[ 1643.725950] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1643.727437]  _copy_from_user+0x172/0x1b0
[ 1643.728276]  move_addr_to_kernel.part.0+0x31/0x110
[ 1643.729297]  move_addr_to_kernel+0x4f/0x70
[ 1643.730167]  io_connect+0x47a/0x610
[ 1643.730918]  ? io_prep_rw+0x1050/0x1050
[ 1643.731762]  ? __lock_acquire+0xbb1/0x5b00
[ 1643.732631]  io_issue_sqe+0x1611/0x77d0
[ 1643.733450]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.734510]  ? lock_chain_count+0x20/0x20
[ 1643.735377]  ? __is_insn_slot_addr+0x14c/0x290
[ 1643.736333]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1643.737405]  ? io_connect+0x610/0x610
[ 1643.738185]  ? lock_acquire+0x197/0x470
[ 1643.738991]  ? find_held_lock+0x2c/0x110
[ 1643.739850]  ? __fget_files+0x2cf/0x520
[ 1643.740680]  ? lock_downgrade+0x6d0/0x6d0
[ 1643.741583]  __io_queue_sqe+0x90/0x9d0
[ 1643.742398]  ? io_issue_sqe+0x77d0/0x77d0
[ 1643.743273]  ? __fget_files+0x2f8/0x520
[ 1643.744119]  io_submit_sqes+0x44a8/0x8610
[ 1643.744997]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.746017]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1643.747015]  ? find_held_lock+0x2c/0x110
[ 1643.747870]  ? io_submit_sqes+0x8610/0x8610
[ 1643.748764]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1643.749775]  ? wait_for_completion_io+0x270/0x270
[ 1643.750772]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1643.751716]  ? vfs_write+0x354/0xb10
[ 1643.752506]  ? fput_many+0x2f/0x1a0
[ 1643.753247]  ? ksys_write+0x1a9/0x260
[ 1643.754110]  ? __ia32_sys_read+0xb0/0xb0
[ 1643.754974]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.756071]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1643.757164]  do_syscall_64+0x33/0x40
[ 1643.757924]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1643.758994] RIP: 0033:0x7ff5992a9b19
[ 1643.759758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.763514] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1643.765077] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1643.766531] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1643.768010] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1643.769462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1643.770919] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:25:54 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7ffffffffffff, 0x0, 0x0)

10:26:08 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 47)

10:26:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, 0x0, &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r3, 0x536f, 0x95ef, 0x0, &(0x7f0000000040)={[0x7fff]}, 0x8)

10:26:08 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

10:26:08 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

10:26:08 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000480), 0x20a000, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r4, 0x11, 0x1, &(0x7f00000004c0)=""/4096, &(0x7f00000014c0)=0x1000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x7}, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r7, 0x80106720, &(0x7f00000006c0)={0x6, &(0x7f0000002dc0)=[{0x4e, 0x7d, &(0x7f0000000200)="73d9e794187107a759c960c20311fbea952dc09c1a9075e2e51996717a208f3dbbd3f08196a713a891551aef673bab46cf81e285883777a04d06885e56b7edaeb811942ac529df67434dc5c7034fbd032296fff0c5d8ece07d52b3dca6433983ad2ef1320820036d15bd0c7624e3dddf10682d58b5bc63f511f75ec63e"}, {0x80000001, 0x1000, &(0x7f0000001dc0)="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", 0x1}, {0x453, 0x2b, &(0x7f0000000280)="1de1a8e54fc1b33c958ed64ced24b52ba0e628ef6de176efb9cd76cb452303a9c80b4c4cd6fdf002f65e0b", 0x0, 0x1}, {0x4, 0x67, &(0x7f0000000540)="18a4437f175418bf57b160fa6966f3701fa731330d09d3a1ffa4a83b9afee402a055d0102ed09a8781dfa89ed20085f7c5b52757e3f0b2b9490f896f5cca685a3c6d0e3f33ad974ddbd9c2a8d51a6d9adf02b6f84632070e812c3db3eceedde136cd3f2dcf1fa0", 0x0, 0x1}, {0xfffffff7, 0x72, &(0x7f0000000640)="12b80ee3e9288ad183a74b17612d8dc550eeba89ab408a74e6f1083961d333e3940f33fa0ba92f3fbb3b0b4a4a0614774be1f1a7490f034fab2146cebd58bb2f3162db4e593e11ecdf6cc30d2b3884560b59ff20fd4fc179b2c03863d51bb8e0cf9403678f6e33042b5aecd99bd2ae3a0470", 0x0, 0x1}, {0xffffffc0, 0x36, &(0x7f00000005c0)="ff58be78ac4cb32186a44a478e104e0eebeadbd9178f7f31d98266587daf7c52bbb3421f2f5ccd4f7de85fde72f99fdf54bf9e73512f", 0x1}]})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r7, 0xc0189374, &(0x7f0000000480)={{0x1, 0x1, 0x18, r6, {0x5}}, './file0\x00'})
ioctl$FS_IOC_GETFSMAP(r7, 0xc0c0583b, &(0x7f0000000740)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d4571082000000000000000000000000000000000000000000824a700900"/260])
ioctl$BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f0000000100)=<r8=>0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r6, 0x5000943a, &(0x7f0000000980)={{r7}, r8, 0x18, @unused=[0xfff, 0x7f, 0x1ff, 0x1], @name="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"})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000000080)={"e4dc0e3165f6a8c3669f377278ff2c5e", <r9=>0x0, 0x0, {0x40, 0x7}, {0x0, 0x80000001}, 0x1, [0x80000000, 0x2, 0xfffffffffffffb5b, 0x2e7b, 0x9e4, 0x3, 0x100000001, 0xffffffffffffff6c, 0x7, 0x9, 0xd0c, 0x8, 0x8, 0x7, 0x1, 0x101]})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c89425, &(0x7f0000000340)={"acfd1bc69c4036ad9b1f7bf8ba3a1ba8", r8, r9, {0x7}, {0x7ff, 0x40}, 0xff, [0x7f, 0x8001, 0x6, 0x1000, 0x4893be27, 0x80, 0x20, 0x6, 0x6, 0xffffffff00000000, 0x9, 0x80, 0x6, 0xffffffffffffeeda, 0x6000]})

10:26:08 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf, 0x0, 0x0)

[ 1657.935955] FAULT_INJECTION: forcing a failure.
[ 1657.935955] name failslab, interval 1, probability 0, space 0, times 0
[ 1657.938449] CPU: 1 PID: 8698 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1657.939896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1657.940747] FAULT_INJECTION: forcing a failure.
[ 1657.940747] name failslab, interval 1, probability 0, space 0, times 0
[ 1657.941702] Call Trace:
[ 1657.941731]  dump_stack+0x107/0x167
[ 1657.941755]  should_fail.cold+0x5/0xa
[ 1657.941786]  ? ptlock_alloc+0x1d/0x70
[ 1657.947016]  should_failslab+0x5/0x20
[ 1657.947825]  kmem_cache_alloc+0x5b/0x310
[ 1657.948717]  ptlock_alloc+0x1d/0x70
[ 1657.949490]  pte_alloc_one+0x68/0x1a0
[ 1657.950305]  ? replace_page_cache_page+0x1200/0x1200
[ 1657.951379]  handle_mm_fault+0x2ab2/0x3500
[ 1657.952317]  ? __lock_acquire+0x1657/0x5b00
[ 1657.953233]  ? __pmd_alloc+0x630/0x630
[ 1657.954064]  ? vmacache_find+0x55/0x2a0
[ 1657.954914]  do_user_addr_fault+0x56e/0xc60
[ 1657.955833]  exc_page_fault+0xa2/0x1a0
[ 1657.956689]  asm_exc_page_fault+0x1e/0x30
[ 1657.957563] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1657.958707] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1657.962651] RSP: 0018:ffff888042c977b8 EFLAGS: 00050246
[ 1657.963770] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1657.965296] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042c97888
[ 1657.966794] RBP: ffff888042c97888 R08: 0000000000000001 R09: ffff888042c97907
[ 1657.968327] R10: ffffed1008592f20 R11: 0000000000000001 R12: 0000000020000100
[ 1657.969826] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1657.971355]  _copy_from_user+0x172/0x1b0
[ 1657.972240]  move_addr_to_kernel.part.0+0x31/0x110
[ 1657.973277]  move_addr_to_kernel+0x4f/0x70
[ 1657.974167]  io_connect+0x47a/0x610
[ 1657.974935]  ? io_prep_rw+0x1050/0x1050
[ 1657.975793]  ? __lock_acquire+0xbb1/0x5b00
[ 1657.976720]  io_issue_sqe+0x1611/0x77d0
[ 1657.977566]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1657.978649]  ? lock_chain_count+0x20/0x20
[ 1657.979533]  ? __is_insn_slot_addr+0x14c/0x290
[ 1657.980532]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1657.981646]  ? io_connect+0x610/0x610
[ 1657.982461]  ? lock_acquire+0x197/0x470
[ 1657.983309]  ? find_held_lock+0x2c/0x110
[ 1657.984201]  ? __fget_files+0x2cf/0x520
[ 1657.985053]  ? lock_downgrade+0x6d0/0x6d0
[ 1657.985940]  __io_queue_sqe+0x90/0x9d0
[ 1657.986775]  ? io_issue_sqe+0x77d0/0x77d0
[ 1657.987649]  ? __fget_files+0x2f8/0x520
[ 1657.988541]  io_submit_sqes+0x44a8/0x8610
[ 1657.989452]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1657.990505]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1657.991533]  ? find_held_lock+0x2c/0x110
[ 1657.992426]  ? io_submit_sqes+0x8610/0x8610
[ 1657.993344]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1657.994368]  ? wait_for_completion_io+0x270/0x270
[ 1657.995396]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1657.996391]  ? vfs_write+0x354/0xb10
[ 1657.997191]  ? fput_many+0x2f/0x1a0
[ 1657.997960]  ? ksys_write+0x1a9/0x260
[ 1657.998777]  ? __ia32_sys_read+0xb0/0xb0
[ 1657.999644]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1658.000789]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1658.001892]  do_syscall_64+0x33/0x40
[ 1658.002684]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1658.003766] RIP: 0033:0x7ff5992a9b19
[ 1658.004576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1658.008509] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1658.010123] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1658.011626] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1658.013172] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1658.014684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1658.016222] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
[ 1658.017764] CPU: 0 PID: 8700 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 1658.019225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1658.021011] Call Trace:
[ 1658.021579]  dump_stack+0x107/0x167
[ 1658.022365]  should_fail.cold+0x5/0xa
[ 1658.023182]  ? ptlock_alloc+0x1d/0x70
[ 1658.023994]  should_failslab+0x5/0x20
[ 1658.024811]  kmem_cache_alloc+0x5b/0x310
[ 1658.025677]  ptlock_alloc+0x1d/0x70
[ 1658.026441]  pte_alloc_one+0x68/0x1a0
[ 1658.027253]  ? replace_page_cache_page+0x1200/0x1200
[ 1658.028335]  handle_mm_fault+0x2ab2/0x3500
[ 1658.029233]  ? __lock_acquire+0x1657/0x5b00
[ 1658.030152]  ? __pmd_alloc+0x630/0x630
[ 1658.030987]  ? vmacache_find+0x55/0x2a0
[ 1658.031843]  do_user_addr_fault+0x56e/0xc60
[ 1658.032779]  exc_page_fault+0xa2/0x1a0
[ 1658.033613]  asm_exc_page_fault+0x1e/0x30
[ 1658.034692] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1658.035833] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1658.039744] RSP: 0018:ffff88803ef5f7b8 EFLAGS: 00050246
[ 1658.040876] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1658.042387] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88803ef5f888
[ 1658.043889] RBP: ffff88803ef5f888 R08: 0000000000000001 R09: ffff88803ef5f907
[ 1658.045405] R10: ffffed1007debf20 R11: 0000000000000001 R12: 0000000020000100
[ 1658.046909] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1658.048462]  _copy_from_user+0x172/0x1b0
[ 1658.049343]  move_addr_to_kernel.part.0+0x31/0x110
[ 1658.050393]  move_addr_to_kernel+0x4f/0x70
[ 1658.051287]  io_connect+0x47a/0x610
[ 1658.052062]  ? io_prep_rw+0x1050/0x1050
[ 1658.052939]  ? __lock_acquire+0xbb1/0x5b00
[ 1658.053831]  io_issue_sqe+0x1611/0x77d0
[ 1658.054679]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1658.055780]  ? lock_chain_count+0x20/0x20
[ 1658.056661]  ? __is_insn_slot_addr+0x14c/0x290
[ 1658.057633]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1658.058740]  ? io_connect+0x610/0x610
[ 1658.059548]  ? lock_acquire+0x197/0x470
[ 1658.060400]  ? find_held_lock+0x2c/0x110
[ 1658.061270]  ? __fget_files+0x2cf/0x520
[ 1658.062118]  ? lock_downgrade+0x6d0/0x6d0
[ 1658.063002]  __io_queue_sqe+0x90/0x9d0
[ 1658.063838]  ? io_issue_sqe+0x77d0/0x77d0
[ 1658.064721]  ? __fget_files+0x2f8/0x520
[ 1658.065579]  io_submit_sqes+0x44a8/0x8610
[ 1658.066487]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1658.067541]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1658.068570]  ? find_held_lock+0x2c/0x110
[ 1658.069438]  ? io_submit_sqes+0x8610/0x8610
[ 1658.070356]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1658.071382]  ? wait_for_completion_io+0x270/0x270
[ 1658.072417]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1658.073403]  ? vfs_write+0x354/0xb10
[ 1658.074194]  ? fput_many+0x2f/0x1a0
[ 1658.074960]  ? ksys_write+0x1a9/0x260
[ 1658.075768]  ? __ia32_sys_read+0xb0/0xb0
[ 1658.076645]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1658.077749]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1658.078845]  do_syscall_64+0x33/0x40
[ 1658.079629]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1658.080716] RIP: 0033:0x7feaf290db19
[ 1658.081505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1658.085429] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1658.087051] RAX: ffffffffffffffda RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 1658.088564] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1658.090075] RBP: 00007feaefe831d0 R08: 0000000000000000 R09: 0000000000000000
[ 1658.091597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1658.093118] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
10:26:08 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x3, 0x2a5, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r1, 0x42d7, 0x9646, 0x2, &(0x7f0000000240)={[0x5]}, 0x8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140))
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x6, 0x14010, r5, 0x10000000)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x5)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_setup(0x6d90, &(0x7f0000000040)={0x0, 0x8eb, 0x20, 0x2, 0xc9, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000440)=<r9=>0x0, &(0x7f0000000480))
syz_io_uring_setup(0x3eb3, &(0x7f00000004c0)={0x0, 0xa7, 0x10, 0x1, 0x157, 0x0, r1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000540), &(0x7f0000000580)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000700)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f00000005c0), &(0x7f00000006c0)='./file0\x00', 0x400, 0x0, 0x1}, 0x66a9)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x48f6, &(0x7f00000003c0)={0x0, 0xea6c, 0x20, 0xffffffff, 0x3b7, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x4, 0x0, 0xb3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000000080)=[{&(0x7f0000001400)=""/226, 0xe2}], 0x1)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x100010, r8, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r7, 0x0, {}, 0x44d, 0x8, 0x1, {0x0, 0x0, r3}}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
write(r0, &(0x7f0000000400)="fa70f7f3641227bd293a03aff978eb4b64326ec4cd4734d90e674e0d133ab4c5c50331ae393ad251caddbcbb0e80b5c1e795af29e0fb6398de121598ecb5dc23011b48a4a01d4083f076861919998624426e3ddc1e01c45e2a5faaa85ab2613a0d50de800b1f83a814acb0377c6dc837ef337af845f0a5736d21d930f5dcdb7b302de2bab94d70a7fc0a5aa930e4829fd93d867e8e4dd98b1e041fe58148a6f95c176e4b8ef3029d469b8b98487c0e9d380ce80c2eddcd03d16cfd1dac66feaee3afb221010e8d5897ce532edd372eec45eb9dfe06f9ae6e7a9ed1906a1c38b16440692bc733c18cc75b0577f89b2f10dfa29169058458593f251081490d680e2ee233879f565abc6e27a84a9a74c724a965ec0ff58a86234254c6a11023919ef3f7454dd09359baa3486ef20d4d1dd7ff5cc1a6296348942f3b02775aa5fd60aa456ec2de2816bb63d72c37bbdd35570c936943499f2a4770ff0a178f8a96aa994e79aca9e2b769e1837247f0c2a429657583420805eacf5e8fd0da821a60fd4b7ec299bd949f4a83a14358c7354728295287fca78e698dc89e01f5065bf18a9258fcbb58810a95e2719398c7cd0f6cc0d6978cbc6aa08943ff277cf7ff0e0fc6db55d09c12d548db3379421efd910cdbae5eec754be837c2ee866e1c89660e6c0ef61c61787b2a8d1a5038016f3d838e63b346e3471dde87baab5b9846f06c5501b89f162d882828279d00529a052046ce1f07136460c4d35b1f4081ea406b8abf8ef00fcc8a4694bf701500d7c5daa221e85abf01fb4595907377caf0214daab215c84f95950b595fcad5d799230d8de3483449cd82ecaf7d1b4a738e7f2fc80486ce56705c548173af048f7bd6fbdd081246f4debcc5d02f918682a5886a2d9724bc7cdb56b4ac1a4ade5b37db4893faa8a295202d7e5d993a2f0da458494371f7271ae81259044fb81b8f8d7f33f8cf351bbc1ce035f58c1aee4b29071cbc9f56a3ab3f13b435f337a3e9bf37fe4340d39ac041854269b5636e1ffa79c13abd681739e6f3e5411c97b7529f29404bf38c846a3a049a2eac00d280a8699a9bfcaf413ae6e5637a1252f3d7a6e429783e0ee67ce3315994264549665149e8cff8f02116a1bcf893278afc78b0d6855727bd95e9be3b04e46550db313988291b0c4cb08d818ec2a09b076c12fa0000ef3b1c1a4da8efd5316ae114e340a751f0c06ae78aa38af11357c7b6be3ab22995b4147c58dc949fa84815bf272019c9f32356e3da4d98600e3f229fd49f7c88c6ee3e4e20c56f86efae92a5845998858e02bd86cbacdc90568ad1f50d43fb65dcadb540c6453082590e6648a526371981727bdffe7486c1b868d40bb0f0526d923fe15ea8960f714406cebabd4abd827d05da912f608c09e4ac0e2ba36623a213c1ba10a6a274bb8342129d124429bb9848aee40674d0e60cc145c89f8f142a7032886bacda6f2863a18f49f2e6b6ab04cd0eaaf9512c0d8d0d686447f75e24962ee5666cfed87ee61995a686debf43934e441f0d65e8c81f359d514b6fbc168dce5230f8aa60157d4bf6a0b303665602a7db3348d5d018fdcf6a33afe861ee200fc87e4beb685d4c329849a0fea63ce823a42448e322285e195d1696ecfbbbebdb7d16e5d5922ef082b6ec8ff5ed263bdcb78de4b5d0c8e5ba846a3ea7672668d63606544d998b0e71d444838c72c369637c0bb12399b2f50812f5c37b21152194b870bdbb3a56f14aee56b0395a7f04b6fc5e39ff4abb8b8ee42af19993507d25a770b25cdee9a21edc1ccffcaf66140ae9d4f9b8fc780b3c5da22a9177228ace646a01e7a9c57326af91f1a7acd1c9c6d634abbf8fa51c9a44790929e5faecd868cfec7e9496c3f07b885ec0b998e2ff461f4c60e3199b7dd0e845af1e0a3620d2af5912ff16751f071ef9b40958133d108c16de0eda27d03ece47972cdf94108e57177a2f643e4219d185f8d031e71030df2008e3fb84d62e10f97784fd64a6b98ee284e7078daef48f4f1f1616c7388c0b97739833c9f8eec8e790f6dc6158f60535d38a0233c6cf67abe6f857e7d3bdc1a9de3eace3d527937f35b507777ddfd4e845c241fa0ac83a16dc451438787793bd561b489613eac2f62cc2216e43041c23a8853a6a1d3369838a1f21533aac731d8eec34737313e95fca618c14c94bb019293b5687718403c862abf99406ae63de87a9622d4731608143153e10aa247ecaba31d3abeb5402c4c7ac6200c76a972f78887843d11c1fee8162cd5a9d10edc1c01c675cae1be22c6f6bb753e405d92329f90bd8bae8a7ae0edf798b9ca8bc678607717bb71a31b5fe4331ada2bb87a94487bc72a7a660c9e31d6760cc769dddf887ca15197db4efb9ba184ba9c5c6f3ca4c063c2bff40fe0c36a4e51a6884b5f788167fc099a1cc4ee6f8833c8b3fdb05ec87d19dfa7e4f0cd41966b05209ac123b8bdf7b1ec79225729e2b1ca228b70a6d215b58205e27129831f0b58e5d6950840ccb4c0079b8e352fdfd26d0e8d1f4716bf5ef887210eab188f7894000c0b61afaa648b89776d18ecbef90d5fcd3b2db305e9a67487ee977cd8e4d766c1e18de9aad1c9ee19adcc31af40c085e7e1576bd619015469c57182988a8371cf30e622a9720edeb1b9ee876d7447109a6be3927a4b9504674a391f686b84f06c0cdef6c31874cd94f5adfa84061d0537cf62b230cc030235b9af92f091572a7063dda4aadee2f0520827cff67a6ebc3fec1122248e501c3640ec3f1381e581fd9f2e1c2264449f9f5086449e2f5a77f63c4d2b0e6be8fe039f82d7b091294a2b90a6a2bcaea6f7f76203ebb29978f7211900ec0620e8c183f1623d744e4aa84ad9f11fbcf50e7707d3e2860697dc126d001844e04ba15e80aaebfb455f42c06bc5cf6a432c45633580942985cb54beadeff63fdd0cddb37cc2cd90649cf65bd4196f4d63b26d47e25c4feb04506e034c2396175ae97de940e5cfd325df9282c07044fe0db95f999d0bb786b63341b55abe043d69eab0a4cb67c2afd4022f48b33e114c09929bc19a91f9d25fc341b2e8e69301cb463e8ce1d6498f05365e09b0eadcad70f60c3f4ea08fdf9f774aca1208eb61e1cc90d1e87824fd79c7793ad841a286ed163c82e33cfc617d63df77c48d3fdba7d0eecf807d482efe58bb10e056a354e6700ef44df7d2ada1ec4993de641c7dcd3714a386394889e88a0356c6b985a23d9dfc37bd1f92e6f810aab9e4ff9a54e26cf90e67cb3e30d7ad101761d5917030f9d5ce136f1a643f1e034070ca9e4c7422d43a63f2c22a948aebef8fd1a8a4279ef956d5d3fcb0522ebf81dc8aeb74f2e5c85fc90bdf5ee65d363498546462dc1af1197786159fb592ee2fa20787044cf63070a83814370f5a435db0cc5dbe91e5642811e45481a8d161fc83e0e11735b00713b0221ed2b7373a139476d04dd39534582aae17f8dfc5cc35eb0846a2c6824a65f4c033185a12f91a0b083b94d3f09b529bc6ff9271b0e813a6cbd42cc2822aa3cd2c4c54ccf2544b74a38402f41c9e73b52e77cc250b6df2e04318e410e98234bded8ad34ef906c9f7bc18c74cb02766bbbdf93ef457363332d7dbba209dba3278a95ea678eda29859031bbcc9270c985efe0fdc5032151653af009fdc19e7e96da636cb0558683ee1276d4aeb2b1adbac77ee84c40d720d0880bdaec500508d584801710eacd6fa5bcd9aa879f16cc033ab91d5e6b27f9334b09954ae7d6971b453816aff085349f56161da30926966013c61a9f25408e13db6fc3abb7fa8d0fadf84b91eaf3d4605f32e54d9a2f7e960001d1323153a86373a8e2b37418e753dea813dc872588cb63ff6545c162bd771bc56e95babc843c80f35957f849566ca6e76d3a4a1099b41b817edbf6e53b535c6feac281ea53d3217a55f493299705a0ebd7cf283051eddbce099da2d28d0e53dbd1a4a89c328d2e32dfa93ed921feee0ab73067d921e84e56ec8c06d109d6f750adc0a5855672588eeb38da7e68d05971d0e350b43057cf703e71fdb1e25d13043e8b74efc36930d953a820fdea104e4f1c70ec76448b68e32fb4cc1381daceb3f0981a966bbf9f6227d05630fd49b71dc798306d9d178c620ca4e843b8ce0cec7b0790248c40483bde5fd04ccdd68c366f624de4388b2e65b13c9b4d67ea4e78fd6e7ce2109c0f178213aa202b0e54f5ef3706949d2daab9d6a46385af60b538a36c0a6a20a844d34435a8c96c41f95e356339ef9890025bdd77ad3bca75b1ee02fb5169d9d8c32df4d9db67213e74499b5d3622239a4125588e48d8ac41e61f79d42cec8f027146fa71c24832d911856172d3393ce210e7801eb2f402dd6ee732d23ee8138da5902314afb00edb9bbd9c7ce6ea3da1aa98bd2c02c2babbb7d53420992fe335885eb24d0921fcc135c0392d1be18f3f2bbc4e1eab9768a5efe13f61e450aa7209248638906f3a0b6fb91a7e72431bfcf05a2fba401fb5ec2ab5e3caba81d3d8079560cd4266da9231799cd18d13129eb71de991117d0694547582af3a6eb4c19708520142a322ec6b6689e83cec87cd76b99e222a762466c872535b5e00c7e8363f04bd7afba1f498cbe894f13f0977bf61764e5b3f297f0713fe5ba3c80373ffc50795723b4a786dfd7fecee25c9390aa87a8f095afe213f457cccb1de85974324d8cda6302c8aeaf9fc00fab4b7f201d78cbcd380c04d9e801b1b2f5776bdd6693f79680960a8c5db227ce3d89c2e0e246b19faea036a4b85801e673abe5f1cff8d515699c75aa78fa55d51eb1dbe0392fc541f9630509c0664e1ca4e6ebd710a658cf7cc9556afa712a63a0538f8c8f5b18c0a9a46325c1d7ac004c9b5748adb930938a9f00e5efa98337fead8a24946075e7e25c4ed97700411c1517d42780ac50a8efb8d55e470e56f267efa1da4c6bd1e14c47df19f5cfea37ea7ab26309e89f55227c0db838f0a84c9fc17544b43e4ec0132c9aee114d278b87e7f52b29dc1479a2815b6b676764c3fdc5431d9b102a3e2da2599f16b6bfccefec2d9508dbc24af346852162f7c82614e0c305019c83c535690e1c38d66066a1a5cfbc6460c358640c2baacd4e3550ac7e87819b4e1ecb4337e1297c7d674e5bdb05f5b03fd46811b2878b4e6e3b6408bd5ff84748ed52902dbad7a2063d149e0ed8e05fe03bf9d527042d6fd79371b07317ea5f1291880f9aa033ee179518e4e93de88ec0a603d1876e1eff89a60ab426a600c480895ccf265a8e4931b3263621f6101fc9311807be6f9aed09d20f25091a8ffc62971a1f6a07d3723d2c9c0d0f004412aff4d8e4fd0edaabadb71e799a49c815f58ca150714ea906759c5059cd41feaab112653dbc5fb277de6608ccb1c366f9c2fd2c4a1bd692b3826b0bbf39deb3a2bb2454605c691ff7a53a7e956cc3892efafe69bd39b31c46a8bda832936437055d74237f44a28acab21584674921c5d3d946774afc0cacdaa2f871d0d3be73e20495327feaceb0f16b3c499aff6bb07d69206a17f3c68bd31b39495c62218235d413406568dc5a776215d8601d3ef6691bbd73f5e9f0fc2f119a88f91c408e8e46b9221e1a26fdf615e5d2a2b7ca102f406044a4183c1677016019a69a187609a995f2f944d0c378af16c1d802123f3fd50b3a8b0cc820013b1686e600e02b36552203d364d502449c90dcff9c8b9f9f2b709e7d5822c0a257bdf3a9d0d2e7715699174051673e4289ad9afdd3f1e65f10a8f4b18c95c6b2b8ea7", 0x1000)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

10:26:08 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x4004, @fd_index=0x5, 0x3ff, 0x80000000, 0x3, 0x8, 0x1}, 0x2)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:08 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 48)

[ 1658.496002] FAULT_INJECTION: forcing a failure.
[ 1658.496002] name failslab, interval 1, probability 0, space 0, times 0
[ 1658.498745] CPU: 1 PID: 8720 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1658.500243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1658.502008] Call Trace:
[ 1658.502575]  dump_stack+0x107/0x167
[ 1658.503385]  should_fail.cold+0x5/0xa
[ 1658.504224]  ? create_object.isra.0+0x3a/0xa30
[ 1658.505200]  should_failslab+0x5/0x20
[ 1658.506004]  kmem_cache_alloc+0x5b/0x310
[ 1658.506874]  create_object.isra.0+0x3a/0xa30
[ 1658.507808]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1658.508916]  kmem_cache_alloc+0x159/0x310
[ 1658.509811]  ptlock_alloc+0x1d/0x70
[ 1658.510586]  pte_alloc_one+0x68/0x1a0
[ 1658.511398]  ? replace_page_cache_page+0x1200/0x1200
[ 1658.512497]  handle_mm_fault+0x2ab2/0x3500
[ 1658.513407]  ? __lock_acquire+0x1657/0x5b00
[ 1658.514316]  ? find_held_lock+0x2c/0x110
[ 1658.515173]  ? pgtable_bad+0x90/0x90
[ 1658.515962]  ? __pmd_alloc+0x630/0x630
[ 1658.516834]  ? vmacache_find+0x55/0x2a0
[ 1658.517693]  do_user_addr_fault+0x56e/0xc60
[ 1658.518627]  exc_page_fault+0xa2/0x1a0
[ 1658.519467]  asm_exc_page_fault+0x1e/0x30
[ 1658.520424] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1658.521665] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1658.525610] RSP: 0018:ffff88803f58f7b8 EFLAGS: 00050287
[ 1658.526743] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1658.528299] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803f58f888
[ 1658.529813] RBP: ffff88803f58f888 R08: 0000000000000001 R09: ffff88803f58f907
[ 1658.531326] R10: ffffed1007eb1f20 R11: 0000000000000001 R12: 0000000020000100
[ 1658.532874] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1658.534422]  _copy_from_user+0x172/0x1b0
[ 1658.535289]  move_addr_to_kernel.part.0+0x31/0x110
[ 1658.536364]  move_addr_to_kernel+0x4f/0x70
[ 1658.537265]  io_connect+0x47a/0x610
[ 1658.538045]  ? io_prep_rw+0x1050/0x1050
[ 1658.538907]  ? __lock_acquire+0xbb1/0x5b00
[ 1658.539810]  io_issue_sqe+0x1611/0x77d0
[ 1658.540714]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1658.541838]  ? lock_chain_count+0x20/0x20
[ 1658.542722]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1658.543833]  ? io_connect+0x610/0x610
[ 1658.544672]  ? lock_acquire+0x197/0x470
[ 1658.545505]  ? find_held_lock+0x2c/0x110
[ 1658.546369]  ? __fget_files+0x2cf/0x520
[ 1658.547203]  ? lock_downgrade+0x6d0/0x6d0
[ 1658.548082]  __io_queue_sqe+0x90/0x9d0
[ 1658.548936]  ? io_issue_sqe+0x77d0/0x77d0
[ 1658.549809]  ? __fget_files+0x2f8/0x520
[ 1658.550654]  io_submit_sqes+0x44a8/0x8610
[ 1658.551554]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1658.552633]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1658.553651]  ? find_held_lock+0x2c/0x110
[ 1658.554513]  ? io_submit_sqes+0x8610/0x8610
[ 1658.555433]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1658.556482]  ? wait_for_completion_io+0x270/0x270
[ 1658.557498]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1658.558468]  ? vfs_write+0x354/0xb10
[ 1658.559251]  ? fput_many+0x2f/0x1a0
[ 1658.560012]  ? ksys_write+0x1a9/0x260
[ 1658.560854]  ? __ia32_sys_read+0xb0/0xb0
[ 1658.561714]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1658.562819]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1658.563908]  do_syscall_64+0x33/0x40
[ 1658.564723]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1658.565797] RIP: 0033:0x7ff5992a9b19
[ 1658.566579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1658.570456] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1658.572050] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1658.573565] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1658.575061] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1658.576588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1658.578081] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:26:08 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r4, 0x52d0, 0xdf02, 0x1, &(0x7f0000000040)={[0x9]}, 0x8)

10:26:08 executing program 0:
r0 = syz_io_uring_setup(0x2dfc, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r3, 0x0, &(0x7f0000000040)="48e3a2e7d16d54a66bbd5468c262299f073e53c9a4fb9d921344ce46fbc085a9c95331c301197a0c2ff4d420ab3add7c647391db8f6b1568b6f900d99a146f07903410f8858c95f6bf63f5575fe44b8ef15a24cb97f8854c833d6811f05b08e847f8b26452d41118b8eeacd549e2cfd04d2bb4c6033cff6622b937b9239faa63404ef2cfee67415bdbc5c32a084c506021488bff7e654ea335e6ac3d", 0x9c, 0x4011}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:09 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 49)

10:26:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r0, {0x2, 0x1}}, './file0\x00'})
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x30, r4, 0x8000000)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>r6, {0x401}}, './file0\x00'})
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(r5, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x5, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, r10}}, 0x7f)
io_uring_enter(r4, 0xc71, 0xcdd6, 0x3, &(0x7f0000000080), 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x200000000000000, 0x0, 0x0)

10:26:21 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00, 0x0, 0x0)

10:26:21 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x4000010, r0, 0x0)
r5 = syz_open_dev$ptys(0xc, 0x3, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x6000, @fd=r5, 0x4, 0x8000, 0x6, 0x4, 0x0, {0x3}}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1, 0x3bb039641b7b3e3a}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r11, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x1, 0x835d, 0x0, 0x7, 0x9, 0x1, {0x0, r13}}, 0x8)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r8, 0x74fc, 0xfffffffe, 0x2, 0x0, 0x0)

[ 1671.303049] FAULT_INJECTION: forcing a failure.
[ 1671.303049] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1671.305839] CPU: 0 PID: 8751 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1671.307284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1671.309063] Call Trace:
[ 1671.309629]  dump_stack+0x107/0x167
[ 1671.310399]  should_fail.cold+0x5/0xa
[ 1671.311205]  __alloc_pages_nodemask+0x182/0x600
[ 1671.312191]  ? lock_acquire+0x197/0x470
[ 1671.313039]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1671.314301]  ? find_held_lock+0x2c/0x110
[ 1671.315162]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1671.316270]  ? lock_downgrade+0x6d0/0x6d0
[ 1671.317150]  ? mark_held_locks+0x9e/0xe0
[ 1671.318019]  alloc_pages_current+0x187/0x280
[ 1671.318949]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1671.320053]  ? replace_page_cache_page+0x1200/0x1200
[ 1671.321142]  pte_alloc_one+0x16/0x1a0
[ 1671.321943]  ? replace_page_cache_page+0x1200/0x1200
[ 1671.323011]  handle_mm_fault+0x2ab2/0x3500
[ 1671.323910]  ? __lock_acquire+0x1657/0x5b00
[ 1671.324825]  ? find_held_lock+0x2c/0x110
[ 1671.325685]  ? pgtable_bad+0x90/0x90
[ 1671.326476]  ? __pmd_alloc+0x630/0x630
[ 1671.327308]  ? vmacache_find+0x55/0x2a0
[ 1671.328152]  do_user_addr_fault+0x56e/0xc60
[ 1671.329085]  exc_page_fault+0xa2/0x1a0
[ 1671.329912]  asm_exc_page_fault+0x1e/0x30
[ 1671.330791] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1671.332036] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1671.335926] RSP: 0018:ffff88801f0bf7b8 EFLAGS: 00050287
[ 1671.337054] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1671.338549] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88801f0bf888
[ 1671.340054] RBP: ffff88801f0bf888 R08: 0000000000000001 R09: ffff88801f0bf907
[ 1671.341582] R10: ffffed1003e17f20 R11: 0000000000000001 R12: 0000000020000100
[ 1671.343086] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1671.344626]  _copy_from_user+0x172/0x1b0
[ 1671.345498]  move_addr_to_kernel.part.0+0x31/0x110
[ 1671.346531]  move_addr_to_kernel+0x4f/0x70
[ 1671.347421]  io_connect+0x47a/0x610
[ 1671.348192]  ? io_prep_rw+0x1050/0x1050
[ 1671.349056]  ? __lock_acquire+0xbb1/0x5b00
[ 1671.349956]  io_issue_sqe+0x1611/0x77d0
[ 1671.350804]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1671.351909]  ? lock_chain_count+0x20/0x20
[ 1671.352802]  ? __is_insn_slot_addr+0x14c/0x290
[ 1671.353768]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1671.354874]  ? io_connect+0x610/0x610
[ 1671.355690]  ? lock_acquire+0x197/0x470
[ 1671.356537]  ? find_held_lock+0x2c/0x110
[ 1671.357403]  ? __fget_files+0x2cf/0x520
[ 1671.358238]  ? lock_downgrade+0x6d0/0x6d0
[ 1671.359123]  __io_queue_sqe+0x90/0x9d0
[ 1671.359948]  ? io_issue_sqe+0x77d0/0x77d0
[ 1671.360827]  ? __fget_files+0x2f8/0x520
[ 1671.361687]  io_submit_sqes+0x44a8/0x8610
[ 1671.362586]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1671.363637]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1671.364663]  ? find_held_lock+0x2c/0x110
[ 1671.365525]  ? io_submit_sqes+0x8610/0x8610
[ 1671.366437]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1671.367452]  ? wait_for_completion_io+0x270/0x270
[ 1671.368490]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1671.369473]  ? vfs_write+0x354/0xb10
[ 1671.370261]  ? fput_many+0x2f/0x1a0
[ 1671.371024]  ? ksys_write+0x1a9/0x260
[ 1671.371844]  ? __ia32_sys_read+0xb0/0xb0
[ 1671.372712]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1671.373816]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1671.374905]  do_syscall_64+0x33/0x40
[ 1671.375690]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1671.376774] RIP: 0033:0x7ff5992a9b19
[ 1671.377557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1671.381459] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1671.383059] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1671.384577] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1671.386074] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1671.387584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1671.389091] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:26:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 5:
r0 = syz_io_uring_setup(0x79a4, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
fallocate(r1, 0x34, 0x7, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:21 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

10:26:22 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000080)={0x8001, 0x10, '\x00', 0x1, &(0x7f0000000040)=[0x0, 0x0]})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r4, 0x0)
r6 = socket$unix(0x1, 0x7, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f00000000c0)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd=r6, 0xdd}, 0x4)

10:26:22 executing program 5:
r0 = syz_io_uring_setup(0x7b38, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4020c0, 0x10)
linkat(r4, &(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1000)
syz_io_uring_setup(0x3d5b, &(0x7f0000000100)={0x0, 0xac1f, 0x20, 0x1, 0x28f, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000240))

10:26:22 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

10:26:22 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:22 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

10:26:34 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 50)

10:26:34 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = syz_io_uring_setup(0x724a, &(0x7f0000000040)={0x0, 0xb597, 0x0, 0x1, 0x33e, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000000c0), &(0x7f00000001c0))
io_uring_enter(r5, 0xedb, 0x824, 0x1, &(0x7f0000000280)={[0x2]}, 0x8)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r6, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x0, 0x0}, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000400)=ANY=[@ANYBLOB="05000000000000000000000000a17c6a373d19af4a32405a5fca5620337fb3944c464c80ecf0771c13f831ce94c725e11a51f80283e251892d88764d03cb194bd7144e90e58ed1c7ff4e4d9babb59e5e1fd0ee7fe1f75b"])
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f00000001c0))
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = syz_io_uring_setup(0x11ad, &(0x7f00000002c0)={0x0, 0x1515, 0x0, 0x3, 0x0, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x0, @fd_index, 0x5, &(0x7f0000000900)=[{&(0x7f00000001c0)=""/45, 0x2d}, {&(0x7f0000000340)=""/235, 0xeb}, {&(0x7f0000000440)=""/166, 0xa6}, {&(0x7f0000000500)=""/197, 0xc5}, {&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f00000006c0)=""/82, 0x52}, {&(0x7f0000000240)=""/46, 0x2e}, {&(0x7f0000000740)=""/173, 0xad}, {&(0x7f0000000800)=""/35, 0x23}, {&(0x7f0000000840)=""/169, 0xa9}], 0xa, 0x6, 0x0, {0x0, r6}}, 0x6)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r7, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r7, &(0x7f0000000040)={0x200000, 0x0, 0x4}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r8}}, 0x323f682f)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00000000000000, 0x0, 0x0)

10:26:34 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000, 0x0, 0x0)

[ 1683.930898] FAULT_INJECTION: forcing a failure.
[ 1683.930898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1683.933663] CPU: 0 PID: 8804 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1683.935131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1683.936907] Call Trace:
[ 1683.937473]  dump_stack+0x107/0x167
[ 1683.938249]  should_fail.cold+0x5/0xa
[ 1683.939061]  __alloc_pages_nodemask+0x182/0x600
[ 1683.940051]  ? lock_acquire+0x197/0x470
[ 1683.940910]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1683.942189]  ? find_held_lock+0x2c/0x110
[ 1683.943058]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1683.944176]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.945062]  ? mark_held_locks+0x9e/0xe0
[ 1683.945918]  alloc_pages_current+0x187/0x280
[ 1683.946847]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1683.947951]  ? replace_page_cache_page+0x1200/0x1200
[ 1683.949064]  pte_alloc_one+0x16/0x1a0
[ 1683.949866]  ? replace_page_cache_page+0x1200/0x1200
[ 1683.950941]  handle_mm_fault+0x2ab2/0x3500
[ 1683.951852]  ? __lock_acquire+0x1657/0x5b00
[ 1683.952767]  ? find_held_lock+0x2c/0x110
[ 1683.953640]  ? pgtable_bad+0x90/0x90
[ 1683.954441]  ? __pmd_alloc+0x630/0x630
[ 1683.955285]  ? vmacache_find+0x55/0x2a0
[ 1683.956145]  do_user_addr_fault+0x56e/0xc60
[ 1683.957087]  exc_page_fault+0xa2/0x1a0
[ 1683.957924]  asm_exc_page_fault+0x1e/0x30
[ 1683.958815] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1683.960062] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1683.963970] RSP: 0018:ffff88803edd77b8 EFLAGS: 00050287
[ 1683.965112] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1683.966637] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803edd7888
[ 1683.968146] RBP: ffff88803edd7888 R08: 0000000000000001 R09: ffff88803edd7907
[ 1683.969674] R10: ffffed1007dbaf20 R11: 0000000000000001 R12: 0000000020000100
[ 1683.971185] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1683.972733]  _copy_from_user+0x172/0x1b0
[ 1683.973598]  move_addr_to_kernel.part.0+0x31/0x110
[ 1683.974644]  move_addr_to_kernel+0x4f/0x70
[ 1683.975553]  io_connect+0x47a/0x610
[ 1683.976332]  ? io_prep_rw+0x1050/0x1050
[ 1683.977215]  ? __lock_acquire+0xbb1/0x5b00
[ 1683.978119]  io_issue_sqe+0x1611/0x77d0
[ 1683.978999]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1683.980117]  ? lock_chain_count+0x20/0x20
[ 1683.981002]  ? __is_insn_slot_addr+0x14c/0x290
[ 1683.981969]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1683.983071]  ? io_connect+0x610/0x610
[ 1683.983884]  ? lock_acquire+0x197/0x470
[ 1683.984731]  ? find_held_lock+0x2c/0x110
[ 1683.985606]  ? __fget_files+0x2cf/0x520
[ 1683.986481]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.987374]  __io_queue_sqe+0x90/0x9d0
[ 1683.988201]  ? io_issue_sqe+0x77d0/0x77d0
[ 1683.989085]  ? __fget_files+0x2f8/0x520
[ 1683.989963]  io_submit_sqes+0x44a8/0x8610
[ 1683.990882]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1683.991948]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1683.992974]  ? find_held_lock+0x2c/0x110
[ 1683.993855]  ? io_submit_sqes+0x8610/0x8610
[ 1683.994788]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1683.995814]  ? wait_for_completion_io+0x270/0x270
[ 1683.996849]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1683.997854]  ? vfs_write+0x354/0xb10
[ 1683.998655]  ? fput_many+0x2f/0x1a0
[ 1683.999426]  ? ksys_write+0x1a9/0x260
[ 1684.000241]  ? __ia32_sys_read+0xb0/0xb0
[ 1684.001115]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1684.002251]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1684.003372]  do_syscall_64+0x33/0x40
[ 1684.004162]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1684.005267] RIP: 0033:0x7ff5992a9b19
[ 1684.006058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1684.010004] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1684.011616] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1684.013149] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1684.014706] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1684.016243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1684.017809] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:26:34 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000, 0x0, 0x0)

10:26:34 executing program 0:
getsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f00000000c0), &(0x7f0000000100)=0x8)
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$FIONCLEX(r0, 0x5450)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f000001a440)=[{&(0x7f0000000180)=""/25, 0x19}, {&(0x7f0000000440)=""/102389, 0x18ff5}, {&(0x7f00000001c0)=""/127, 0x7f}, {&(0x7f0000000140)=""/34, 0xfffffe7d}, {&(0x7f0000000340)=""/103, 0x67}, {&(0x7f0000019440)=""/4096, 0x1000}, {&(0x7f0000000240)=""/16, 0x10}], 0x7)

10:26:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), 0x0)
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf000000, 0x0, 0x0)

10:26:34 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x106}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, 0x6000}, 0x4)
ioctl$BTRFS_IOC_SNAP_CREATE(r3, 0x50009401, &(0x7f0000000340)={{r0}, "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"})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 51)

10:26:45 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r4, {0x401}}, './file0\x00'})
close_range(r4, r5, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
syz_io_uring_submit(r6, r7, 0x0, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r8}}, 0x101)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x77359400}, 0x1, 0x1, 0x1, {0x0, r8}}, 0x80000001)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r10=>0x0)
accept$inet(r5, &(0x7f0000000240)={0x2, 0x0, @multicast2}, &(0x7f0000000280)=0x10)
r11 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r11, {0x401}}, './file0\x00'})
syz_io_uring_submit(0x0, r10, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x3, 0x80000000, 0x0, 0x8, 0x4}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r12, r7, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0x100}, 0x0, {0x0, r8}}, 0x81)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

10:26:45 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xf, 0x0, 0x0, 0x0)

10:26:45 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), 0x0)
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x20000000, 0x0, 0x0)

10:26:45 executing program 5:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, <r0=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000440)={<r1=>0x0, r0, "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", "1f29ba4b8ef65904299aa96accedf56281e2fe8632839ea09bbef2d6fa043a0610201771fd8cc653464e85115efaa7dc2fdd50d73d24210e9acc50f098a252942f5c7cf03ec72095ebda04fec64ceffd68165d6c34c6b9f927c84d960188f0208d701413bd45b57610d2ef13d4c299f0a6236113722fc885e2c5662b8aee81fc140ebb09e6bd74405f2c8db6744bb7523f36d7a8338b9810fef6bd03b311af51c76f1c178738f3bf0ba539f37f30064de4bb841d75d7ec33ee66a29b208b7764ad69190dec246e472f01f3b4d5a9d685f129be9e8b1cf57a60fe657e1fdd1412d1dbddff080c6fbce3b5b78e22538faf72c29ea2c53b66139382af3e2b93139fbbed9f27928d1dbb61569f2b509e9b2e7fbb6fdb7cfd5e61d6b723ff12bd7b983979a5b5dc75a6763ac79a752a7b2d041f9f7f23399ce749fe699a838200aac9595cfcb6a415885ea8786be9f702a1923aaddefa668baf4ee0339e1d116f65e677d10ab27c1d885358b7dda8f09bc6c9a110605a99e6093e474c8349ffafb6f0495de805185a6f6b9cd550211e450c8de6f174a782391c32949e8987569aaa4e7b010e56df5eb7cecf492adabd1672eb508a74695284053c11a409006380d7857eefdb143b94cd3eec4dcae86b0633c9ffbaba627b22dd969b7fd53da33e442079bcc85f1a28eacc1506ccf329440d89489bd66d162f4efa79046e9bdbd3c6b200f8c29c50863250eb8f426c7a0e307b8c1366790bab8f106f76239830fd1a59848a3ad964e46714e28a1c32d50a6caae3778169e5fae380b1a92cf9eadda123ddd662d3e94e1778e704d59a0410811828db4b003e319e63063349323073dac1bbf5f86cf0c08fd8e9899d6b0b07d2e6c875573d361bbe24114b8ed8ad2ba1d6eab8825ee75f3a508dcd5de143a78be6cd9934262a39680a38edc5e9c371d93cea62e1b26ea3cf070c989d4fd346981265d86d421d9958df971ce02b62ae36ff5b649e32af08fb150e01b8dec3fc707ea9e0034e43031ab003527954d7ed0248d8bac3a11ff0633dc3293649885b9084575164fbeab339e8c3d3098005d995d5f964b35ea509ef5a9fb2f7edcce220aa6e841537733db920b68d2b62f7f173dde5a620539d79f3bf11632af94107830b824228c6f65a5fc81248093c10ea1c3e85c1768a7554b6c73568384f4d798c13e57c78270f5061abfb9742002e18af3d05c802de8d5bedffbaa65f9ad0cca2597d2ad0756a4f2165900c88b028869f0c5f6e2b33b2dc91f9ebacc0b853db2fc17669dcbcfacea938b92750e0e2ee70e442ca50d83bb2971082a3d7bdeb650314e9c85d483e1ef1af3aabb6afbf382c0fe3708bea60a6ecb19675c5d1c62878d810bcbf3718b8464262914bb78d79ecbadb91e61ba8b36eb68553749799e47ae8394c6145da3c22f7dc4cb08de432aa0c8565a7445aa2820832edaec79677c4e5606dce05e3aa4600fea8b25b6ea3679f9a4a9850cb417ba66e807696682bbb7297a0099c757a108e3ee7a0ce378527fcc74ba143efe02774cedf3b32801e7464d95c2e8db9c34f30cba4031422132c8c0ca719c8ad41a04c3b3d03bd0f5e943c506c410e891c6c5c75de3e8f98eb2526e4b7043559d16304f0ad3f5eba95308383e1d7102d955d42a318a6ab95f4fe0c97d83dc60a1247903d8fc255f1630699c08dca8e0ada169e44ccd60731c627bf09e2354d08cdf7da38d817c1b6911ef5843aadc1051ecafefc244d72fc68ff6290921aa6965309d310c0738f5f195fba530fb7105411bda6a44a3c37087321644b1bffd0e9a9432f90799b83d37c4410e4f3a8c4deb382192512181076cd77204afe9f7d0edebf5502b7867657de21107f9d98dc53e6f17ef9e7d54e836b73932d5b41298cd8b8d3b77531282ac8097e4d2c478cf628c9ea48d760400b16f46dc98cbad396a81eeee2c391cff742be9a1121df8c06676257da66a0faae833c79e371bfde887cdc7ec0a0d77f961bf6a8690c7efb8fb89a764cf9e95049d7d3b644fa6b4c65e45c92aadc67f3242208e3890fff4c176bbd43287f90f06da0a10c62c26b58e9f7d9d144a366a6d4d31fa4eada579f9d293387e7c1893f48569e7e63b06e5f9e9618b5abbddda14d2c2975cc6d4e14753f8bc2fb60a1557ed0fea185a3e8f3c3ec2240497b08289d0c880a2da8643deeda587eda47285bbbff8b288070dd096aca64188feae3df39eea587dc0a35b836552122e74e6e14ef4498fda266b8418fc29c76d26d7f6f33fe54ade08fa11b65afd0941f6702155bd4d48fe4f570a22f7831fbd7f69ff6b8d0fc54da97929d7ddda91d97951eff735fe259e5a972abce810dd1d750fd092669f6d419ec0e3559980b1a65606f0e05be18bef30b506ddcb62d6856872c6a6ebd3cac1272872510b4142836aef1890651af148ba2d8ad8eb8b8f8802b3c9f4e01dcf279a4d0f57556544faf8333ff92fafa035cef10b171012e2434271f44d478da225f3ac09cf5fbd9bbcd516873964b38c14d0a345826bdd0c852bdb592b9856abe2f4f32f2cdda8a660c208339eec4cc91ed62f66c0be5b59156f209dfeddaf410622d31e32834c9613ddd5ce04838513619f6b0cc0b3f2831e25adece2d4fffec0c59760d534d6841c10ea488e35463a0c9df5f8ac5a8de610ebbebd5929fe4b9828cb94e55b192570ef00715c32ff047537914a07b3d32acd41e0b76de957061f67e86c691bf0007b8ad9e817499fd232f5b159b0e126cc38f968999d60e3d66ea3a974696a6a17640b6c83881622a0538cd461ecd2ea3f7ecc87ee8ccc5ecc0366a2fdf15f10f925f2126eb238b7abf633883587251d414f08603c91b88a26310daeb9f6a0b777a1e1e77681ba82f1e1dcb872681528d849735448d969f2ec2d14d574bc4e400f948e2ad22325b91cc819ba81be9a7abcf0a73c6580c0e69b66c440193963e6d9d52df3151358b5958c0d08dcf7a40ea741e1b7eaa0c71ae1da3670b260c9602249183b05c9e2cf18490f54c39f9758db2bdc93741956b5e90482d1d4e641e27b9a83716a7d51dc8652960962419baca2241f2d0400469b6cc5189314af59c6019fa4333fbba779212c7afc016882e36d374381cd17fc947ddb2d0777a4adea78b2b92ace46eab9e215b5addc7bfc7a1786cdfad80097db7059dcb6ac4fc764b3b8c0ac8f247ae1ed16aa915fd6123c2e7e35c2a4c54195f94ab726edcf17d6c3a745f9508873346966e6147c7569873ce024b88e62658544291a4f097da967ac43388bf4bde45b3ba64aafbe5037ddd81258582fc240e4d0b7052911e723ef65a523d7258520611c5a67cf67294c463a1c4722306ca0fadb993816c82cb53fbb8c6868e15f54532fc27d7c032e3dd5f54e2471569e108ea21d3c2e71a1384dc99d24102250661fd4cf33f9928331ab07dabb1160382ca2e2a925a44be59e21b08ff9ed21879559fcfc302553c8a1ecd4274d911614bb9649f6c3ebd1363f06ff8e219c00026e36910bd125a3c232940b54716673e84526420ae15a93278521eb06974f570aff9c50a7eb26be5022e231f5a9880a687b710154ff16fa7bd612a7b9482dd9fe6523d8eefc00d7cef5d41fcd1fdf86c17c49a30d105a8dd6df70eb384ca830a48505e8d0fd8c3bec67e8d668cb2718b10ca06ea24938910d712103ca24b70a5879ecdb143f3ab036f4652e7e155068de1f46a22a0911c607d0c3e82bf3cda3faefa2eca851aa7eed459d893ed0b1424b4240704497e238416e4d6a7368f6a48c573d46cbd7cded1c1bf53e60d99990f336f176990f4d22f67a0b7025ddd034c8edb22effb202abefe445739237e48de8a27724337cf2862d38c425fc62435af8d3c3df494b978b688f0a32dc1195a556b8474b13eda60bf5b4ae2e8ec5dbd3c5c4cb88d81443ac3ec437460a23ab4f9d965c61693b0fd618262481d628d943b1e19c9d8c50f07f7d5f4359eb3b1545c682e30f05f673b585b96e96c8e7de16617b5e6f58baecd67a50f707b92324b8c88ff56fb58799cbf3511b91a7154a4b83a2e9c71933a90ea3499faf398cd98c5bfe6337923b2d09c81dc81c646775e8ec1288bd883e85872f8f0db40cd48220097033cc06f75b282844f1d0b1cac56f26a68de6bae45642602f365fb2cb88c8e56127e45be4e9a500fb81aa5237ff2eb164534bde6876767f4ca427c7481e4cd5c3c94b57068a2f611fafc1ec0b2933e23bc239a1af8010c3f32e124a7dc8e17b7785e11b77cd38b3a658a756ec43e61b768d067f1d80294da0bc88d9a036140068a764be8c60293a6074b73fe74522d4e79358a19e9ec877f50a5bcf773eedff482b9361682226ae845ec17b774b17a40d13eed03baa35e819b4c3182f6bc65b97bd6950b35e045b9c4bfdaef88a2fa864d0ad4adc45f9eee583113b3f2fb2c6f4b44eb6202e14e4c5e148f75756c7f18fd75233a302fbffac2d852c43ee375535b585cde2bc5c66a07a4600b51526b51f6904b983334780111b5aabd8d3867bd705203fe37553b39123008479d5e132d24c3c23869520a97629ffbfb2a0dd4e08067d54f02e8e474324d02b84fc192c78a0619d01856774fe98dea29d4d648632ac06d193e7d17f015d917b41124538b8ce41b8e954e944b8d4b980f07d472d0ced2615bc4076935910d256b9d50ef1b297a716b138401d7fd416ef24653dc54c1bc6d59424bc014c2b06be12c237c1c32774def8e38ab5b8b72ae3012c91dfeb4837dc7637afea96384398e403218b1710858d945f8cd882d246214a4817c604d649e85ab25e200377693a1472d1946392309fb6afab64281fdc741c9d2d4ad48edd58a75888a56e42e67d0a6a5fa2a3a51e40aab936bd6da82379256deda6ba8f1e9c434f3698aba2c27ff6245739659e2e63d8f2289d53306c8d5df631dfa609ee6750906d3e61928e57259b9cefc6b58ebbda775e0d54f731a4bdb505996034b768f839bdac66df5a99780c741b041966fb27e647f0b561006d0409f7b660ad1a26a28e65e4c65336f1801f3eab7058cb8e9c32bfb34780e82a74f6bac2cb0dfebda0d0996fbd41c022186857699785bd7665a4e8bf2f5e757477044daf47a442fcac21a7210e601e0736f748085cf1b7455caf8540a71f11e3cf08039a328bdf11edcd99ed4d4a123d767d1cff596d77d877232a532a5f46d078f26229cff6f3a8b1ed4e2fc2e98b53bf34312a5ec35f18f2ed40a26a215b15d8c0b5f7501cf5c1aebf04c3096b571bf35516528757d9fad24d3e2c2bbcedf19fa8eb5beda4545e91edd6fe8e9c37b3e415f7b1a7084d817a4c90196bf6bed2456cf0d2a55c83716826edfe779af7e6c9e47a24f274fe3a9c4fc9cec7c17b237cfe784b2034595"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, <r2=>0x0, <r3=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000440)={<r4=>0x0, <r5=>r2, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, <r6=>0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {<r8=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {r2}], 0x0, "544d0569680800"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052b80)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r9=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r11=>0x0, <r12=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r13=>0x0}], 0x0, "f7a2ec89bfbef6"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}], 0x0, "544d056968f26f"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000053b80)={0x0, <r14=>0x0, "a156f15d2c44a4ed6e088321e93bf5561e5c8f226e4e1275b1e9d285e89f952e6705cef011f7462f206d7bd16b2ff3469bfde2e69e44fe9dec928a931cb247d077c1b039e3fd978ce07f029415896b3defb4db825eae0d1bb69fb01e585b6d03828482b68d5b772555693af63eb9718ec5296c263d102147b202d61cf4af07fa0e2c1b0c8b11d564a00832499e91e067e7d62143eaab5ec4e45e754f21a96af159182320fbfde1106a67bccce2d5045fab9cd825c79df42047d284f2802b13ba2d9ab96792007668870bfee8cba5f2db86f82210c28b6bce6fd6cfb17e92a53b8c92a3431e342d8f475693531268e31c8bc2a460ab8a47555d7e7b1d03973b1f", "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"})
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x5, 0x2, 0x3ff, 0x7})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000054b80)={<r15=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, <r16=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000440)={0x0, r16, "13a918f77968f35510e9c2995f8f145b5a993ed98182f0458528c488d13cb059ebdaf35758b6c4a404e740a316f28bbaf2ba1e0be9dc65eb79525ebe533e5cf9a0255e9728c1d77e372b2c36be4b341cba62603bfec2044d3afccc48519863c67001a67e310b20901d1ff651b95f6446cfe5a8529a0d50486e35b928534fd449ef689a49f3ca9fa17c9dcdd79aa5ce8eab24307435c9fa8f1626428abc21b9e44cb07223508500fdaec1f7e9d7fbbfbc3ce39c68ed5779d9e41801f3b314cdf804ad7bbd560b7f6a88686ab581b4650fd6f7ae2e4a3d08c32f1d6ed93a6e655e75b225f5d9b6c254c6147b919e066cff818d816d5f82ef03878d88dba88bd1c7", "1f29ba4b8ef65904299aa96accedf56281e2fe8632839ea09bbef2d6fa043a0610201771fd8cc653464e85115efaa7dc2fdd50d73d24210e9acc50f098a252942f5c7cf03ec72095ebda04fec64ceffd68165d6c34c6b9f927c84d960188f0208d701413bd45b57610d2ef13d4c299f0a6236113722fc885e2c5662b8aee81fc140ebb09e6bd74405f2c8db6744bb7523f36d7a8338b9810fef6bd03b311af51c76f1c178738f3bf0ba539f37f30064de4bb841d75d7ec33ee66a29b208b7764ad69190dec246e472f01f3b4d5a9d685f129be9e8b1cf57a60fe657e1fdd1412d1dbddff080c6fbce3b5b78e22538faf72c29ea2c53b66139382af3e2b93139fbbed9f27928d1dbb61569f2b509e9b2e7fbb6fdb7cfd5e61d6b723ff12bd7b983979a5b5dc75a6763ac79a752a7b2d041f9f7f23399ce749fe699a838200aac9595cfcb6a415885ea8786be9f702a1923aaddefa668baf4ee0339e1d116f65e677d10ab27c1d885358b7dda8f09bc6c9a110605a99e6093e474c8349ffafb6f0495de805185a6f6b9cd550211e450c8de6f174a782391c32949e8987569aaa4e7b010e56df5eb7cecf492adabd1672eb508a74695284053c11a409006380d7857eefdb143b94cd3eec4dcae86b0633c9ffbaba627b22dd969b7fd53da33e442079bcc85f1a28eacc1506ccf329440d89489bd66d162f4efa79046e9bdbd3c6b200f8c29c50863250eb8f426c7a0e307b8c1366790bab8f106f76239830fd1a59848a3ad964e46714e28a1c32d50a6caae3778169e5fae380b1a92cf9eadda123ddd662d3e94e1778e704d59a0410811828db4b003e319e63063349323073dac1bbf5f86cf0c08fd8e9899d6b0b07d2e6c875573d361bbe24114b8ed8ad2ba1d6eab8825ee75f3a508dcd5de143a78be6cd9934262a39680a38edc5e9c371d93cea62e1b26ea3cf070c989d4fd346981265d86d421d9958df971ce02b62ae36ff5b649e32af08fb150e01b8dec3fc707ea9e0034e43031ab003527954d7ed0248d8bac3a11ff0633dc3293649885b9084575164fbeab339e8c3d3098005d995d5f964b35ea509ef5a9fb2f7edcce220aa6e841537733db920b68d2b62f7f173dde5a620539d79f3bf11632af94107830b824228c6f65a5fc81248093c10ea1c3e85c1768a7554b6c73568384f4d798c13e57c78270f5061abfb9742002e18af3d05c802de8d5bedffbaa65f9ad0cca2597d2ad0756a4f2165900c88b028869f0c5f6e2b33b2dc91f9ebacc0b853db2fc17669dcbcfacea938b92750e0e2ee70e442ca50d83bb2971082a3d7bdeb650314e9c85d483e1ef1af3aabb6afbf382c0fe3708bea60a6ecb19675c5d1c62878d810bcbf3718b8464262914bb78d79ecbadb91e61ba8b36eb68553749799e47ae8394c6145da3c22f7dc4cb08de432aa0c8565a7445aa2820832edaec79677c4e5606dce05e3aa4600fea8b25b6ea3679f9a4a9850cb417ba66e807696682bbb7297a0099c757a108e3ee7a0ce378527fcc74ba143efe02774cedf3b32801e7464d95c2e8db9c34f30cba4031422132c8c0ca719c8ad41a04c3b3d03bd0f5e943c506c410e891c6c5c75de3e8f98eb2526e4b7043559d16304f0ad3f5eba95308383e1d7102d955d42a318a6ab95f4fe0c97d83dc60a1247903d8fc255f1630699c08dca8e0ada169e44ccd60731c627bf09e2354d08cdf7da38d817c1b6911ef5843aadc1051ecafefc244d72fc68ff6290921aa6965309d310c0738f5f195fba530fb7105411bda6a44a3c37087321644b1bffd0e9a9432f90799b83d37c4410e4f3a8c4deb382192512181076cd77204afe9f7d0edebf5502b7867657de21107f9d98dc53e6f17ef9e7d54e836b73932d5b41298cd8b8d3b77531282ac8097e4d2c478cf628c9ea48d760400b16f46dc98cbad396a81eeee2c391cff742be9a1121df8c06676257da66a0faae833c79e371bfde887cdc7ec0a0d77f961bf6a8690c7efb8fb89a764cf9e95049d7d3b644fa6b4c65e45c92aadc67f3242208e3890fff4c176bbd43287f90f06da0a10c62c26b58e9f7d9d144a366a6d4d31fa4eada579f9d293387e7c1893f48569e7e63b06e5f9e9618b5abbddda14d2c2975cc6d4e14753f8bc2fb60a1557ed0fea185a3e8f3c3ec2240497b08289d0c880a2da8643deeda587eda47285bbbff8b288070dd096aca64188feae3df39eea587dc0a35b836552122e74e6e14ef4498fda266b8418fc29c76d26d7f6f33fe54ade08fa11b65afd0941f6702155bd4d48fe4f570a22f7831fbd7f69ff6b8d0fc54da97929d7ddda91d97951eff735fe259e5a972abce810dd1d750fd092669f6d419ec0e3559980b1a65606f0e05be18bef30b506ddcb62d6856872c6a6ebd3cac1272872510b4142836aef1890651af148ba2d8ad8eb8b8f8802b3c9f4e01dcf279a4d0f57556544faf8333ff92fafa035cef10b171012e2434271f44d478da225f3ac09cf5fbd9bbcd516873964b38c14d0a345826bdd0c852bdb592b9856abe2f4f32f2cdda8a660c208339eec4cc91ed62f66c0be5b59156f209dfeddaf410622d31e32834c9613ddd5ce04838513619f6b0cc0b3f2831e25adece2d4fffec0c59760d534d6841c10ea488e35463a0c9df5f8ac5a8de610ebbebd5929fe4b9828cb94e55b192570ef00715c32ff047537914a07b3d32acd41e0b76de957061f67e86c691bf0007b8ad9e817499fd232f5b159b0e126cc38f968999d60e3d66ea3a974696a6a17640b6c83881622a0538cd461ecd2ea3f7ecc87ee8ccc5ecc0366a2fdf15f10f925f2126eb238b7abf633883587251d414f08603c91b88a26310daeb9f6a0b777a1e1e77681ba82f1e1dcb872681528d849735448d969f2ec2d14d574bc4e400f948e2ad22325b91cc819ba81be9a7abcf0a73c6580c0e69b66c440193963e6d9d52df3151358b5958c0d08dcf7a40ea741e1b7eaa0c71ae1da3670b260c9602249183b05c9e2cf18490f54c39f9758db2bdc93741956b5e90482d1d4e641e27b9a83716a7d51dc8652960962419baca2241f2d0400469b6cc5189314af59c6019fa4333fbba779212c7afc016882e36d374381cd17fc947ddb2d0777a4adea78b2b92ace46eab9e215b5addc7bfc7a1786cdfad80097db7059dcb6ac4fc764b3b8c0ac8f247ae1ed16aa915fd6123c2e7e35c2a4c54195f94ab726edcf17d6c3a745f9508873346966e6147c7569873ce024b88e62658544291a4f097da967ac43388bf4bde45b3ba64aafbe5037ddd81258582fc240e4d0b7052911e723ef65a523d7258520611c5a67cf67294c463a1c4722306ca0fadb993816c82cb53fbb8c6868e15f54532fc27d7c032e3dd5f54e2471569e108ea21d3c2e71a1384dc99d24102250661fd4cf33f9928331ab07dabb1160382ca2e2a925a44be59e21b08ff9ed21879559fcfc302553c8a1ecd4274d911614bb9649f6c3ebd1363f06ff8e219c00026e36910bd125a3c232940b54716673e84526420ae15a93278521eb06974f570aff9c50a7eb26be5022e231f5a9880a687b710154ff16fa7bd612a7b9482dd9fe6523d8eefc00d7cef5d41fcd1fdf86c17c49a30d105a8dd6df70eb384ca830a48505e8d0fd8c3bec67e8d668cb2718b10ca06ea24938910d712103ca24b70a5879ecdb143f3ab036f4652e7e155068de1f46a22a0911c607d0c3e82bf3cda3faefa2eca851aa7eed459d893ed0b1424b4240704497e238416e4d6a7368f6a48c573d46cbd7cded1c1bf53e60d99990f336f176990f4d22f67a0b7025ddd034c8edb22effb202abefe445739237e48de8a27724337cf2862d38c425fc62435af8d3c3df494b978b688f0a32dc1195a556b8474b13eda60bf5b4ae2e8ec5dbd3c5c4cb88d81443ac3ec437460a23ab4f9d965c61693b0fd618262481d628d943b1e19c9d8c50f07f7d5f4359eb3b1545c682e30f05f673b585b96e96c8e7de16617b5e6f58baecd67a50f707b92324b8c88ff56fb58799cbf3511b91a7154a4b83a2e9c71933a90ea3499faf398cd98c5bfe6337923b2d09c81dc81c646775e8ec1288bd883e85872f8f0db40cd48220097033cc06f75b282844f1d0b1cac56f26a68de6bae45642602f365fb2cb88c8e56127e45be4e9a500fb81aa5237ff2eb164534bde6876767f4ca427c7481e4cd5c3c94b57068a2f611fafc1ec0b2933e23bc239a1af8010c3f32e124a7dc8e17b7785e11b77cd38b3a658a756ec43e61b768d067f1d80294da0bc88d9a036140068a764be8c60293a6074b73fe74522d4e79358a19e9ec877f50a5bcf773eedff482b9361682226ae845ec17b774b17a40d13eed03baa35e819b4c3182f6bc65b97bd6950b35e045b9c4bfdaef88a2fa864d0ad4adc45f9eee583113b3f2fb2c6f4b44eb6202e14e4c5e148f75756c7f18fd75233a302fbffac2d852c43ee375535b585cde2bc5c66a07a4600b51526b51f6904b983334780111b5aabd8d3867bd705203fe37553b39123008479d5e132d24c3c23869520a97629ffbfb2a0dd4e08067d54f02e8e474324d02b84fc192c78a0619d01856774fe98dea29d4d648632ac06d193e7d17f015d917b41124538b8ce41b8e954e944b8d4b980f07d472d0ced2615bc4076935910d256b9d50ef1b297a716b138401d7fd416ef24653dc54c1bc6d59424bc014c2b06be12c237c1c32774def8e38ab5b8b72ae3012c91dfeb4837dc7637afea96384398e403218b1710858d945f8cd882d246214a4817c604d649e85ab25e200377693a1472d1946392309fb6afab64281fdc741c9d2d4ad48edd58a75888a56e42e67d0a6a5fa2a3a51e40aab936bd6da82379256deda6ba8f1e9c434f3698aba2c27ff6245739659e2e63d8f2289d53306c8d5df631dfa609ee6750906d3e61928e57259b9cefc6b58ebbda775e0d54f731a4bdb505996034b768f839bdac66df5a99780c741b041966fb27e647f0b561006d0409f7b660ad1a26a28e65e4c65336f1801f3eab7058cb8e9c32bfb34780e82a74f6bac2cb0dfebda0d0996fbd41c022186857699785bd7665a4e8bf2f5e757477044daf47a442fcac21a7210e601e0736f748085cf1b7455caf8540a71f11e3cf08039a328bdf11edcd99ed4d4a123d767d1cff596d77d877232a532a5f46d078f26229cff6f3a8b1ed4e2fc2e98b53bf34312a5ec35f18f2ed40a26a215b15d8c0b5f7501cf5c1aebf04c3096b571bf35516528757d9fad24d3e2c2bbcedf19fa8eb5beda4545e91edd6fe8e9c37b3e415f7b1a7084d817a4c90196bf6bed2456cf0d2a55c83716826edfe779af7e6c9e47a24f274fe3a9c4fc9cec7c17b237cfe784b2034595"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055b80)={0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r17=>0x0}, {}, {}, {}, {}, {}, {0x0, <r18=>0x0}], 0x0, "f0c4681d3a2a6d"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000056b80)={0xfff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {r2, r7}, {r11}, {r14, r15}, {r16, r18}], 0x6, "67b1df2f85cde3"})
r19 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r20=>0x0, &(0x7f0000000180)=<r21=>0x0)
r22 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r20, r21, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r22, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x55bc, &(0x7f0000000040)={0x0, 0x935d, 0x2, 0x1, 0x27f, 0x0, r19}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
io_uring_enter(r19, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1695.294735] FAULT_INJECTION: forcing a failure.
[ 1695.294735] name failslab, interval 1, probability 0, space 0, times 0
[ 1695.296051] CPU: 0 PID: 8845 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1695.296837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1695.297774] Call Trace:
[ 1695.298082]  dump_stack+0x107/0x167
[ 1695.298501]  should_fail.cold+0x5/0xa
[ 1695.298938]  ? create_object.isra.0+0x3a/0xa30
[ 1695.299456]  should_failslab+0x5/0x20
[ 1695.299904]  kmem_cache_alloc+0x5b/0x310
[ 1695.300367]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1695.301054]  create_object.isra.0+0x3a/0xa30
[ 1695.301552]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1695.302134]  kmem_cache_alloc+0x159/0x310
[ 1695.302610]  ptlock_alloc+0x1d/0x70
[ 1695.303023]  pte_alloc_one+0x68/0x1a0
[ 1695.303456]  ? replace_page_cache_page+0x1200/0x1200
[ 1695.304034]  handle_mm_fault+0x2ab2/0x3500
[ 1695.304521]  ? __lock_acquire+0x1657/0x5b00
[ 1695.305023]  ? find_held_lock+0x2c/0x110
[ 1695.305485]  ? pgtable_bad+0x90/0x90
[ 1695.305911]  ? __pmd_alloc+0x630/0x630
[ 1695.306368]  ? vmacache_find+0x55/0x2a0
[ 1695.306827]  do_user_addr_fault+0x56e/0xc60
[ 1695.307322]  exc_page_fault+0xa2/0x1a0
[ 1695.307765]  asm_exc_page_fault+0x1e/0x30
[ 1695.308239] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1695.308925] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1695.311019] RSP: 0018:ffff8880181377b8 EFLAGS: 00050287
[ 1695.311664] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1695.312474] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888018137888
[ 1695.313293] RBP: ffff888018137888 R08: 0000000000000001 R09: ffff888018137907
[ 1695.314102] R10: ffffed1003026f20 R11: 0000000000000001 R12: 0000000020000100
[ 1695.314911] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1695.315738]  _copy_from_user+0x172/0x1b0
[ 1695.316205]  move_addr_to_kernel.part.0+0x31/0x110
[ 1695.316765]  move_addr_to_kernel+0x4f/0x70
[ 1695.317257]  io_connect+0x47a/0x610
[ 1695.317669]  ? io_prep_rw+0x1050/0x1050
[ 1695.318132]  ? __lock_acquire+0xbb1/0x5b00
[ 1695.318615]  io_issue_sqe+0x1611/0x77d0
[ 1695.319072]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1695.319665]  ? lock_chain_count+0x20/0x20
[ 1695.320138]  ? __is_insn_slot_addr+0x14c/0x290
[ 1695.320660]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1695.321261]  ? io_connect+0x610/0x610
[ 1695.321697]  ? lock_acquire+0x197/0x470
[ 1695.322149]  ? find_held_lock+0x2c/0x110
[ 1695.322615]  ? __fget_files+0x2cf/0x520
[ 1695.323067]  ? lock_downgrade+0x6d0/0x6d0
[ 1695.323539]  __io_queue_sqe+0x90/0x9d0
[ 1695.323984]  ? io_issue_sqe+0x77d0/0x77d0
[ 1695.324452]  ? __fget_files+0x2f8/0x520
[ 1695.324919]  io_submit_sqes+0x44a8/0x8610
[ 1695.325404]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1695.325972]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1695.326523]  ? find_held_lock+0x2c/0x110
[ 1695.326984]  ? io_submit_sqes+0x8610/0x8610
[ 1695.327479]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1695.328026]  ? wait_for_completion_io+0x270/0x270
[ 1695.328579]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1695.329164]  ? vfs_write+0x354/0xb10
[ 1695.329585]  ? fput_many+0x2f/0x1a0
[ 1695.329994]  ? ksys_write+0x1a9/0x260
[ 1695.330426]  ? __ia32_sys_read+0xb0/0xb0
[ 1695.330888]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1695.331484]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1695.332068]  do_syscall_64+0x33/0x40
[ 1695.332490]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1695.333075] RIP: 0033:0x7ff5992a9b19
[ 1695.333500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1695.335591] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1695.336457] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1695.337271] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1695.338089] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1695.338896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1695.339704] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:26:45 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x2db9, &(0x7f0000000040)={0x0, 0x42d9, 0x2, 0x1, 0x64}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x10, r0, 0x10000000)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x4, 0x2004, @fd=r3, 0x6, &(0x7f0000000340)="8f474886d9f96559a0e6fe7da0c06ff8cda2a1386c8e24e5d5105d21f3434a15548d4e03e3a45e303f8da8d73ee70b688972665160a0380b1f90e2382b0c0b30f480673c8a9607137146937fd605fbaa48f9965b0ea0c1c1b0237a7a482c6016a42df69bfb8e542cdf87f981b9fde686aef7d0bb4a2ba3a5d526f868df1fe034d20bfbc18765fd50d0e9545ae57bad249a6f31733e3698e2953f60c90ae1054ca33caf911c1224280c0cbae77960b012aa9282c8e69ade2bb494168a2c71070961322643e93f18ad8ea04ba3d16c194fdebd5a507492d0b1", 0xd8, 0x8, 0x1}, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x40000000, 0x0, 0x0)

10:26:45 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_mount_image$ext4(&(0x7f0000000240)='ext2\x00', &(0x7f0000000280)='./file0\x00', 0x9, 0x6, &(0x7f0000001540)=[{&(0x7f0000000340)="15828947369eff3165e1854ec0d23eb1ef5d7e4806159f0ef3b7", 0x1a, 0x3}, {&(0x7f0000000380)="18906d6645b0dc45e496f3caec39bf17f9b031af6df293171ff145ae98fbf66406b9587160709f9d35dd98efc037e1aedd012c4a40d4006e97fae7fd38e1dde536e9bf00f683b1260e6274bd1b3835efcdb80056c2449c4fc852ed34259aa1d3f2aafd20d6cdfcd9649fcd9a4e409dbfc1b9f8ea118ea18dc8e3a41f", 0x7c, 0xea43}, {&(0x7f0000000400)="baebd1111ccd302026166d3bdea87221", 0x10, 0x101}, {&(0x7f0000000440)="0e1439538a01490c70170c4546c695b57c4222c6fe59b5f2314ec5271a4b103f79fd4a6cf8c25773cbc4dc8984c559e0968da6df0f2673813128c977f38115e76ae33e4f1275e555d76c9bd48d683510b07d189b627e872ae79a823546803582aaa7a9ebaceac5065b97ea9b3bf47cf63e9ff56ab7169a319fc911a1ee86a8f18b38e7ca910232f4e12ad24afa3c38a5f623cc7c996c7c5985ae3d49016aca6376c49b0b76f56917f8c36bee07991303291f29d8ad8524fdcae0cf8d0cf9f58f3f424ad008168e39ceeb7f7b1f458feb4dc50072a84fe4cfeb84e2f2fffd1c6e067f1d6fcb6732ab3fba887230109c8416c30e3abf0d03f83b5b38634f598a02e78688812df65279a5a2cb94afa018447b138d4b10d1a12d48cb51839d66f5b9537c0239f8c5f22f423a5c2014be7af9f430c17102b627439c33b97c626155ec220fdc781a5eb51938237a50020f57bc929a886a88c0c5091dd29c0cdcf4e2948e184c32c4acd89609034c44d320a8d22cde944cb23c7d5ed6daebbb74b44f7f06169baa97a5c8ecf51b124abd3f957d8f1889ac8b6d5f566255a197531552ba2f3d5a6b7ccad25ddfd36e1087b35a27e2bfcab0aa84e821e1b3cb8e5f01162c9496866e888aca0893bdaabbc7cc11ee3f71f1b7c39b2dad2a149a187716a996a5a53760e247ec19ad8373a22ae1abfa6f33c95e44ccd5caa526b7c0540df6d36ed5c305bd7034115baf18539b854957bae7dd4bc6c9461bcb92d6f02f50740aee793363180daa06cc1666a0c33a25b6724b6714c89953bb13e7593dabb3bb31bdce77f03912701215ad5087ad82876c5a5eed85eb3badc160b084c3a52ece66d0cced126bd1cc35202917e2d371aa5ed6b1de4b8b799e09e4cf2a678fe36021d0764b8c0f09b04923b2637081cd95e60dacf5aad00b27f914be9305ccd2270061cd689c2270c236c2fe292f008825023847d9bde903f4b9f86209b590bd3504ce8bab769a708a44b8cc4f0783dcf754cc89013d8422bb6ad2a55e98426fbd9c26273c83b9f5900fd8fd5f9454afbc9fba7121d0cd5fa072c7ebcc750df44422be0b3e4053ade3cd8e1115bf5968101ff397ad718ae16dfef12a3d254d9114889904b8e561540215074b0ef635bf3cc1d0efebdcb2fcdd958aae08669ddfa82c358fbb337bfa4492759b5a894e4838d1f5cb0836fd3c0bac6d4d10a0e137846ff3e2e01b7c3eb552642b453364bd7349795e17fee30dfe150171acb449c82afddbd8ead7117ea9e04341ef3f260adc545292e74d43364c4c7cdd2fc5d1d6bab8f5ea250f098625601d8e0e9515238fb99ae937f05de779e0085e0a0524e21db41b857a9d69c19afdbc45a6dcd5399061e363d85db318cf611ea388c3bcd25cfd6a683499e34d0fb085e4f01bd8d8ec4cb5b0d3c7f0194bf3647995b3aaa76aebdd14dd9e9b9fbd804536fb5429671b26e188bbe9c43ccfc581599f75c06f94a4b6790636fb55ea01bb9ce605f15e8054fa8bbc7b818f012d2aa164850cdf56e166074fce239f158a19fe51324749d9185fffeeffff50c5e9b92d5cae97441ca7a7b9d0c6a7314e665c86a1ac252a8f3f56d02da6e4c35981e53a1b7584d8c762c2adc1300c8e13cb2b681270ef6f7e9c4942edb2706439bdc89c7e9bf2e23c9a23c9822160b34961f9cd65dc4859431416e36f114bb6488510a152b3c4e389608588fca2c22a1d9a0a2041de77ce41f365fad0051707cb7fcce7ac36bf365a61d82fefe7676361f21482130a9151b869aa5f1205a40a47246f19e9bcedffd84e191d4df538b24f0df18da9953bcfaaa333b7d2c6a29058b5e24feb8c115e6ceab28dff56594f808792d0602252b8c4612eb7b78b59b6bfbca61a352974aefba77c360e7670119eda2b8a36b935c97f105288d81d2dc411dd75e5735f278c6b97239e3f42ade31e54fbcfecb516a8630f3f552a5ba8152f40919aabee3e3ab328430eb68ffae7d861cdf3305134c09a9851ae89732ce9249d7934ceaf4f979bb42c057668adb4f7ae592226cce42bb431662cff7f5d6c60b7af0a6d4614ccc936f6f6feec4f0109acb055d4b771382d03be9d87e0afc13f1f0bb7d58aa6a2cc1dcc50d1e183c1e80ec0bc26d3419c8aacf3bf7d321eb4afded04348e5e14b09ae53d06f1c8bc96a64b37dafffe07db97337510eaaddb193586cfc93cd785884c528ad553b883c8e15fa882bc1c5a2c0504d8aebb36f29b09f2b1b941cf5aeb62ec963519ad8696745a096360d0161fbb0584ffefe8fbc040254c03de0609fb45d252f2673bcea445713713a9cc742b34d20df88047e7ca89fad9a45ad25ab4d1a89468c26b09216ebdc779f9c4dbe8faeb3008a381efc15020331793d308ba1019fa17cad1242733d9bcb6715f929b0fbb41b0475b9739eb1dbb5d1be1100d35beb37f3a7b1acd3bc3d50b79371a30b1f06249de3afa982eee6cbcb5990399aefb07fcd936ec38c6b871d27c4fa253f155fb9034146bd7eb1ab3f5819b57d37ae7675e0dde66716a9ac3520903f24602091c3e1bad3d34e7b05063174e269dd3ffb34f4d0d4fa4c9d78aeda0a9cba4ce9bff8b36c4353bb5bfda7bfebf7200398803d725216d11cc4213f25266ead18618edc68f6a51f8dd65e8a53240ddaaf15cea54536b0dfcaf690fd5678b00a42e814f7f6c904149f26a6fefd4cfb332d65da2036e253fe043b700ebd9765ea0d7bd240d1e5dd704fbd0611a1134b48650be4c176fa49bcd6408c39eaae06b09bf48978bea9712420e9230f2a8ea164c0d49af35db259d7c79980c86be866740f12b115929bbce1ed6456e83ff5ce25cc4f2ebdb397cb870b4fe1171c00192ad1eb9d3af3fa7c936006a055cd765c95da6c1ad522b0f53d6bd7d3d20c3c4569af9ddb76f53e49461fc5b41a7c355d095a571790af31bbdc7fffd1dabda3ac0f6d9bdc8314a492141a57544d3880ac68d7183991da372e2b627c18247b008782ccf758fd6f9007c6b0ec0869240671785c6b31fdf9f3c00f8340540e8933a1c74ee766dd4f22e8433736f223cbcfd135d06a966a337f05932a9aafd1c0c2eebc847aefc6d3a50b049e2f56042bb2461b18d6df23dbaa4e44b5ef533c1fa27546f8bd5be3c006b74ebf2a01ca1a4b4dbb0dc124b0ec7a93b67b335a5dacf2d154b2e1b322f7db2f02767534c5759194b38f98583d3b432ed3cdc9dcf6848cb45ed38050b8f5d293e08a0e815a544d8bbb2b718c1ae7063defd0fcd2076ac69f0c918e871f4bdb2494ee478ca5901d3d18c59ad4ce1da7eb1c035c166badeed86929617bb4745eda3ecb66ca9c334ddc46ff1e1baa1683671e7fa1757b1132a6ec7e37d23cd220f4acdd0dbb703d307dbe31436d39db56f81d705c2229f9642ad299ed2f13b8ccc70f8a894686826c9d7e064a1b5aad241d34e1b0e4cc2d678a1e1e8f6349d776d2c1ee27426fbdb8e2f25404b76219e97727c8bf6e7c2a9a605e7ca7b3471980cadc1b147aa6602c7d255bc763a01970e581454f285842cb5590a322b81b79f08f33dd213257a9a725feb98d01e9044bda333de784f15dda7ba12e61d92a2319b37d90d3db7d0ad0d4196ab842c7b33f8e6a2117486c095bfd27b0b5e94ac3592a5dd9f30cfc950c2b60e02b82e5d2a5b2eb2d6f0ff88df6924d2b76af6769da88d8815a4555617c14a5b8571e2f4c3fe6e58ead7de79c4d78ad329d580ea49216c82520f643f26ec88058990df4edc85d5f84b0dfc8ad839a2c5c0cb96277259d17e224769f5e566d8529b07ede4473a9470e5b6304292e7b0a1ae3cd30fe4038378c35fe1d4ddad0623658213d8005a2353e064bbd6f453aafe9ad0227f220b02714d12892829c12bccaaea4ac3bd9904e1c6f2204d901f3cb0cc2a4b2c302b41db83772f328140025fb398ceb9a7f83b9ce8df3f21a9864aa78a953d48f104f786294ecafa4a3f594780e84b4d4715d696ce40ffa207f16cdd7c59b02cd6b8e4d9422e163b757160ae8d565d5c55710a5903351b8ee6760dd42934e79c001a729616135858922a921e684b4ebaa97ad56a15d50cae115dae72509101401df1f70f41007d2342709a41ebeb73f14e182e6c4f727610a927a5a0fe0b959cf125d4ca711566fe5eb9b60c631dad60a6341a074f890248e37bf96e6a565f23d1fb274add8f8975205757a28358de3b3655eb8d802b11050f4c74e990895f45d74b27f42f97789eeed046cf256e6dd7eeb3d208336fa22f7ad6eabaaf9c15c7902e81bd763f6a5707780fa15281c52d6e03696cd9c03a05bb2321fb55f8363626d4172e110fcb0abfd8ab8af300c6cbe06381837d010174a0402723b2c559e359e4d787ee78b70279da471943a66b573b2ecd39dbd7b242e0de7b92ca0f0dfc6548bedc6c38bfb6014651a6a437d53c59b35e410e552925f04c4d882bfaed7045e143d297ddb5a9ab52f44a067d0c453904940883c7c102d324fb95908097a993e3e5bdad1f4bd6d35f35b8691c58bfe82fe8abbb709e4657838c7d7769844b0933bc3fab94ef1a0a2dc78ee05d4b131230540222ac094e4cab2a71881443176c92e83d8cf45a37e197420e8a7fd83bdbbd4363022c2250c89196078abb95e021b032044fad658786532985c28d805d02249f6763b681fd3ec819adde3581b920f18c2cbccba517b2c146977d79c036904a27f792dce6bf6e5ad7365b158ff8d6e2e4ce9606393b35cc1cc20dfd89178c5ec6ae8a0eb65711a69b13439ed29b728cfa40a0fb1a3392f33e3f3b98c8a5e4a0d5a7bbab6a593c4bfdec4be180d6314139779fc95f73655993ce60774834962c881213977fbdab082070a3c699d2fe2dede636a9f3468433c378ebfddced2a9e4cf8e2b8ae324ce1335efd40b868da6ab5fecf13c93060f991e4b8b6243dc5de9dd214b832f067b8a0181ff19d6915194f95029fdf4bced6ed166cfc05913f8b0f37aff314f35f9738400a101cc951a087c478691a711a8e9e0915382c3c144bb7719d41f648f38fb193dc21b15258297f7cf6fd2ba244967aad06bc60b81f1c7f1c47cdc0a45427bae720dcbfa781b84e579f0b7bc58fa519fca4c8fd6eaca8fb283e4825b4122086bc5e13c519361e0c4cede465cdcf2157fd9508bc40aedbe9d410eb00c556c4ee842761ceff8a0bcee6b776b61a31e7d6e0ed02bd7149b2c4b688a13dffb38c7d4693ba5a92297db4669acaa9e997f22174270f1dc501cb57b9bde8ece414ffd69d87e9ea3235d97aa921a26ebf789e97e796c27d021c28abc453f839b97cbe71cdefa6367a2f19b135afca51de535c02a6852c36d67db911c35cd3a2a260ba7c8d970495a9852538ac46fbd9e852954f915c52cff4e94a4c433506bf71f496fc15729973356fc08b63067c6bf066bb1ea1e12744c382ac3b9228f03b785d7f07f2b159d3cd5af759fc00a205a24ba6263566f9088b54d51b4073b16c346725aca4b83aa92f1edebd3ac593dfbc073ba64949ee70c74dd5857ff36fe19485d8cf362326c1ed323b08a69fb5f2c3969d5c6bfdf7a85f49a1f351c39e361475091e32067cfb84542e816accc1dc73cbc05e8b441cc1d6e0f01c4e755111bb9023056502f9aa90420c1c08b4d81c7fd7433f0226409fded30b7126548bfbab0b767ad3c927a8be4355a04b9da36baf13107cd23527dacc96a73bd4dd2f880cd683cca66d1eff34f46baf586d501a26d63423587b73f1c047c21e2b64e52e16d985e43cd204bbaa5faf390b56fe37207b968bb4db9", 0x1000, 0x3}, {&(0x7f0000001440)="b3", 0x1, 0xfffffffffffff8c6}, {&(0x7f0000001480)="cc2314e31f84c0a5f3a9574eec6eb03585a2f09ff15a5653973e6304573b26a2bdc9983b98e3276c2f53ec1dce476bd6ad6404a8cbbecc34bc8cf827afb30d8f0cd527c6d2f02263af075d5e293eed0f9a1475064606a56fb41847d38bd9f3a0787f9826d3f63c5b99ef5c2fb03dba83d5f46cfa2f275eea4428cbcaf093607e4ed3cfa22db1ed0ecf820aa7dcf4a597c2be03cf3c59d6344b5d75673f", 0x9d, 0x4e1}], 0x0, &(0x7f0000001600)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x80000000}}, {@data_err_ignore}], [{@subj_role={'subj_role', 0x3d, '\x00'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@context={'context', 0x3d, 'staff_u'}}, {@smackfstransmute}]})
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000001740)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, r3, &(0x7f00000016c0)={0x4000, 0x84, 0x4}, &(0x7f0000001700)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r4}}, 0x760)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x7e02, &(0x7f0000000040)={0x0, 0xcfc5, 0x1, 0x3, 0x26f, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x96a68e4f250b9e35, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000140)='./file0\x00', 0x1, 0x100, 0x23456, {0x0, r7}}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000001780)={{0x1, 0x1, 0x18, <r8=>r0, {0x4}}, './file0\x00'})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r9, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006c80)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r10, @ANYBLOB="0100000000360700c4df1a5689000c000180080001"], 0x20}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000001880)={'ip6_vti0\x00', &(0x7f0000001800)={'sit0\x00', <r11=>0x0, 0x4, 0x1, 0xaf, 0x9, 0x22, @mcast1, @mcast2, 0x10, 0x80, 0x9, 0x7fffffff}})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r8, &(0x7f0000001940)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x34, r10, 0x80, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}]}, 0x34}}, 0x20024010)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:45 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r4, r8, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x63, 0x0, &(0x7f0000000040)="667a8f0c23e505d824e9e89e86486f9016641b5c66bdddd99969e171851ccbe8a4e1e51b3ac159e696b7f57bb03891d5b707f2d9d1bd7cc1812c82b84ae17264e8baa7606f5f7eb39fc36e9a902a7a13f93a641abfbea0a7bb5acc1f256f255bdfbdc547fbbebb5c2df876ceb763f36885629d48d6091d546ee3021a596cf3bedba1d5ec88ca404eaf82", 0x9, 0x0, 0x1, {0x3}}, 0x5)

[ 1695.576398] loop0: detected capacity change from 0 to 8384512
10:26:45 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 52)

[ 1695.601247] EXT4-fs (loop0): VFS: Can't find ext4 filesystem
10:26:46 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x10000000000, 0x0, 0x0)

[ 1695.687947] FAULT_INJECTION: forcing a failure.
[ 1695.687947] name failslab, interval 1, probability 0, space 0, times 0
[ 1695.690686] CPU: 0 PID: 8882 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1695.692146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1695.693885] Call Trace:
[ 1695.694443]  dump_stack+0x107/0x167
[ 1695.695213]  should_fail.cold+0x5/0xa
[ 1695.696008]  ? create_object.isra.0+0x3a/0xa30
[ 1695.697004]  should_failslab+0x5/0x20
[ 1695.697812]  kmem_cache_alloc+0x5b/0x310
[ 1695.698689]  create_object.isra.0+0x3a/0xa30
[ 1695.699622]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1695.700671]  kmem_cache_alloc+0x159/0x310
[ 1695.701549]  ptlock_alloc+0x1d/0x70
[ 1695.702307]  pte_alloc_one+0x68/0x1a0
[ 1695.703111]  ? replace_page_cache_page+0x1200/0x1200
[ 1695.704148]  handle_mm_fault+0x2ab2/0x3500
[ 1695.705061]  ? __lock_acquire+0x1657/0x5b00
[ 1695.705941]  ? find_held_lock+0x2c/0x110
[ 1695.706776]  ? pgtable_bad+0x90/0x90
[ 1695.707537]  ? __pmd_alloc+0x630/0x630
[ 1695.708346]  ? vmacache_find+0x55/0x2a0
[ 1695.709219]  do_user_addr_fault+0x56e/0xc60
[ 1695.710119]  exc_page_fault+0xa2/0x1a0
[ 1695.710921]  asm_exc_page_fault+0x1e/0x30
[ 1695.711794] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1695.713019] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1695.716859] RSP: 0018:ffff88803fcf77b8 EFLAGS: 00050287
[ 1695.717943] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1695.719457] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803fcf7888
[ 1695.720972] RBP: ffff88803fcf7888 R08: 0000000000000001 R09: ffff88803fcf7907
[ 1695.722489] R10: ffffed1007f9ef20 R11: 0000000000000001 R12: 0000000020000100
[ 1695.723956] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1695.725464]  _copy_from_user+0x172/0x1b0
[ 1695.726343]  move_addr_to_kernel.part.0+0x31/0x110
[ 1695.727390]  move_addr_to_kernel+0x4f/0x70
[ 1695.728283]  io_connect+0x47a/0x610
[ 1695.729060]  ? io_prep_rw+0x1050/0x1050
[ 1695.729919]  ? __lock_acquire+0xbb1/0x5b00
[ 1695.730814]  io_issue_sqe+0x1611/0x77d0
[ 1695.731682]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1695.732766]  ? lock_chain_count+0x20/0x20
[ 1695.733651]  ? __is_insn_slot_addr+0x14c/0x290
[ 1695.734612]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1695.735690]  ? io_connect+0x610/0x610
[ 1695.736471]  ? lock_acquire+0x197/0x470
[ 1695.737295]  ? find_held_lock+0x2c/0x110
[ 1695.738143]  ? __fget_files+0x2cf/0x520
[ 1695.738950]  ? lock_downgrade+0x6d0/0x6d0
[ 1695.739804]  __io_queue_sqe+0x90/0x9d0
[ 1695.740621]  ? io_issue_sqe+0x77d0/0x77d0
[ 1695.741506]  ? __fget_files+0x2f8/0x520
[ 1695.742374]  io_submit_sqes+0x44a8/0x8610
[ 1695.743265]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1695.744281]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1695.745277]  ? find_held_lock+0x2c/0x110
[ 1695.746132]  ? io_submit_sqes+0x8610/0x8610
[ 1695.747028]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1695.748039]  ? wait_for_completion_io+0x270/0x270
[ 1695.749050]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1695.750033]  ? vfs_write+0x354/0xb10
[ 1695.750810]  ? fput_many+0x2f/0x1a0
[ 1695.751572]  ? ksys_write+0x1a9/0x260
[ 1695.752364]  ? __ia32_sys_read+0xb0/0xb0
[ 1695.753213]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1695.754284]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1695.755394]  do_syscall_64+0x33/0x40
[ 1695.756198]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1695.757299] RIP: 0033:0x7ff5992a9b19
[ 1695.758076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1695.761962] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1695.763530] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1695.765022] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1695.766488] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1695.767949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1695.769424] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:26:46 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shmget$private(0x0, 0x4000, 0x8, &(0x7f0000ffc000/0x4000)=nil)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_complete(r1)
syz_io_uring_setup(0x75b3, &(0x7f0000000040)={0x0, 0x30d0, 0x10, 0x0, 0xed, 0x0, r4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:46 executing program 0:
r0 = syz_io_uring_setup(0x6b65, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x148}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/12, 0xc}, {&(0x7f0000000080)=""/255, 0xff}], 0x2)
io_uring_enter(r0, 0x58ab, 0xfffffffe, 0x0, 0x0, 0x0)

10:26:46 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:59 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xf00, 0x0, 0x0, 0x0)

10:26:59 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:59 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7ffffffffffff, 0x0, 0x0)

10:26:59 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), 0x0)
dup3(r6, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:59 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000000000000000, 0x0, 0x0)

10:26:59 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 53)

10:26:59 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x61c480, 0x108)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
renameat(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00')
r4 = syz_io_uring_setup(0x56fe, &(0x7f0000000040)={0x0, 0xd22d, 0x1, 0x7fff, 0x39a, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r5=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x60ef, &(0x7f0000000340)={0x0, 0x7e34, 0x1, 0x1, 0x10c, 0x0, r4}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000280)=<r6=>0x0, &(0x7f00000003c0))
syz_io_uring_submit(r6, r5, &(0x7f0000000440)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r0, 0x0, &(0x7f0000000400)='./file0\x00', 0x80, 0x423c1, 0x12345}, 0x20)

10:26:59 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f0000000040)={0x0, 0xc0000000, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
memfd_create(&(0x7f00000000c0)='\x00', 0x7)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
memfd_create(&(0x7f0000000100)='\x00', 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:26:59 executing program 0:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r2 = syz_io_uring_setup(0x31e4, &(0x7f00000002c0)={0x0, 0x400195a, 0x20, 0x0, 0xffffffff, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x0, @fd_index=0x8, 0x40000000000, 0xa8, 0x2, 0x10, 0x0, {0x2}}, 0xffff142d)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1709.544982] FAULT_INJECTION: forcing a failure.
[ 1709.544982] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1709.548477] CPU: 0 PID: 8911 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1709.550137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.552100] Call Trace:
[ 1709.552741]  dump_stack+0x107/0x167
[ 1709.553647]  should_fail.cold+0x5/0xa
[ 1709.554583]  __alloc_pages_nodemask+0x182/0x600
[ 1709.555731]  ? mark_held_locks+0x9e/0xe0
[ 1709.556723]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1709.558196]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.559464]  ? find_held_lock+0x2c/0x110
[ 1709.560438]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1709.561715]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.562726]  alloc_pages_current+0x187/0x280
[ 1709.563799]  ? count_memcg_event_mm.part.0+0xf2/0x2f0
[ 1709.565065]  ? replace_page_cache_page+0x1200/0x1200
[ 1709.566095]  pte_alloc_one+0x16/0x1a0
[ 1709.566867]  ? replace_page_cache_page+0x1200/0x1200
[ 1709.567894]  handle_mm_fault+0x2ab2/0x3500
[ 1709.568755]  ? __schedule+0x82c/0x1ea0
[ 1709.569563]  ? __pmd_alloc+0x630/0x630
[ 1709.570379]  ? vmacache_find+0x55/0x2a0
[ 1709.571193]  do_user_addr_fault+0x56e/0xc60
[ 1709.572099]  exc_page_fault+0xa2/0x1a0
[ 1709.572889]  asm_exc_page_fault+0x1e/0x30
[ 1709.573769] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1709.574862] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1709.578598] RSP: 0018:ffff88804290f7b8 EFLAGS: 00050246
[ 1709.579671] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1709.581081] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88804290f888
[ 1709.582537] RBP: ffff88804290f888 R08: 0000000000000001 R09: ffff88804290f907
[ 1709.583980] R10: ffffed1008521f20 R11: 0000000000000001 R12: 0000000020000100
[ 1709.585423] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1709.586854]  _copy_from_user+0x172/0x1b0
[ 1709.587682]  move_addr_to_kernel.part.0+0x31/0x110
[ 1709.588671]  move_addr_to_kernel+0x4f/0x70
[ 1709.589520]  io_connect+0x47a/0x610
[ 1709.590251]  ? io_prep_rw+0x1050/0x1050
[ 1709.591071]  ? __lock_acquire+0xbb1/0x5b00
[ 1709.591920]  io_issue_sqe+0x1611/0x77d0
[ 1709.592724]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.593771]  ? lock_chain_count+0x20/0x20
[ 1709.594606]  ? __is_insn_slot_addr+0x14c/0x290
[ 1709.595528]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.596585]  ? io_connect+0x610/0x610
[ 1709.597386]  ? lock_acquire+0x197/0x470
[ 1709.598180]  ? find_held_lock+0x2c/0x110
[ 1709.599009]  ? __fget_files+0x2cf/0x520
[ 1709.599818]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.600655]  __io_queue_sqe+0x90/0x9d0
[ 1709.601458]  ? io_issue_sqe+0x77d0/0x77d0
[ 1709.602291]  ? __fget_files+0x2f8/0x520
[ 1709.603111]  io_submit_sqes+0x44a8/0x8610
[ 1709.603987]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1709.604996]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1709.605959]  ? find_held_lock+0x2c/0x110
[ 1709.606777]  ? io_submit_sqes+0x8610/0x8610
[ 1709.607666]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1709.608636]  ? wait_for_completion_io+0x270/0x270
[ 1709.609624]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1709.610548]  ? vfs_write+0x354/0xb10
[ 1709.611292]  ? fput_many+0x2f/0x1a0
[ 1709.612016]  ? ksys_write+0x1a9/0x260
[ 1709.612782]  ? __ia32_sys_read+0xb0/0xb0
[ 1709.613618]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.614681]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.615715]  do_syscall_64+0x33/0x40
[ 1709.616462]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.617490] RIP: 0033:0x7ff5992a9b19
[ 1709.618252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.621939] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1709.623467] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1709.624915] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1709.626381] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.627813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.629258] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:00 executing program 0:
r0 = syz_io_uring_setup(0x8079a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
pread64(r0, &(0x7f0000000040)=""/41, 0x29, 0x3)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, &(0x7f0000000080)={0x1, 0x3}, 0x2)

10:27:00 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x2, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_to_team\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gretap0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x81}, 0x40000)
r2 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r6, &(0x7f0000004580)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty, 0x1}, 0x1c, 0x0}}, {{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c, 0x0, 0x0, &(0x7f0000000800)=[@flowinfo={{0x14}}], 0x18}}, {{&(0x7f0000000940)={0xa, 0x0, 0x0, @private0}, 0x1c, 0x0}}], 0x3, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 54)

10:27:00 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

[ 1709.731834] FAULT_INJECTION: forcing a failure.
[ 1709.731834] name failslab, interval 1, probability 0, space 0, times 0
[ 1709.733230] CPU: 1 PID: 8937 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1709.734017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.734975] Call Trace:
[ 1709.735282]  dump_stack+0x107/0x167
[ 1709.735696]  should_fail.cold+0x5/0xa
[ 1709.736134]  ? create_object.isra.0+0x3a/0xa30
[ 1709.736658]  should_failslab+0x5/0x20
[ 1709.737100]  kmem_cache_alloc+0x5b/0x310
[ 1709.737575]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1709.738263]  create_object.isra.0+0x3a/0xa30
[ 1709.738762]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1709.739340]  kmem_cache_alloc+0x159/0x310
[ 1709.739816]  ptlock_alloc+0x1d/0x70
[ 1709.740234]  pte_alloc_one+0x68/0x1a0
[ 1709.740670]  ? replace_page_cache_page+0x1200/0x1200
[ 1709.741256]  handle_mm_fault+0x2ab2/0x3500
[ 1709.741739]  ? __lock_acquire+0x1657/0x5b00
[ 1709.742226]  ? find_held_lock+0x2c/0x110
[ 1709.742699]  ? pgtable_bad+0x90/0x90
[ 1709.743123]  ? __pmd_alloc+0x630/0x630
[ 1709.743578]  ? vmacache_find+0x55/0x2a0
[ 1709.744036]  do_user_addr_fault+0x56e/0xc60
[ 1709.744536]  exc_page_fault+0xa2/0x1a0
[ 1709.744995]  asm_exc_page_fault+0x1e/0x30
[ 1709.745469] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1709.746140] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1709.748248] RSP: 0018:ffff88803f7977b8 EFLAGS: 00050287
[ 1709.748858] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1709.749672] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803f797888
[ 1709.750484] RBP: ffff88803f797888 R08: 0000000000000001 R09: ffff88803f797907
[ 1709.751302] R10: ffffed1007ef2f20 R11: 0000000000000001 R12: 0000000020000100
[ 1709.752121] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1709.752946]  _copy_from_user+0x172/0x1b0
[ 1709.753421]  move_addr_to_kernel.part.0+0x31/0x110
[ 1709.753982]  move_addr_to_kernel+0x4f/0x70
[ 1709.754472]  io_connect+0x47a/0x610
[ 1709.754899]  ? io_prep_rw+0x1050/0x1050
[ 1709.755369]  ? __lock_acquire+0xbb1/0x5b00
[ 1709.755861]  io_issue_sqe+0x1611/0x77d0
[ 1709.756316]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.756912]  ? lock_chain_count+0x20/0x20
[ 1709.757393]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.757988]  ? io_connect+0x610/0x610
[ 1709.758424]  ? lock_acquire+0x197/0x470
[ 1709.758881]  ? find_held_lock+0x2c/0x110
[ 1709.759347]  ? __fget_files+0x2cf/0x520
[ 1709.759806]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.760280]  __io_queue_sqe+0x90/0x9d0
[ 1709.760735]  ? io_issue_sqe+0x77d0/0x77d0
[ 1709.761212]  ? __fget_files+0x2f8/0x520
[ 1709.761684]  io_submit_sqes+0x44a8/0x8610
[ 1709.762169]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1709.762738]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1709.763290]  ? find_held_lock+0x2c/0x110
[ 1709.763756]  ? io_submit_sqes+0x8610/0x8610
[ 1709.764254]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1709.764814]  ? wait_for_completion_io+0x270/0x270
[ 1709.765376]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1709.765911]  ? vfs_write+0x354/0xb10
[ 1709.766337]  ? fput_many+0x2f/0x1a0
[ 1709.766749]  ? ksys_write+0x1a9/0x260
[ 1709.767186]  ? __ia32_sys_read+0xb0/0xb0
[ 1709.767655]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.768262]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.768856]  do_syscall_64+0x33/0x40
[ 1709.769293]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.769875] RIP: 0033:0x7ff5992a9b19
[ 1709.770298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.772405] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1709.773277] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1709.774088] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1709.774896] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.775721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.776529] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:00 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x800004, 0x4000010, r0, 0x8000000)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f0000000480)=""/196, &(0x7f0000000240)=0xc4)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>r6, {0x401}}, './file0\x00'})
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x2, 0x2007, @fd, 0x7, &(0x7f0000000080)="e4d7b38434dd432a5fc7754a3277150bdb43f99787a3e3a41fb7ca7dd3a857d8d7308b0dbba2112638ee56b660bd689be002597c051529c9fdc428f01982a7ba28abef7340ba3f71a7a0b11b06d5caeb9dc59c3981fff5f71f3fedd04e8545abc0c1974d9b8c53d9a319c7ce112a6d8a5342282e975931e683146fa1cbd5602c632de26994ad2a35bfc2275c6504e009a62c7622a4", 0x95, 0x10, 0x0, {0x0, r10}}, 0x6)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x1, 0x0, 0x1, {0x0, 0x0, r0}}, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x10, r5, 0x0)

10:27:00 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(0xffffffffffffffff, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x1, 0x0, 0x0, 0x296}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0xd41, &(0x7f0000000040)={0x0, 0x8ddb, 0x20, 0x0, 0x12d, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r5}}, 0x7f)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

10:27:00 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 0:
recvmmsg(0xffffffffffffffff, &(0x7f00000043c0)=[{{&(0x7f0000000080)=@nfc_llcp, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/25, 0x19}, {&(0x7f00000001c0)=""/145, 0x91}, {&(0x7f0000000340)=""/167, 0xa7}, {&(0x7f0000000400)=""/197, 0xc5}, {&(0x7f0000004a80)=""/153, 0x99}], 0x5}, 0x5}, {{&(0x7f0000000640)=@pppol2tpin6={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000000140)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/220, 0xdc}, {&(0x7f00000017c0)=""/231, 0xe7}, {&(0x7f00000018c0)=""/130, 0x82}], 0x4, &(0x7f0000001980)=""/180, 0xb4}, 0x3f}, {{&(0x7f0000001a40)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000002c40)=[{&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000002ac0)=""/194, 0xc2}, {&(0x7f0000002bc0)=""/105, 0x69}, {&(0x7f0000000280)=""/30, 0x1e}], 0x4, &(0x7f0000002c80)=""/120, 0x78}, 0xfffffffd}, {{&(0x7f0000002d00)=@phonet, 0x80, &(0x7f0000002e40)=[{&(0x7f0000002d80)=""/140, 0x8c}], 0x1, &(0x7f0000002e80)=""/54, 0x36}}, {{&(0x7f0000002ec0)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000003040)=[{&(0x7f0000002f40)=""/214, 0xd6}], 0x1, &(0x7f0000003080)}, 0xffff49f5}, {{&(0x7f00000030c0)=@vsock, 0x80, &(0x7f00000042c0)=[{&(0x7f0000003140)=""/72, 0x48}, {&(0x7f00000031c0)=""/4096, 0x1000}, {&(0x7f00000041c0)=""/208, 0xd0}], 0x3, &(0x7f0000004300)=""/130, 0x82}, 0x7}], 0x6, 0x1, &(0x7f0000004540)={0x0, 0x989680})
sendmsg$AUDIT_TTY_SET(r0, &(0x7f0000004640)={&(0x7f0000004580)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000004600)={&(0x7f00000045c0)={0x18, 0x3f9, 0x300, 0x70bd2b, 0x25dfdbfb, {}, ["", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x8800}, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000004680)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})

10:27:00 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 55)

10:27:00 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

10:27:00 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x200000000000000, 0x0, 0x0)

[ 1710.396817] FAULT_INJECTION: forcing a failure.
[ 1710.396817] name failslab, interval 1, probability 0, space 0, times 0
[ 1710.399363] CPU: 0 PID: 8971 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1710.400743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1710.402405] Call Trace:
[ 1710.402945]  dump_stack+0x107/0x167
[ 1710.403682]  should_fail.cold+0x5/0xa
[ 1710.404453]  ? create_object.isra.0+0x3a/0xa30
[ 1710.405382]  should_failslab+0x5/0x20
[ 1710.406158]  kmem_cache_alloc+0x5b/0x310
[ 1710.406980]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1710.408197]  create_object.isra.0+0x3a/0xa30
[ 1710.409091]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1710.410121]  kmem_cache_alloc+0x159/0x310
[ 1710.410968]  ptlock_alloc+0x1d/0x70
[ 1710.411698]  pte_alloc_one+0x68/0x1a0
10:27:00 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

[ 1710.412461]  ? replace_page_cache_page+0x1200/0x1200
[ 1710.413717]  handle_mm_fault+0x2ab2/0x3500
[ 1710.414567]  ? __lock_acquire+0x1657/0x5b00
[ 1710.415431]  ? __pmd_alloc+0x630/0x630
[ 1710.416220]  ? vmacache_find+0x55/0x2a0
[ 1710.417034]  do_user_addr_fault+0x56e/0xc60
[ 1710.417910]  exc_page_fault+0xa2/0x1a0
[ 1710.418691]  asm_exc_page_fault+0x1e/0x30
[ 1710.419512] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1710.420594] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1710.424234] RSP: 0018:ffff888040cf77b8 EFLAGS: 00050246
[ 1710.425315] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1710.426761] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888040cf7888
[ 1710.428213] RBP: ffff888040cf7888 R08: 0000000000000001 R09: ffff888040cf7907
[ 1710.429658] R10: ffffed100819ef20 R11: 0000000000000001 R12: 0000000020000100
[ 1710.431107] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1710.432581]  _copy_from_user+0x172/0x1b0
[ 1710.433418]  move_addr_to_kernel.part.0+0x31/0x110
[ 1710.434409]  move_addr_to_kernel+0x4f/0x70
[ 1710.435270]  io_connect+0x47a/0x610
[ 1710.436009]  ? io_prep_rw+0x1050/0x1050
[ 1710.436829]  ? __lock_acquire+0xbb1/0x5b00
[ 1710.437702]  io_issue_sqe+0x1611/0x77d0
[ 1710.438516]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1710.439572]  ? lock_chain_count+0x20/0x20
[ 1710.440414]  ? __is_insn_slot_addr+0x14c/0x290
[ 1710.441340]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1710.442395]  ? io_connect+0x610/0x610
[ 1710.443171]  ? lock_acquire+0x197/0x470
[ 1710.443970]  ? find_held_lock+0x2c/0x110
[ 1710.444794]  ? __fget_files+0x2cf/0x520
[ 1710.445601]  ? lock_downgrade+0x6d0/0x6d0
[ 1710.446439]  __io_queue_sqe+0x90/0x9d0
[ 1710.447232]  ? io_issue_sqe+0x77d0/0x77d0
[ 1710.448062]  ? __fget_files+0x2f8/0x520
[ 1710.448878]  io_submit_sqes+0x44a8/0x8610
[ 1710.449748]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1710.450754]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1710.451732]  ? find_held_lock+0x2c/0x110
[ 1710.452560]  ? io_submit_sqes+0x8610/0x8610
[ 1710.453440]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1710.454410]  ? wait_for_completion_io+0x270/0x270
[ 1710.455379]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1710.456320]  ? vfs_write+0x354/0xb10
[ 1710.457088]  ? fput_many+0x2f/0x1a0
[ 1710.457821]  ? ksys_write+0x1a9/0x260
[ 1710.458592]  ? __ia32_sys_read+0xb0/0xb0
[ 1710.459414]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1710.460472]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1710.461527]  do_syscall_64+0x33/0x40
[ 1710.462278]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1710.463314] RIP: 0033:0x7ff5992a9b19
[ 1710.464066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1710.467771] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1710.469307] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1710.470751] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1710.472182] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1710.473621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1710.475065] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:00 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:00 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:01 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:01 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r6, 0x8004f50c, &(0x7f0000000240))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r5, 0x40806685, &(0x7f0000000440)={0x1, 0x1, 0x1000, 0x49, &(0x7f0000000040)="da27415a6334a728776755574db5578acd3a1ff725a427dbb5c4e34e0b50f4c5db1a4d2d0dbc9628cca71ad57ee2767f7ad69bcf31e45d5d926ad3ce2b89fe753d51862e4c16f530db", 0xe8, 0x0, &(0x7f0000000340)="6973f77061b1f2c3458c35d3aed0c5795efd1551e7a4418a7c4d66bee67ebfdd2964a9e43ea6769b7acfc92822165519accf8029a1e2d79c659c2667642949e7f7beca7c0ef8588ad27a15afa3fc17038ccfe407f165561dabec3b1fe8268ab47de67eadae57bc0a36022e66df8aee0e169b7a84614aed6f514e57d5bf1d6588f55e56cc3a6598b19d241417b05011f9f60a1cd8a5781e3d3bed4cc077de81f6223ed222000917a8eac03d7003e2aba6ca4774231535fa03c83f56cfe2c019a120c830606ac4a9bd3e5eff1f5757b73e4699f4ccfb591b402bc2284ec78f2ed2dbd09bf784bcc29c"})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000280)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3, 0x110, r0, 0x10000000)
io_uring_enter(r0, 0x414c, 0x46b2, 0x3, &(0x7f0000000100), 0x8)
syz_io_uring_submit(r7, r9, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x3}, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:01 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000240)={0x0, 0x0, 0x8, 0x400, 0xfffffffc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r4, 0x0, &(0x7f0000000040)="927cac05e1d86b68c4c324894b6f07a6cfad6d889f0ba63b4db6f7ccf842a777d575095af2f881a133ec48b9ec54cefa2576ae412f1f8a99e47d537c072dff9a4d337cdc116fcedf49804d689237e084eab6b803b0dfbacb607f9abe5ae62df5ed7a678e9e60ea7f1a904e16760ab8890956f93808e39eaa6f5cc8363a90dad2b3c6a175e99df0a7f7e0f3806709199a498a9fdada5493b341484c2ad34465e41fe2ecfe3c0683383c80201649d41fd5d140b4b5e6b86f49773c4398963dd3fc222bf7dc27d459adff2a2a2490a19f97e3dbe991844bad44c2bb115ffddc42f4dab75b5a28406b44684587365c89ee6c18", 0xf1, 0x40, 0x1}, 0x6)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00000000000000, 0x0, 0x0)

10:27:14 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(0xffffffffffffffff, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

10:27:14 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffffffff0700, 0x0, 0x0)

10:27:14 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$inet(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000180)="ba6cef0e0145ef71f1edd34962b2a1927644431e2cc5fed7388006cc90e89c0a825b0536ef7b74dad86986162be319158438a6a825451dc68faa6c62c9d32cdfc20e19b25b921280e55b4937cd7ddc5a391822ebde937c992a04d2a2dd6d07e9136cfe6975041f6e328286ad8c2523022eb551a7252925d91ef593a8e92d2873b28c05591ea8ffad2d1a80ac553ab05a062c9000a66ad83f567e7b0763b63928de380cee7cac1cf830fa267ca267cb7c250be834fa7f34a6eac4d00b211529717590158a50eb2d6e128fb4902c1601d04d93c1da29be782a4c484da4776c921ce32dcf5645237d5b3f93efc7bc61b2bb0d", 0xf1}, {&(0x7f0000000780)="ba04fe6eb8a17eb7f3813f7cc7dafc19f9c9b7930637979829a485eb7900053b81913cd863390ac4dbdf5fa6734eafabe2efea8723a888ad9c3d5625a98e014083a67241d31a10feeca1ec73077db948db128dd6b2e479668840816d0fe298b397d9e68f88135be38400f9b96ca8e701355ee0e42b61e4578d93250a9af326cacaf49edec819b07b9a078db2a08ea0d1c2b5773c5028ae1db24027607c962bafc87a7035e7bdf552601bdc2544a41d37f7865e59a760981650ee55140232cbbf2fc5f847cb755f0b9c8553cab82c8e21717b9f4aefbfe4a5dc62cadf", 0xdc}, {&(0x7f0000000280)="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", 0xff}, {&(0x7f0000000680)="9755be3f8367ced305d67c6c5d871d07013a5be085fcb9ea63b2140a872193d8b2933f1a37f64b9ac17b345cad1d57bf36f965d67f98784b6ef0e219cd82c50679a675f99b4db101faaae024ce11469760f921b620e4d430679d9c6c2abb6879f6e3edfeb65f13cae6904cca9ad6e02e68030f1513b98e810e25ad2605a9299235c32e942bcbbb3625c4ba8f7f4f8bf1d54a3b41b68d1975199e7df08e10493f4af8418048115767068ce6c863d266c1b8ffeaad252fbca24167aa00e8dec7aaaba05539f59185392ff88fc4be7e19b812b9a652c91185be11a504d9744a75", 0xdf}, {&(0x7f0000000400)="5d53980e3dd12b4052b0ff2d2f568dfce97c5f4cdece3af2a09077a7a675cb2d1d42ab4876f571b3bd8665a83b9509a9229d11375f79d88d25ab683c588c0f1c06c18d2e0e155c443ca5061bd7aa3bdf3a722b345fad118820399df6cd05beae5aaa03b1bb59c1eddfcab3964e463668e0adbd", 0x73}, {&(0x7f0000000480)="91584d1c7c4b27258fa48e11d8a3b52eea602313b8714b30cb0849e05f286b836aec1479c3c9f6e2be2568c459ab584cea42d28f08a963725ca7cb6635622dfb4479cdbdf4be72281020db956ac2d3a5e6eda0190ffa665213970d4f9878362119d6d85cd4c689f6b928bf191a360b3aa0b24d473af0d57e67286c4c1cb87dc4da368b35fe9f39a90ea8eef440a5c39635de412913cbd9012851d25fe0c7d44221", 0xa1}], 0x6}, 0x20004800)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 56)

10:27:14 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 5:
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0))
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000140)={<r9=>r4, 0xfd, 0x101, 0x1ff})
r10 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r11=>r10, @ANYBLOB="03004000000000002e00"])
close_range(r10, r11, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r12=>0x0, &(0x7f0000000100)=<r13=>0x0)
syz_io_uring_submit(r12, r13, 0x0, 0x0)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r14}}, 0x101)
syz_io_uring_submit(0x0, r7, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x0, 0x0, r4, &(0x7f0000000100)={0xc}, r9, 0x3, 0x0, 0x1, {0x0, r14}}, 0xfffff000)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1724.465984] FAULT_INJECTION: forcing a failure.
[ 1724.465984] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1724.468885] CPU: 1 PID: 9011 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1724.470338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.472096] Call Trace:
[ 1724.472667]  dump_stack+0x107/0x167
[ 1724.473451]  should_fail.cold+0x5/0xa
[ 1724.474270]  __alloc_pages_nodemask+0x182/0x600
[ 1724.475260]  ? lock_acquire+0x197/0x470
[ 1724.476107]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1724.477394]  ? find_held_lock+0x2c/0x110
[ 1724.478264]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1724.479374]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.480257]  ? mark_held_locks+0x9e/0xe0
[ 1724.481128]  alloc_pages_current+0x187/0x280
[ 1724.482079]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1724.483188]  ? replace_page_cache_page+0x1200/0x1200
[ 1724.484268]  pte_alloc_one+0x16/0x1a0
[ 1724.485078]  ? replace_page_cache_page+0x1200/0x1200
[ 1724.486159]  handle_mm_fault+0x2ab2/0x3500
[ 1724.487062]  ? __lock_acquire+0x1657/0x5b00
[ 1724.487982]  ? find_held_lock+0x2c/0x110
[ 1724.488844]  ? pgtable_bad+0x90/0x90
[ 1724.489646]  ? __pmd_alloc+0x630/0x630
[ 1724.490489]  ? vmacache_find+0x55/0x2a0
[ 1724.491344]  do_user_addr_fault+0x56e/0xc60
[ 1724.492280]  exc_page_fault+0xa2/0x1a0
[ 1724.493110]  asm_exc_page_fault+0x1e/0x30
[ 1724.494002] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1724.495252] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1724.499158] RSP: 0018:ffff888036c177b8 EFLAGS: 00050287
[ 1724.500283] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1724.501812] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888036c17888
[ 1724.503330] RBP: ffff888036c17888 R08: 0000000000000001 R09: ffff888036c17907
[ 1724.504839] R10: ffffed1006d82f20 R11: 0000000000000001 R12: 0000000020000100
[ 1724.506361] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1724.507900]  _copy_from_user+0x172/0x1b0
[ 1724.508765]  move_addr_to_kernel.part.0+0x31/0x110
[ 1724.509812]  move_addr_to_kernel+0x4f/0x70
[ 1724.510714]  io_connect+0x47a/0x610
[ 1724.511484]  ? io_prep_rw+0x1050/0x1050
[ 1724.512344]  ? __lock_acquire+0xbb1/0x5b00
[ 1724.513250]  io_issue_sqe+0x1611/0x77d0
[ 1724.514102]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.515210]  ? lock_chain_count+0x20/0x20
[ 1724.516097]  ? __is_insn_slot_addr+0x14c/0x290
[ 1724.517063]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.518177]  ? io_connect+0x610/0x610
[ 1724.518985]  ? lock_acquire+0x197/0x470
[ 1724.519826]  ? find_held_lock+0x2c/0x110
[ 1724.520691]  ? __fget_files+0x2cf/0x520
[ 1724.521535]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.522419]  __io_queue_sqe+0x90/0x9d0
[ 1724.523251]  ? io_issue_sqe+0x77d0/0x77d0
[ 1724.524120]  ? __fget_files+0x2f8/0x520
[ 1724.524977]  io_submit_sqes+0x44a8/0x8610
[ 1724.525894]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1724.526948]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1724.527968]  ? find_held_lock+0x2c/0x110
[ 1724.528832]  ? io_submit_sqes+0x8610/0x8610
[ 1724.529763]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1724.530787]  ? wait_for_completion_io+0x270/0x270
[ 1724.531809]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1724.532784]  ? vfs_write+0x354/0xb10
[ 1724.533586]  ? fput_many+0x2f/0x1a0
[ 1724.534354]  ? ksys_write+0x1a9/0x260
[ 1724.535164]  ? __ia32_sys_read+0xb0/0xb0
[ 1724.536028]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.537136]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.538236]  do_syscall_64+0x33/0x40
[ 1724.539018]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.540101] RIP: 0033:0x7ff5992a9b19
[ 1724.540886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.544768] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1724.546378] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1724.547884] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1724.549397] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.550905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.552405] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x8)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x408}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x7c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}]}, 0x7c}, 0x1, 0x0, 0x0, 0x48001}, 0x8)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:14 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x401)
r1 = syz_io_uring_setup(0x6a5f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
close_range(r5, r4, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0xc0081, 0x0)

10:27:15 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2)

10:27:15 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
pipe2(&(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x80800)
r5 = syz_open_dev$mouse(&(0x7f0000000440), 0x6, 0x80000)
r6 = syz_io_uring_setup(0x7d04, &(0x7f0000000480)={0x0, 0x40000, 0x0, 0x0, 0xf0, 0x0, r5}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/binder0\x00', 0x800, 0x0)
r8 = fcntl$dupfd(r0, 0x0, r3)
r9 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0xffffffffffffffc1, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000140)="01c21f21d4cd905dfd3924af5ee4cfb9e96c205b861eabe8", 0x18, 0xff}, {&(0x7f0000000340)="34481442e1ece416241be1f04130848e0e2e5363df582e21e3908ee9d96fec0cd150aafb975488ee5fb7ff2fb4ce31bc9c50179b36fb96648edcfe10bcabd920e64b87e91d91faf3f33ac4dd0734268755639105c9c7aeff4316449aa7153a21d1c923c9ae96c39d2a96d05fbc5bcc6743bf4dd0260c6a62533d38dcc032f79456197b4b1932732e5148b2cfca0dd2a8617e524089368cf8271ed5ac7ed00f42", 0xa0, 0x6}], 0x1, &(0x7f0000000240)={[{@dots}, {@dots}, {@fat=@quiet}, {@dots}, {@dots}]})
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000000400)={0x3f, 0x0, &(0x7f0000000280)=[r3, r6, r7, r3, r0, r0, r8, r9, r10]}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:15 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc, 0x1010, r0, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000004680)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r3, 0x0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000045c0)=[{&(0x7f0000000080)=""/23, 0x17}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/161, 0xa1}, {&(0x7f0000001340)=""/4096, 0x1000}, {&(0x7f0000002340)=""/140, 0x8c}, {&(0x7f00000001c0)=""/30, 0x1e}, {&(0x7f0000002400)=""/242, 0xf2}, {&(0x7f0000002500)=""/4096, 0x1000}, {&(0x7f0000003500)=""/4096, 0x1000}, {&(0x7f0000004500)=""/183, 0xb7}], 0xa, &(0x7f0000000240)=""/56, 0x38}, 0x0, 0x14002, 0x0, {0x1, r5}}, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r6}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1724.774004] loop5: detected capacity change from 0 to 135266304
[ 1724.778949] FAT-fs (loop5): invalid media value (0x8e)
[ 1724.779737] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1724.797563] loop5: detected capacity change from 0 to 135266304
[ 1724.801354] FAT-fs (loop5): invalid media value (0x8e)
[ 1724.802039] FAT-fs (loop5): Can't find a valid FAT filesystem
10:27:15 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x6641, 0x5b45, 0x0, 0x0, 0x0)

10:27:15 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 57)

[ 1724.864956] FAULT_INJECTION: forcing a failure.
[ 1724.864956] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.866481] CPU: 0 PID: 9043 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1724.867286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.868253] Call Trace:
[ 1724.868565]  dump_stack+0x107/0x167
[ 1724.868986]  should_fail.cold+0x5/0xa
[ 1724.869437]  ? ptlock_alloc+0x1d/0x70
[ 1724.869878]  should_failslab+0x5/0x20
[ 1724.870327]  kmem_cache_alloc+0x5b/0x310
[ 1724.870801]  ptlock_alloc+0x1d/0x70
[ 1724.871223]  pte_alloc_one+0x68/0x1a0
[ 1724.871673]  ? replace_page_cache_page+0x1200/0x1200
[ 1724.872267]  handle_mm_fault+0x2ab2/0x3500
[ 1724.872762]  ? __lock_acquire+0x1657/0x5b00
[ 1724.873272]  ? __pmd_alloc+0x630/0x630
[ 1724.873735]  ? vmacache_find+0x55/0x2a0
[ 1724.874201]  do_user_addr_fault+0x56e/0xc60
[ 1724.874705]  exc_page_fault+0xa2/0x1a0
[ 1724.875164]  asm_exc_page_fault+0x1e/0x30
[ 1724.875650] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1724.876287] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1724.878425] RSP: 0018:ffff888041cb77b8 EFLAGS: 00050246
[ 1724.879042] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1724.879862] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041cb7888
[ 1724.880692] RBP: ffff888041cb7888 R08: 0000000000000001 R09: ffff888041cb7907
[ 1724.881541] R10: ffffed1008396f20 R11: 0000000000000001 R12: 0000000020000100
[ 1724.882367] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1724.883214]  _copy_from_user+0x172/0x1b0
[ 1724.883686]  move_addr_to_kernel.part.0+0x31/0x110
[ 1724.884255]  move_addr_to_kernel+0x4f/0x70
[ 1724.884746]  io_connect+0x47a/0x610
[ 1724.885167]  ? io_prep_rw+0x1050/0x1050
[ 1724.885644]  ? __lock_acquire+0xbb1/0x5b00
[ 1724.886140]  io_issue_sqe+0x1611/0x77d0
[ 1724.886606]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.887210]  ? lock_chain_count+0x20/0x20
[ 1724.887685]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.888297]  ? io_connect+0x610/0x610
[ 1724.888739]  ? lock_acquire+0x197/0x470
[ 1724.889213]  ? find_held_lock+0x2c/0x110
[ 1724.889686]  ? __fget_files+0x2cf/0x520
[ 1724.890143]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.890626]  __io_queue_sqe+0x90/0x9d0
[ 1724.891075]  ? io_issue_sqe+0x77d0/0x77d0
[ 1724.891551]  ? __fget_files+0x2f8/0x520
[ 1724.892018]  io_submit_sqes+0x44a8/0x8610
[ 1724.892510]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1724.893089]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1724.893657]  ? find_held_lock+0x2c/0x110
[ 1724.894127]  ? io_submit_sqes+0x8610/0x8610
[ 1724.894624]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1724.895180]  ? wait_for_completion_io+0x270/0x270
[ 1724.895736]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1724.896273]  ? vfs_write+0x354/0xb10
[ 1724.896701]  ? fput_many+0x2f/0x1a0
[ 1724.897116]  ? ksys_write+0x1a9/0x260
[ 1724.897566]  ? __ia32_sys_read+0xb0/0xb0
[ 1724.898039]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.898663]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.899264]  do_syscall_64+0x33/0x40
[ 1724.899690]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.900273] RIP: 0033:0x7ff5992a9b19
[ 1724.900696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.902830] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1724.903695] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1724.904516] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1724.905345] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.906153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.906970] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:15 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

10:27:27 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf)

10:27:27 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000000000000000, 0x0, 0x0)

10:27:27 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x44e9, &(0x7f0000000040)={0x0, 0x96f, 0x0, 0x0, 0x131, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r3, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:27 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x24}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_FILES(r4, 0x3, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f0000000080), 0x1)

10:27:27 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

10:27:27 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 58)

10:27:27 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:27 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(0xffffffffffffffff, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1737.436514] FAULT_INJECTION: forcing a failure.
[ 1737.436514] name failslab, interval 1, probability 0, space 0, times 0
[ 1737.439415] CPU: 0 PID: 9073 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1737.440917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1737.442773] Call Trace:
[ 1737.443361]  dump_stack+0x107/0x167
[ 1737.444161]  should_fail.cold+0x5/0xa
[ 1737.444996]  ? ptlock_alloc+0x1d/0x70
[ 1737.445856]  should_failslab+0x5/0x20
[ 1737.446691]  kmem_cache_alloc+0x5b/0x310
[ 1737.447585]  ptlock_alloc+0x1d/0x70
[ 1737.448381]  pte_alloc_one+0x68/0x1a0
[ 1737.449210]  ? replace_page_cache_page+0x1200/0x1200
[ 1737.450351]  handle_mm_fault+0x2ab2/0x3500
[ 1737.451285]  ? __lock_acquire+0x1657/0x5b00
[ 1737.452230]  ? find_held_lock+0x2c/0x110
[ 1737.453113]  ? pgtable_bad+0x90/0x90
[ 1737.453950]  ? __pmd_alloc+0x630/0x630
[ 1737.454818]  ? vmacache_find+0x55/0x2a0
[ 1737.455699]  do_user_addr_fault+0x56e/0xc60
[ 1737.456622]  exc_page_fault+0xa2/0x1a0
[ 1737.457480]  asm_exc_page_fault+0x1e/0x30
[ 1737.458379] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1737.459635] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1737.463601] RSP: 0018:ffff888042d877b8 EFLAGS: 00050287
[ 1737.464764] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1737.466333] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042d87888
[ 1737.467874] RBP: ffff888042d87888 R08: 0000000000000001 R09: ffff888042d87907
[ 1737.469429] R10: ffffed10085b0f20 R11: 0000000000000001 R12: 0000000020000100
[ 1737.470975] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1737.472543]  _copy_from_user+0x172/0x1b0
[ 1737.473451]  move_addr_to_kernel.part.0+0x31/0x110
[ 1737.474525]  move_addr_to_kernel+0x4f/0x70
[ 1737.475440]  io_connect+0x47a/0x610
[ 1737.476224]  ? io_prep_rw+0x1050/0x1050
[ 1737.477107]  ? __lock_acquire+0xbb1/0x5b00
[ 1737.478061]  io_issue_sqe+0x1611/0x77d0
[ 1737.478930]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1737.480062]  ? lock_chain_count+0x20/0x20
[ 1737.480954]  ? __is_insn_slot_addr+0x14c/0x290
[ 1737.481966]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1737.483096]  ? io_connect+0x610/0x610
[ 1737.483924]  ? lock_acquire+0x197/0x470
[ 1737.484784]  ? find_held_lock+0x2c/0x110
[ 1737.485697]  ? __fget_files+0x2cf/0x520
[ 1737.486554]  ? lock_downgrade+0x6d0/0x6d0
[ 1737.487454]  __io_queue_sqe+0x90/0x9d0
[ 1737.488292]  ? io_issue_sqe+0x77d0/0x77d0
[ 1737.489160]  ? __fget_files+0x2f8/0x520
[ 1737.490063]  io_submit_sqes+0x44a8/0x8610
[ 1737.490978]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1737.492044]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1737.493074]  ? find_held_lock+0x2c/0x110
[ 1737.493975]  ? io_submit_sqes+0x8610/0x8610
[ 1737.494918]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1737.495973]  ? wait_for_completion_io+0x270/0x270
[ 1737.497025]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1737.498064]  ? vfs_write+0x354/0xb10
[ 1737.498881]  ? fput_many+0x2f/0x1a0
[ 1737.499671]  ? ksys_write+0x1a9/0x260
[ 1737.500499]  ? __ia32_sys_read+0xb0/0xb0
[ 1737.501381]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1737.502566]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1737.503678]  do_syscall_64+0x33/0x40
[ 1737.504487]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1737.505622] RIP: 0033:0x7ff5992a9b19
[ 1737.506430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1737.510460] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1737.512114] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1737.513686] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1737.515230] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1737.516770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1737.518345] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:27 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4aa1, &(0x7f0000000400)={0x0, 0xe06e, 0x2, 0x2, 0xd8, 0x0, r7}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0), &(0x7f00000001c0))
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x201, 0x104)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r13=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r13, r10, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x6, 0x4, 0x0, {0x0, r12}}, 0x3f)
r14 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r14, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:27 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0xfffffffd, 0x202}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x140850, r0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000080)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1, r5}}, 0x97)

10:27:28 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:28 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r4, 0xd0009412, &(0x7f0000000340)={0x0, 0x94})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:28 executing program 0:
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004200)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000080)="f579d7ce5514bf98b546933f97973c8179706771f9111dd41845bcbb1ec3f8ae46632965be6d43ab22b7321d61dc102a69e69d5c7cd13f7f7e16ec1a824c022272b5c124f71fd399e2542b95a7c9a9c4c101a959cd8b", 0x56}], 0x1, &(0x7f0000000340)=[@dstopts={{0xb0, 0x29, 0x37, {0x0, 0x12, '\x00', [@calipso={0x7, 0x18, {0x0, 0x4, 0x4, 0x6, [0x5, 0x1]}}, @ra={0x5, 0x2, 0x4}, @pad1, @hao={0xc9, 0x10, @mcast2}, @ra={0x5, 0x2, 0x7ff}, @calipso={0x7, 0x30, {0x0, 0xa, 0x8, 0x8, [0x0, 0x8, 0x2, 0x1, 0x7]}}, @jumbo={0xc2, 0x4, 0x4}, @hao={0xc9, 0x10, @private1}, @hao={0xc9, 0x10, @loopback}]}}}, @dstopts={{0x30, 0x29, 0x37, {0x87, 0x2, '\x00', [@ra={0x5, 0x2, 0x101}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}]}}}, @rthdrdstopts={{0x128, 0x29, 0x37, {0x8, 0x21, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x6, 0xff, "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"}]}}}, @hopopts_2292={{0x1038, 0x29, 0x36, {0x33, 0x204, '\x00', [@generic={0x57, 0x1000, "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"}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @jumbo={0xc2, 0x4, 0x112}, @jumbo={0xc2, 0x4, 0x7ff}]}}}, @dstopts_2292={{0xf8, 0x29, 0x4, {0x32, 0x1b, '\x00', [@calipso={0x7, 0x10, {0x3, 0x2, 0x9, 0x5, [0x4]}}, @pad1, @padn={0x1, 0x2, [0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x200}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x0, 0xb5, "dd58bf11fd16396f38c78c585c6a854d30137ab0a7cd88be02ad6d5900fac3f70b7b509bc5079ec86d6ccaa385c429982e87cdf5dc41239542150b9da8cb8b60ea780510c573455eb57e84eb8fe4399f8799966336520834f6fa512eb38900a41f09c129b2e85878229a212f4398a556ba00325ac539e2f25abc446663de78f8e3a7f408657bdc1e463df26126c471784c4f11f6903d107be62ae854f8e30ae16061db173a9ffacf3d78afe72cab996f2e47e29cdb"}]}}}, @tclass={{0x14, 0x29, 0x43, 0x3}}, @hopopts={{0xf8, 0x29, 0x36, {0x0, 0x1b, '\x00', [@jumbo={0xc2, 0x4, 0x1}, @padn={0x1, 0x1, [0x0]}, @generic={0xff, 0xc6, "903f8b15d195d6843b75651fe60945ba033ce7f5c609ac0e3742c649a9a7a514337fa22a4fc49b70e01a6f9a8a65d789e0c1317408ae08aeb7b9688aefa3e8f135e4c7bb28e0fec9fd22bcd2a58c99d7becbcf5e3c327c7510810d3ed84609d284314e0b4cc3e346285785c9534bf1c5c44a7af5982b9cafddf62a59d92fd9efa4ff7499bd7336181a3bed2ce006b45bc479391cc3dfd979b603e3c8518813589d5670006b405844354346af10c41f7bfb8f48cf6b255bb5cae647a1f652f73e5279daa50fea"}, @pad1, @jumbo={0xc2, 0x4, 0x3}]}}}, @hopopts={{0x30, 0x29, 0x36, {0x3b, 0x3, '\x00', [@jumbo={0xc2, 0x4, 0x9}, @jumbo={0xc2, 0x4, 0x3375}, @jumbo={0xc2, 0x4, 0x7fff}, @enc_lim={0x4, 0x1, 0x5}, @pad1]}}}], 0x1478}}, {{&(0x7f0000000140)={0xa, 0x4e24, 0x759, @private1, 0x9}, 0x1c, &(0x7f00000001c0)=[{&(0x7f00000017c0)="b81dd0c974d2be1bc85fa6ff54c41dfa0bb3b5606b064ef2fee4b89e505cf46645ed8d7ad6acc313b9f0b9240f19b2b43fac8acd3694676b656adf57ba331920d9939d12d8b0f85e6607c4f8aa382f56c869a8613b4f8a8b90334baa0104650a4bc4bc22889c3d527a616f40272842113181e7d8e36b1c05e7f6aa0fb6889800a216ae08f63bc27177a6737a11192f0c", 0x90}, {&(0x7f0000001880)="dac68d46d3b7fda7bf5c0463f4625d0fc9d9ac23e8ba086f483e4ced70d7d16c64ae3a665272b2d301e1cbfd4e18ed2003c4691e4f2ca0c3c22d9afc597ab611d1e5e9f3f0a8d0fb0e6c038aaac73d0bb9b09a869283a9dff2a8b2d5c01011cd11891dee9202578a965a54c50267c8ff7198b66a259d6ebb019ae3cde420f62d4caf9ebb1213ab698860b6a03435aaad859de3b6361fa97d28cc973e904298bbb680c04c305852ef761163e1281ffcb6346d91deaeb756a6da8181c458abef6533", 0xc1}, {&(0x7f0000001980)="6ec485edce3d643c6c3dbe30b10d4987cd52dadcf3501637e4ac751380bef87d58c115ecd517b0080442a58996e09223d66d71e64ef8a8bd7dc85d3f8e07c038e42d4a4b0014e9d7fbdbc983f4563c9dc7e0f5d6eec82e8995426eaad2ac1fd47b6d845bbb39041037ebcd6997015d175d7dcc8b03dbd06ffcc3b1ab9339dc84593d5981c977895f76939679f1aa5f9ff6d370218422c5a0e01bc8a94b12f5cfc9d833baa31123ad6509df7df26d3fe7d4daa44edd8d98a63fdc0cd7ea0bfc5426afbf13bd68902730edbde51cee7192010d7ef86251e1cbf4e77638aeea0123c76fba972fca32e2167b61c7", 0xec}], 0x3, &(0x7f0000000240)}}, {{&(0x7f0000000280)={0xa, 0x4e24, 0x2, @dev={0xfe, 0x80, '\x00', 0x2c}, 0xfffffffc}, 0x1c, &(0x7f0000004100)=[{&(0x7f0000001a80)="06a777b5cd6a8541925a5f4720f31e9bb75c3c85b20b782c4f447c7cd23aefea2d820c36487b3afbeeca6547b0cd72bf2b48fe89404cc9a08111c89711656f173f001e9febf242f638443fa064832bbe43e1c82efb2ba0d7f22e38d459fe90326fea724fddddc483e37c1541b8d2a64d031d63ff5427db418b74d1121371baa1cefc4dfbffb0d392e3a695cabd5471407ef03256f47b2f7d8886b9033e2a9182f836de8ad1487bf9f0ff94853676442b2cd4915a86ada62fa88ae7be2cfd0f9c53294c80c77381405864eaa1e6ff8fcb05e2613bd2098d6565", 0xd9}, {&(0x7f0000001b80)="32f32fe9487094a7714fad40e1a0f3f3284872513a4e40621ece8c22f00c0cccf84be3e7e71657a5f6b4423f1e63533273a3c76777c1b98b6137f2e6f8328f95f1ce78bc7e6d925b2f303345c38dd5bf158df170aa79b2648938f24b5fd0f384446701e05109f6b5e0e7274a2146697486769958742b6ee325d9c0805b75b07d5f94343908cbaf1a08d71ef0ee2a13e54a6d7f", 0x93}, {&(0x7f0000001c40)="423365c9b3dc34eb8157e7416987e026f3d1713a75d3ea48f1996f5200c16107e17b454bb1e87cbba270944048c87c1cb8134cca69f8ac121cfb71e8fd3da2ccb24c0e2c03b5fd00367f53a00d458944310f2612b181001887aa70d7904978d88389da483cf9c9b7da7d3860f0392aa5d935abf38eb02a05bca75bdb3f42df18396dda2cf2bf638e06fcd3a53ae09021231a066cab1abb974be9d8d035eee43b3d07650972aad0459440ef59c0b6d90ac3c70a5a9943c8c427770b2a7c62bda2350216c65ffe78a6a45020dca9511d0a40f65a52d43955c5003ef79397ae115991eff68522beba32c3dff03e", 0xec}, {&(0x7f0000001d40)="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", 0xff}, {&(0x7f0000001e40)="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", 0xff}, {&(0x7f0000001f40)="6f01305c924b6bc9bfc95fba0170649116e39686b54f5490436f7fd22480829c0c8359d7ade25cd91c4af851902bb746f0573f6da05b4a991c63c80c677af7ff98da40eb71d9140a31d54cac30b48a153d03402f012d18a4ca3837ca4b6cb078c181e3591baea938cc158f4da8ba85d48fcc12fb2d21ea6a3b26227e7cf5f7211f7e567c06e6908432504face68bdbf09ba4b9f165ea6a78575bae5b0ff3aea011d5c2133649c3d7d8a71b63d695b1353a76fb0210c8d97cff3c511420ba3483e7a03e3625e3c960cc91c0", 0xcb}, {&(0x7f0000002040)="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", 0x1000}, {&(0x7f0000003040)="f29e42cceb3a3ff45b821fa1766b5ac4f148ce3e83753ff39fec419317762f28c36b1522e79445f2193f32f3dd7ae4d1944996b8ca62ed786ec71635cb086cd34526d5aa56dd65175efa71f6d569f03ed0988123c93eb5c518c37708cab1d0c4a6e88e4f4f03281580cb88dc31dccc49bd9833897e22ccfb94cf98a548862c0f1fd0584c5325f42523839e4e005ac1f39e7baf2f5e1091dfd8f0b36891687cf9828ec5e2d9027af05f9056cc3bee962395f9381f0346745d3f0a0540401db405d33da12de63392aa9b787ae8e685e5e7ac3332c26d54461d91efd3f9c66e532be03864491219870afaff3d0b7dfcf5d643dfbe2c7661ed6c3bcc13e8a8b92fc5bd29a0c5d9750840ead1e4d7937884adf091223c28bf9e030143d3d02d5be5426008709063fb4b545c7cf1e9bd1391b8b6a2891fe4cf5003dc5ece619a851dcd6c6dddf24f23373d10ef9b7730fe2ae7342408ecd000ec13f522c8fe182b76d06c568602f6ed05d652a7d5120c19305ff468b779eb5c4a7d663ee318f1cdf6f4e9e5cf4fe83ec4e53cfe7069cf7f4c5b7763ea533d36a129816762be44c6c3b18b95b26ee547b671a6aa24f96b9ccdc5bc2a44566bb8fc268260e9b0e3fa872c274f27ef500e1cdd790eb48f4b811f4fd4bb653458212085206d069644b1cd539a7f940ee0515ea145a2d357558493c02cba56ad4c67e2e23fc7f572eb216af36c25d506eee23c01430093272c6bbe224db98424bfdbfb838ad131b24470ab008516f2e623bb914ef42425501bb67b8a3c890214d4aa209344f02ac28b82add1a6e288a5c584507ce68fbe8b36bb8eb7c6a9ca7126313c0bbeffb2925b0e901c8676f1f42610f5479615c33e6972f067193a950a7736e1a4c3943aed883c41f3cb0a8a9e0d304f64bd9931c192d69e8a3e7f9d9ab2d5b733ac52333b723b5391814d0d4131a34eff24f35d37273404944a0cb97bad9b0cce351db2eeaa3c6074ae4a7a945a94ce7cf10b3c1a8db04445c55bd8a5121d09b0ad12b4fc1678903e1f2c08b8594d464308bebb07f106a56bce4aaef31e71313792f80a65c0d17d154ef29c30afc658427295933161824500eca544d94c623f7b0b4941d345e070915fefe76b58528597fc04b917382a585833b7d95f3b6ad9233ec71debbf6ee25cc3a1d3152d5bb41b9381fca7bf8159f0b1640eff06b2f18c49f978664566814ce1676ea4e72f7127dca2d6460adfbb81aea8b31ab3c513f68a69e5f1994fb5506f8acbf805c38a3d20b57ef70119f4f895552a6e6d5e342bc38cfacb46afa30af81b72edbde913c82348c9643a9c2387b68939de411db64322ecf176639e0470ead10fb069b2715f760b2fbf07da9b55dc65c465f1a41134bbd5232ee883a42d2a94aac1e4d70346ae1d7c837b62d308a10a8046effb77c7aa6b7d00cdb4b8300181b8943ad5e3d7e1b6f176028e973a3f934807e9aceddba25c46772be8ae6d4f139495e76840b98abfd88c55642f444dc5243f8c78d7a504029bfdc8057df2d7c8c5b9b1990b1ec5121e736f522f0e161a4e1f7c103ef3e388f4e7c92a74c516866bfce142b3358cdc20a5d10388cf06658b2e7fe2b2fcf80e541ab6b5e04097a08fd7d54514071bafba01a715daf2d9729e9fa32657cf2e4b78097aaeeb9bda1efaeff3bedb1bbb81183087d56769b4c38d991efaf5d1c7d5da2472cbb9a9fea77d60ee37644d58e52b5be953051eab7fdb86e64a5734f3b0f8b8fb49ce67606704d1964008ceceec96b504860ee3adc82f5c979c0ab098e259eebecef45456af4bb2e93dfa9bbb08a2a534d149033dbafd662f47a418f594a49cb363024585ba28a29cb729dfe6df77d3276f2e74c827b8a7b3f119edcb3fbbef04e6a24e71567d7e8dd3bbdf64c0098c046d704c3d85bce42be2d19e17d078de44ed677e00b34afee5d552b18977ba55690e2a606a5b5fb85f20bebf7eceb066854295e8beedd0e4800479ae01b2258c440e0d14f87000ca41ae6852cf399b797089729d94ac87ccfb5742ea512af3378ad39f9d00e81d00a2e44a241434e75d96082148d1226775c89022d2749d1be4042e4c6752b2c13125022defb63ed7c5ab9fa375a87778e149708877ea71a8f9d2f04164bc8ad67130cb6bcc5bc8b8dc65a89107ff20b5ec46aa642df86247948be256aade908d8dcfa0801c88ad7e0643394234d44c6a6618a0a71a232553ac774fb8deaa49201947adece4b5090d5f57cc9d580973e99d7eb637c80b47c23751d7ee4458f29d6c79059b664ae1c0d741bc9e72cef619f6b90ebab25409467b6cdb28a71249bb33aad3b0f40ecfeee53e187c7973fff147219fda497e575a06cab586e3ade32d5d5c57a97eb19cb0ee91c201e5ddbe2ab2644dcd2d65edac0bcb9f9889b7e3cb04dc3a4b25734512bc61fe98b5236be5ff435619d70135d9b9601fd828ae5d51e6577b8c1ae0c8b8d29ae56fe308e28997773909499e70407edb85917de746161c07a03fb6c3627b22a7be8b1b82b679c9300be6274d73f940b2cc1245ca8db9d4e73b7b2c03d287b95f448b54525cf07bc434edd902b30868594957edb3afd250b16fd59bcb1cdd4ef545b61845ae1bb7594f7cbad14bbf12e666af4b2038d080398966cfab65368106452c45f3a4a487a973a0566eed86f5a88abfdb2ccb5c483e5d27af47f9a6fade6f21ad613aeb57ebd4b396d485a316556c8d44a12ca6a4383a8da5883a465fec6d04f8392b61ba3018370d3eba28b45c020f3e6a99a2559536ebe5fddeccf1f9331e983c02e1b1d92eebd59c2d9a7ccb8b5f031083234420021597a5b19b5ffbf60796167f41d2ead1298dcd0555fde1a8fa685408accb46e08cd8823aeab0084d22262a6f1212734a8a90e1b69906f5475b8b04a0b71bae7a30fb5b34d18f49d415e36831028264090ef0ca1eb68ce8abacdd07148e167df223a418d978b307fcbfff652c901cc039e7bf0d7316b03e37a973a21c204c82c51bd782892824bb786eaf6bd625162a9eb65e31f2f9c1635cf00bd5813174272a902803edf3ca2eeabe9428973275e9e5784bd59aa51d49974dcbf681533205d7b868a0e2e5fbe3f2c496b78ac9255b6f0399ed4b729837dbb25debd797dabfcc7e82efff926971fa74dd3583905b644fe93fee445939cc21da30e1f8368c858a23f9a48b12d8944705d20301cb44e4fa4c94ef00b7661482d9b47943dc9e2a944fda297df4e7c0e28dd7267ebb1118140df2c62f45b650a0d6da09f673ef4cbf70fdd5f373fa048efc7ff6eaa0fb72c751313135ed32ae21fcc340ba1759fdf124eeb883f15171588fb4bf90ac0550873bc21558585338987aa7467c4898bd00f0ab218896be6eca522c2a1ce5505769ec694b7bcadaf1cdbd383c25aa0c52a6cab931b8ac5806efb14367c6fdf5a9150493db0c554c1386d87243fbe7e3e4be804368b3e99b62ffb0937a1238ad82819189b35ff5cc61933ee5cf880a02aec13eaefe24cc78de6420a6018f5e414e6022ed7076f43af431d6a1a991ccceb98bff3038953e37a8edce3c6acd4f21603821f87f48a26844218ca7ffaaa6037f72a0d5ce355fa4d4187a13dfdafe0db761a28d95523150eacf21f770c8d4504704f90bd092203ee96e3913ddeba84d1e38940d2b706f3f8664920d021a2fc0fe875ff6e3cd94e928b6b81243828c022a277ff1f40e80d2f96bc0e4bd6c5bf2e5dc60befcff0860a15bbfa416598ebce24890d161ba8e8c05c95557cde23893cb8764489e1c0b13ae07b1266a3ea70e15609694d8e8449404b3ccb857f5dc7be7ccb91c6c54c05c49d2853d9fd317a81dcc7e8db77e6328d20c7353af9b5ebb729e591413dc84b044cf42a9bbf49e35a1652070a0f7e630d5ce6ff6273204856cdf8926db64402324b2c5fe38db06b5b431d7d5cadeb287cef6b9c5bebe0054f918a1c1da6443855b09b84432c8cf0172820b8d2040ce977f867665ea77b5bed936e3918c27bca34a5ead567b002438a03043e85029cced60c49f1b0b13772dd7413239993e4904878c36960fce5e13ba4a1b4ef79a33a96b016b31551f20b6967a02a86ee8f540b58642e663797e7407f3ce26ee42b559007735c89a8a48db7b534566c5d5b5931b01484c416dddaa5b1cb9967d8c4eba35abcbf1e08298a5003a4f4f18c939b6ec94688c4904fb2c02238fce74c4a8f9f5c379ccb9e86cd5a80d779f164d3cd1f225389d6f95ecb6255e07a490ddb6767d01087fce6500f1db6b1f52294c4fec1f8711d7bc2428ad9b7072653231b154a9fc2509fa1fbfeb7435753f88b47914877f8a34d8f76b82d68aa25421cf30a51899ee87cc3dcb7ec3b1300ab1edb9acfca02c77f548b9031efc2354078162b0d4210056e847cfdec3a0607c7d8f6074da2f000ae85b35d766f83ab1813ba68d2614343640b5d1dd865a1fea84573f07c1e6144b0c542dd718380797fba038df10d77eb3af37c9c57800ff9eb90e819fc83a8b13b342d76614106071d735143cf7ae0f4b67702ddc32bb139c6311757770edbd0e736d84c3cc7f2b435d989c3322ad7826f9a5f6e00963e28cce7d254954b468902547a44e1d39dfd95aa4da419b487d057fa829b83e8aa7a5c19cf1657d2f2872be767416517200f83a6ee154a0ec4069cd999f1079548cdfb9f28dfa272e39c4dc12c8ddb8f2c32cbdebdc4c20fbd23ad036b2dd212f9fb531a57f74755a43a97b6b736ce3e422d101981d8f7b6b9654a9f9cd25e2a723ffb848a486639a1f3832effd840f9a752b5b2f172f6a94f5bfc8e8af2ef007ba1416c5c00196df5866ff10b7446092e8402b52eebe8e374bffc2c212070dfcc994bfb743833ebe2df9b4d36f6af6bce94fc785fbe163675596262b70afa84649f9af20399cc92e441e19c684e8264e0a0a3797bae079dc1f132e94241b3dce289a2c53d951b96593db9f7719fed4d789d0ce84d726c18a7d031a6e2320a163a0a4af1038f543e395be735d5285d4f720243110562610482009f5561b7451a0c118c27324cee80879896dc8c6a233092301a462ec83bea1fbf2ac48e771eb3092d97af9bcce71599841cfbcedd73c28d42f93e81bfd767dd9110f7c5c4ed803364b1e51843d168d425379d2a66895550d5530699c4d8388a31a58f2da71b985d9fddfd5449faef5c9cdb6346b86b9925cdbe4476ad99b856625a4ca8e7af5919c9a2ee4ffea5ebaaf41477bc530043150d116216818a43e14164183b1330a573867df28fad61164723ef15b02d7a8e3f8cb3555ad60b0fd6484d4eba40b4346388f61769e7cc68e272b675c6c3c534566233a6433ea2838184213683d91fed37643de4f239f604c9d3146f2d5373102d477dac44c30a4522ffc2fa1398540e8938336a787c713ce5694767a1ae8f47ce41fb15ea7477b612e722e64a9cf051595f27fc9ab40382731203a519704aaca0aed7e543a5817ee5f18eaf9742b61e3ce95cb844d992c9ff097888393aec1d8fb70b9ffa6252957f710ed19e220bd2234c648be63c37cbd4d802c20cf92647cb197e9bb21659a802f990468118cb558488d8164bcdf34de2ee2911737725f17629e324c747a56f50e593a15a0a8d827300819baa8ccb2c47647053e07c1ce80829497f657656b06243b27a18af3de62f70f90f657443f096463958b2f049d2c8763e250352cb4128de9ee79637a381dda26db7ee771a85631cc1683d3334de8233ec9da318707b6e2c45cb7a27e7d7afc83971360155ee87049", 0x1000}, {&(0x7f0000004040)="60d34bf2ca1af18700a332e185299a9558b71c1710728bb060ac0e3dcdea48627da78fe6637656ef6dcbb52a4c8e5d7239674b6fb9fdb64a7d3bacadd2753c7e4922820800a522ab5ee14da8e5eea4f8e44f82f1bde4decd8e2da2e164d8b3bb1529e123d8293441226477b0fac91391bac3f6552c90a68a93be32c2ff56f1404eb58a88db769d6133", 0x89}], 0x9, &(0x7f00000041c0)=[@dstopts={{0x20, 0x29, 0x37, {0x2f, 0x0, '\x00', [@ra={0x5, 0x2, 0x20}]}}}], 0x20}}], 0x3, 0x40)
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:28 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 59)

10:27:28 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xf000000, 0x0, 0x0, 0x0)

10:27:28 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x8)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1)
ppoll(&(0x7f0000001e40)=[{}], 0x300, &(0x7f0000001e80), 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r2 = io_uring_setup(0x14aa, &(0x7f0000000000)={0x0, 0x8a9e, 0x12, 0x0, 0x6d})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x4010, r2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1738.038486] FAULT_INJECTION: forcing a failure.
[ 1738.038486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1738.041392] CPU: 0 PID: 9100 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1738.042884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1738.044712] Call Trace:
[ 1738.045288]  dump_stack+0x107/0x167
[ 1738.046088]  should_fail.cold+0x5/0xa
[ 1738.046917]  _copy_from_user+0x2e/0x1b0
[ 1738.047788]  move_addr_to_kernel.part.0+0x31/0x110
[ 1738.048850]  move_addr_to_kernel+0x4f/0x70
[ 1738.049801]  io_connect+0x47a/0x610
[ 1738.050601]  ? io_prep_rw+0x1050/0x1050
[ 1738.051450]  ? __lock_acquire+0xbb1/0x5b00
[ 1738.052371]  io_issue_sqe+0x1611/0x77d0
[ 1738.053239]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1738.054398]  ? lock_chain_count+0x20/0x20
[ 1738.055301]  ? __is_insn_slot_addr+0x14c/0x290
[ 1738.056292]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1738.057441]  ? io_connect+0x610/0x610
[ 1738.058281]  ? lock_acquire+0x197/0x470
[ 1738.059138]  ? find_held_lock+0x2c/0x110
[ 1738.060016]  ? __fget_files+0x2cf/0x520
[ 1738.060876]  ? lock_downgrade+0x6d0/0x6d0
[ 1738.061806]  __io_queue_sqe+0x90/0x9d0
[ 1738.062657]  ? io_issue_sqe+0x77d0/0x77d0
[ 1738.063551]  ? __fget_files+0x2f8/0x520
[ 1738.064422]  io_submit_sqes+0x44a8/0x8610
[ 1738.065335]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1738.066433]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1738.067479]  ? find_held_lock+0x2c/0x110
[ 1738.068368]  ? io_submit_sqes+0x8610/0x8610
[ 1738.069303]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1738.070370]  ? wait_for_completion_io+0x270/0x270
[ 1738.071424]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1738.072409]  ? vfs_write+0x354/0xb10
[ 1738.073209]  ? fput_many+0x2f/0x1a0
[ 1738.074021]  ? ksys_write+0x1a9/0x260
[ 1738.074839]  ? __ia32_sys_read+0xb0/0xb0
[ 1738.075690]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.076800]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1738.077922]  do_syscall_64+0x33/0x40
[ 1738.078717]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1738.079792] RIP: 0033:0x7ff5992a9b19
[ 1738.080582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1738.084500] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1738.086127] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1738.087636] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1738.089137] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1738.090657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1738.092174] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:40 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

10:27:40 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x40000000, 0x170}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
io_uring_enter(r3, 0xbd, 0x81f4, 0x3, &(0x7f00000000c0)={[0x1]}, 0x8)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000080)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0x4, 0x0, &(0x7f0000000040)="711426ddd6f48e286a026f7c5127576fd81e684eb14975f2b6be257bb39d173f7f45432e", 0xfffffffb, 0x0, 0x0, {0x0, r7}}, 0x80000001)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:40 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:40 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:40 executing program 5:
r0 = syz_io_uring_setup(0x79aa, &(0x7f00000002c0)={0x0, 0x2000000, 0x4, 0x2, 0x219}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000040))

10:27:40 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 60)

10:27:40 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

10:27:40 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00)

[ 1750.272659] FAULT_INJECTION: forcing a failure.
[ 1750.272659] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1750.275477] CPU: 0 PID: 9128 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1750.276924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1750.278702] Call Trace:
[ 1750.279270]  dump_stack+0x107/0x167
[ 1750.280047]  should_fail.cold+0x5/0xa
[ 1750.280865]  __alloc_pages_nodemask+0x182/0x600
[ 1750.281906]  ? lock_acquire+0x197/0x470
[ 1750.282791]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1750.284068]  ? find_held_lock+0x2c/0x110
[ 1750.284937]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1750.286064]  ? lock_downgrade+0x6d0/0x6d0
[ 1750.286942]  ? mark_held_locks+0x9e/0xe0
[ 1750.287808]  alloc_pages_current+0x187/0x280
[ 1750.288741]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1750.289858]  ? replace_page_cache_page+0x1200/0x1200
[ 1750.290938]  pte_alloc_one+0x16/0x1a0
[ 1750.291741]  ? replace_page_cache_page+0x1200/0x1200
[ 1750.292836]  handle_mm_fault+0x2ab2/0x3500
[ 1750.293752]  ? __lock_acquire+0x1657/0x5b00
[ 1750.294670]  ? __pmd_alloc+0x630/0x630
[ 1750.295495]  ? vmacache_find+0x55/0x2a0
[ 1750.296349]  do_user_addr_fault+0x56e/0xc60
[ 1750.297273]  exc_page_fault+0xa2/0x1a0
[ 1750.298109]  asm_exc_page_fault+0x1e/0x30
[ 1750.298992] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1750.300137] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1750.304070] RSP: 0018:ffff888041eb77b8 EFLAGS: 00050246
[ 1750.305195] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1750.306716] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041eb7888
[ 1750.308235] RBP: ffff888041eb7888 R08: 0000000000000001 R09: ffff888041eb7907
[ 1750.309755] R10: ffffed10083d6f20 R11: 0000000000000001 R12: 0000000020000100
[ 1750.311265] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1750.312816]  _copy_from_user+0x172/0x1b0
[ 1750.313693]  move_addr_to_kernel.part.0+0x31/0x110
[ 1750.314736]  move_addr_to_kernel+0x4f/0x70
[ 1750.315694]  io_connect+0x47a/0x610
[ 1750.316466]  ? io_prep_rw+0x1050/0x1050
[ 1750.317326]  ? __lock_acquire+0xbb1/0x5b00
[ 1750.318238]  io_issue_sqe+0x1611/0x77d0
[ 1750.319097]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1750.320206]  ? lock_chain_count+0x20/0x20
[ 1750.321085]  ? __is_insn_slot_addr+0x14c/0x290
[ 1750.322058]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1750.323158]  ? io_connect+0x610/0x610
[ 1750.323973]  ? lock_acquire+0x197/0x470
[ 1750.324815]  ? find_held_lock+0x2c/0x110
[ 1750.325695]  ? __fget_files+0x2cf/0x520
[ 1750.326536]  ? lock_downgrade+0x6d0/0x6d0
[ 1750.327415]  __io_queue_sqe+0x90/0x9d0
[ 1750.328251]  ? io_issue_sqe+0x77d0/0x77d0
[ 1750.329128]  ? __fget_files+0x2f8/0x520
[ 1750.329996]  io_submit_sqes+0x44a8/0x8610
[ 1750.330906]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1750.331964]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1750.332999]  ? find_held_lock+0x2c/0x110
[ 1750.333884]  ? io_submit_sqes+0x8610/0x8610
[ 1750.334803]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1750.335826]  ? wait_for_completion_io+0x270/0x270
[ 1750.336860]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1750.337846]  ? vfs_write+0x354/0xb10
[ 1750.338637]  ? fput_many+0x2f/0x1a0
[ 1750.339406]  ? ksys_write+0x1a9/0x260
[ 1750.340208]  ? __ia32_sys_read+0xb0/0xb0
[ 1750.341074]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1750.342193]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1750.343287]  do_syscall_64+0x33/0x40
[ 1750.344074]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1750.345157] RIP: 0033:0x7ff5992a9b19
[ 1750.345949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1750.349838] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1750.351457] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1750.352955] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1750.354486] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1750.355985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1750.357487] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:40 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x484002, 0x28)
accept4$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @none}, &(0x7f00000000c0)=0xe, 0x80800)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0xa1b, &(0x7f0000000100)={0x0, 0xb922, 0x2, 0x3, 0x99, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000240))
io_uring_enter(r5, 0x3648, 0xd987, 0x0, &(0x7f0000000280)={[0x7fffffff]}, 0x8)

10:27:40 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x1800004, 0x810, r4, 0x8000000)
syz_io_uring_setup(0x51e8, &(0x7f0000000080)={0x0, 0x6a1c, 0x10, 0x3, 0x3df, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(r5, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x12}, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc3)

10:27:40 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x2cf4, &(0x7f0000000040)={0x0, 0x88ea, 0x20, 0x0, 0xa6}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_setup(0x63a7, &(0x7f0000000240)={0x0, 0xeb62, 0x2, 0x2, 0x74}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140), &(0x7f00000001c0)=<r5=>0x0)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>r6, {0x401}}, './file0\x00'})
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(r4, r5, &(0x7f0000000340)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:40 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:41 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
sendmsg$sock(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000080)="e680f26d5cbf420694caabe5ae41dc8169bb1176570fb6ef4afe3e248328776b374b45d6aee0e94be468baf4916cbb5cbcad228b630fd35cd770833560f5e0526eaf6a336359c6fa5b8fd0db9ac7a69d929109a05dc5f0f6481bf5572440e7b7a5276a2c6f1c9c5e708db7ec2e6c85466ac29ea27d0ed21723f01e3260e616ec29ab2a7057cf7cefa6cba1d832376f80d1d033636827423e03a533b0c6910cf2332e6b7ea058ed03ff8698c565f9ff7e129c56d6e4816ebc5794fd75d3e6bc58032f6a7ac05c7e928326265d29d5f369fd817f5bb84529ba94cf7a178d5b9a8c474086cbf039b897e6581a1032c0a5ff3f6acbf53273fe12", 0xf8}, {&(0x7f0000000180)="b1ebfac901f32042b4a5cb59daa28f756d2736426b491310b3cb5e36021e809003790fa60463cc2064cabf39b44f3d2688328b134901cd2780a7bcf80569aa3b3075d05b49c36d967ac4040de672f7bb93f8495dedb4b1a780b1b6a1171b30475b038b3010d72710a742fa6ec24cd02f11157204ba842de166e870be347d031c5fc9df50cded2c0658cca46b643852f26a65dc012156e39d380416f040baee7d302951d3686e3c022fdb94b8ce0b9e5c73ed351a2fc9fef22db63ef249083d594bdafc39b58fc25cb4f8d3af881407f740ec82ca45593f6692da8865010d68fd9ce22a78f23e9c5c2d7728a1dd848205ed89796575aa03e63cab018d468b37", 0xff}, {&(0x7f0000000280)="a7a7aea23f5eba91b7d4d63e27758e366a2b6c319c38dd8d5d7d031e41c2304b8ff4df2ac08096353a9f3f8e431f35283fb94f430e40877be2d59b9b34a452064399882e70d2442d6a861fb68675b40b7a9e0748ffc776121f74f14ad19c5b00c341446da61e0440f4bd35e1c615f59cdf0c99cbe99e68b7f9e9b8c08bf4b2398cde3b05ca039047d1bca39d37f8adcc853c0d7a10b76967a00043d5bc885360452f6fd1c1160091ca114ccf8bca18f7d0ee65f978dc5ff5cb8b00ea01f581b3d4edc056342b6249539c62d7bf2987b76042a3772e65d9c2cbead279323a5827026ef4f184afbd6256780cccaf4030d452ab49c37100c455b966a582b733cb7f956b99a31581879498048dcc24fda6536126ba4bf815423c00742b6a3c9c4875f3c22e9c9c16f83a0cf0002a459eec063ff8f160a91b39db5ef5330f085aac91c2cc018fcada31c0347abcf3b645d613ac43d9f2f96505b72c7c218db53761aed57c91288ab46c426bf91680c03ec492432f8b587e5aea6376f6dbb671c98e0442e37065eb4e6827f1ad39f6e714273e4dd6df092d4bab4c3fd7264ed8686d7e27ceff7b118b7c6d7586733a9150819dbd33e3207842c8b732e12c7c16e7cea327e0c68d0a201e59638ed8d119130bf4b78e71ed389b13d208871966f31ff367082d30d07d86317e2d2f23256b9da0352824c5d78ebcb4d4539732fb4adf6981a7ba1a86c6a1db590e887243de2a200199c53597964238c587e20dca266fd7a28d16b57ca7ac0d16eb888833627c88cb3f391c6d022ff1819f0dfd6827e281177e32378ebcd693617c3b79b614f6e426f6377605760686324e7b06f33410a67ebb5ae51851b4f7bd8b02bb4803446ecbda42ad2e616741cabf6f185743f18a538623594cd8148f2502b5841fd5a7f1cdbe92277fa673c94bfd8c486e9b3a1b6ad8d5044fdb717815d35f8dacc38c74e71c2f16fe42879d9ce166d144d7ed5144df01a0893f7d82bc7468c2f3910c84adb0c0abaf2c72d717431c4f63c5cc4c97d2f3943bf1c8e2e58fac25515ea0eb78a315a84187e7eed27e7005e0adbffde66498f686ee8e4d7ee69f66bec662d6396f0db492622597a7e40e72733960def5ee591b6ac2f88c8b62eab9cdf4ad2738e5318ee4e2816ed901be01ba6ebba48b39342aa01dc09148f9abd9aca857b6d3c2c8f5a88e812c4cc822bd31e9df7579928fdb8c86fd9b1e37dc482af1db6408a475a6dd2e94f0f731b76df7e54bb9628d08de4a4459a14ebabf9a5ef62ff7ca4c7883026811f0ed1a36c48c7a8238b499c022f15ad834fec6b97ffeb3724dc7aeb1c8feb5e029a592f5ec43e4243b4963ad58a1b3afc90995f8e792839b7f95746a591fe429e0f8b2501f34bc2011c791202697fd9499c8c47c133777ed0b9a6eb2fcc2879c1521bcb5fafdb9cb1f1346a290bacc04546358f2ab96302e5cbb1947b86fc8b6468060121c7da69406fe1a359bbeb2817ffa36bcdf8b86445496835f475405d6cb95137c50adece715306616010c6a14ff9c0824e36d580ef0cdb0ff0cb95dd195e5df2ca6248c12d85e8ddc4fbb4a69db3ad43b669c5c0ae00f3ec82772cebec3220145a66e9ac87ef11e5af24e893babdc7fb9ebd0746d16f99ca975e17a36da415bb828c140774676fc830640d9fb736c2994edd8835ea82feb0fc699f8e00a8379ccacb40e59f0082293ca1ab2ac9db5a84e3eef8852f0158c11dbb908f57a8978ae502a830eee06b8cdb63234734ee3ae376ff4dcaeedd059b89fcc0bc7e097540deaae719358e3707202d83300b2e9804a61be8a2eb33b425da1d34269a036ca2a36828382733bbdbad1f7ec4b73bae82306ae8a2a41b6bec6e5c7308a99c3178520a558d3dc278a189b381ce7bb5a4138cdae4ed860b8460e5789f358e67e0c0d05912c56f55465a685fa48ab507b8446eb6c86624c486c426fb1e1e111bf4947ae9ffc3affce695a32ea6b5b4a250cbb139b1bc2006323ad3ed4cff815ac9a81745a8b18f9502ec64a93a20c7fd4ec3565d119f74a093ef22c95c206483c8fe7c6d6b8f8d83bbfc79b4c9793ff425fc1f79d907361947dc870f8afa2a4ce6c1545243b42b57d1e6b5c2013aa433549120c465a7bd83a7e3cd01f442461691a73c3e977146386917caaf9a43fc5a650d40c9e20be5a06943870b7b95da545de6c8e46e3c67817e99afe54830b73362fb1bcba1d0217e7a617d9b621cd43250b0757c3ce9cf1d3d6e55ee35cca525e402abc9892636d4ad987da23d5320977103c36877a6deba65bd6c9238d48bc3f70b8a435c089110e9c1d154eb18e2bb08ea1c491018c60667d0800223361dc477c29d235e451d1822eb0ae37c036f15da15c68ff8231f2677924b9a9e8cf941dd07eeecc697ce6a94f3a80a76437f15f009359f1e3f255d8e68dae76ff9d401d77f58422e198081703e63a6a0b5ab60087062f91660e6480ee7017fa345a7e248858e6ba91513c5127944cd657eeeb9eee71d44dbda1f1d4be857ca91ab7918bfe074c46481f444f965716a3daafc23f72fd891bf710c77c995e53226456124d931d5c1698d3dc0429c4540749fe95ebe47fdc40c80b09cfb55d490e2970b0f25d7afc3472bc6c4b8b76b269ab3c61a76b2bd82e2beb46ddbddb5f0e23871b89c272fac1b52da82d04fcaa0b8d2e7e8669a73a27b733c5cec86e150199244914d4944f4ebb43421f2c63cf31accc24f3cd9cce2b08c0785b9acae9cb1f7b9133966f0bb7d7e2e93876d1aeac02cf4da12bd50f1b225ed14b4fd535c853b5b276a5eb00df542f3ac21a563f8f58105c8a642595815de067717135d0a5c65580c2bb9ba14b536771882d2d45e6f2490618a5fcb271d38ba16a187227efe3d6c2d8d45342ee4408aa30c6ea1b3faf63f42072c4de043f205b031632a4ad37d9f222006a9b198e59a545450a5602c509257f63d84197584e51fb6f85e567b18d33defef1c636bba046880b857c8d338bdacb6620647348d542fec7367057a871e2b17b77c9f9ec86f1db162e93186bc8cdfaf650b8dd882d4591c802512e170064ad382661572acf1b6be5a22436cedd4a541c2b571eebad1619058a462cfcff2b641e8935618e760b52e275edbefd28f3a16fcdf78524c389450f3ff53cf4be0ebe59cf0bcfa5336c6d696523e6577e6541176a7c016cb596b8ca1b7873f03458d9b3375b79d22f639521206d91dbb7b3221f249b247c46ceebace6d62db58767d79694c81ceeb935f1a598198c26d435c26b2d4525e199e091be75611adcf0806b16f6e7c09d47375ee9509daf08edd97a2830fb0227f3da94b55c058a5d432dadd74993d3e9949f788fbc5c3d559d2b224fd33e84d8ac75040d882f9745c416d8d3b267ac938d24d955ddd94a066ab055af0593c10ab4028b396950f86f7d166017536651b164326e561c099b2cacec492d15662a63339ed0c92fb14ea77fd0a7cf1860c9da57f8a28fb7f3f1685ea69690f7b8604cd454c92e4283104619b2b6136a8eadb3cdf08d41ba4a826a7345776594f7c3036a0235dc7e67bd0ba19339d567b93844afd5c31b994c2540152825768162633a4b8afe600aeb8d0d6deb4a912adb7307667e45bc5b93d8fd032892ada6afeb7abf0484c6da616c41d94adbae6b0d99551b5cfae7fe04b92a397ae491ab7744a004b8a994baf5630588af9515ca7c4f69997b08c1fa43f8d4635cd3a98abb665e8bffb7eab7ab3f141775007592c1828c82dd3cef28c7defa3ae5899cb2b7a7cdee903b0cf98b1024f88db1bf4a1e211baff94896906c160195fd7a3958eabf9f025fa2f43c84bb28608beb3af44b22cbaabcaa5545bde4da814b36c8338ca89e1d56c0d8000e9c624b10220e59f0a5e63eb06af7c15aeed91313a806cc4817daf85fb99093e86183ce217e9ec7eb22921ed6e8d801b5369a55f5af652d85a4e65ac8da4e61c648246b7a46afabe3f0d9459d6d734dc9e9b5010e5a1788b0003691ab8d84b19788970bc18262b976541fe72d6eeaeac0b8eba71a61452b6d7a4fecd426156071f5ee82122e1bec244a74039adac9014cd11bb9aacfb9b0eef896388528ef9728f97f3b3bf36772a6a91f937ca44f0443d21449dae12dbbb8a31c6c149bb15043a3cf7aa5fc7f837255ee044d7a8ca9a993fefd73b5e1bb4c4614f543aea49b1bc95a2f42d5c3cc2bd3543e7bef5e5179d9595482dbbe797823ce40afc93385dc03a9f0591ee930df1f36c3f6ac9eb24b150713a1bf27a21afa59e9c9e9d447b9ca6cf0732afc6d1df97c0d67b6d69a2f150e70184f9304f14f5631ee9f1889505cb56afdc4c8c5f75ffcdefc589142532ea6cb020a3d670c30c52d0ecbaff65e0f0268b722c5a63563cd271eed47ce3402fbdc8326165a7c79be211c09ec51a7cc597ee1f0c9ff64b12924afefc06285b10b16a888af7e505f95fe02fae5b58e593e06033cfa9523f65e147d4283827025fca8cde89a165d21682418427eb07185ab5e25894c3a550ebe7867fb99b6096ddd4a5f37a7f7c81259a7aee135820dae1cad93887f5d0bb6df90fe04a9e794ef2db602ec5f7f328a5f53f565a60a918df1ce54f86d80fc05a6ac7c9ef2fa63d73d8f79f6d0a0d7ac0ec6fe03a629c36f0e94c4610946c336aa5231607a415ebb5f696aad83e62dbcfcdcaf5bf25a565776995b5243df26bcf912db44e4d56e2ade01a1c6f8546e967c529fd559a0deb57ab7ee11632e0cf36e7698068d0ae537221510beee0dbd105c2ce0af803030b8d11c5b21ee017c0f97950af50ba28741224f2d471e4ea34a0cf2fffe5086abaa1d855d5734936f2aa5336b7548ae9e445a4d611bc4aa9559870aa202f41b0b0730bd2a30a1106b7c089692022c3f695c2cc6c06bb4b9b5a4fa929f7d5b0babf7f0ef787b24cc423c16f48278e381532868c67d4c386e56a1ef65b8ed9cd1e0142a68aa695f0629521edbf8456aeadca5d7ccaf82b325231872ba472eee369e3352e28bf97a43f5c5b15b418aac4fbdc16d8149a61c558cd82ced00d6fb960ab8eaa23f2e7aafba81fa77cb0dac6c34afacf97419ccbc02f5fda8dc0ec9c1d8171a371f8af6d774a45973fe3d88a4b5e6c91b7615b37e2965dc37606d4e47d4512796400d2c0b07391dc3e2b749af463f28e96bee26e051d3418634227e5bff3dac1f14f60d15ae9f28094b9140a4b552751f8f9bbe40c33558b4fe1a6ca6bea0ac127026c2fa0e6280a6f7ead1291d06e4b4e4408a1e892a9e259f7f54d40bc3db0eb7896a186bdec9aa825fdfe1bcb70e997828f9742cd83b18ee672d71da922f6b0377e25c64b5b66da73c700df7ddbcf8514480bc279276361e76f6db6f8804fd55fcbc0833e291dab6e1e4f8a37b7db11a33f143554f6d603d760cb9fed96f0009c904280b6c682af2aabe9085386fed8f9eadac3919d5efdd72183efa267e00f1e19ac8c1a9a27a47cf092d9915a6942ef02acd84836b5876a4674c13c37a8d7c7f5c77b4d3b70e97daaeac0234bb9244c3f359c80316cd1ed511a007bcd8843cafcd4d9d4ae51dcb19f7ec86dd3e4ee50c4a7cab2af2c8dfa4311f5a2f096330f3c9cb3331abf0ba8b2451dde1b5bdd05f337f0b6a8f6155781b02e1ee233fd5d342072e21bfa91aab21db152d120955d5d80d6277d1c8a8d3e58b8bda3c6bf0acbb699ed10ba78e3716cbb635e09087c72177b5ebbf596f9b577b14279be729f354ec39302809394bb65f389c4fc4680ab671ad2e75305712", 0x1000}, {&(0x7f0000001280)="946bf52c3e0034806c43efd820f760e266a0ec4d42375acafad121178f7b9fa4b0a11956eea5d6ff57f5cd35485cf4e3d1f32d82a507bde13464e9a83505a861ebf8328ea833209236deace223f4250e8044c43499d5e84fe0c0b8e59370b964edd6fac0be72aedbc27be1dbcb41464fb3b54d9e086bd0439af3c22c95dbd004a1155ed8dbe4bf21049ef0066749e605234b7f79e472f23010690b5e08d3f9a30577f5cafc6b3ab9282d72189f2861410ad78f2dfcb394da6fa7f4cb98072018c24d26ff63ea86ad8b801c59e9779add01f9cc06afed7f9ef68509c1faddd46b624751b749c22fd93691b64340c475", 0xef}, {&(0x7f0000001380)="8028b311de16d855c8888d1fc12214aa064ed222225076d8f79037f3a947fe2de31d26b32c0cbb8432560592d2f312d2a3632f9e9c108067795d889c727c61a9f25ed7abcd69758e13442b24cb7de7ce492a3fae3b9f730e1acb8d2ea924de9c12657feb8970ff961b22efddf2ff7d804e8e38c2e155b80ab362a324f6f1d3da66996d6bacc8b1b25853f3093b6dcdb4a72f38d12d79e5153a9135c374e5ab35434f03a869428c5d14956eb45caa7fb1c7ffd55b26c5e81e01e50cb4d52d5e97bcb9be56333ed0f64c472a3f2f1d1a8e133efb4950dfc08c730dc385", 0xdc}, {&(0x7f0000001480)}, {&(0x7f00000014c0)="4adf96b19f535fc18b08d1cae6652abfcf7a20b04ae73f95e64bbbb5212017b1ebc9cd996997e72f5e42a664a538b1536abb3f", 0x33}, {&(0x7f0000001500)="7073a96835ef351d00dc26df8499213e81ca76c27f8384fcf043691e90d98f51fd176212696dd04807d4a35a6b85a65487cfd9d715b503b19a1848d2e5b3c3e5fe917fc75efa8b5c68ccac3753e1b15b6915a4652cb71d1d3e8fd4c95166b36bf5b3ee6f3c1a50bf59a06ace91c5938cdc26d92242de43c8a793ed31543f446a04bd7ee7", 0x84}, {&(0x7f00000017c0)="ed0d60fb374c36f6b361decebd7097de2460ddddc4eb83243ba021393f388993c2ddef44e561d4beab0786a1049556c619c30459577a2c6d31f6b9b1d11789708fe3d3672d1ca9cb8cead283b85c2f157c92405e09e893892e13b5e90e1709009b4f905ac70a720df41566de0f31c2ab301a55454768e0eec12d17ea141c2683f6c7dbaf8657bf84b13c3466ad06fe96afa7ca4d097aca81f73c5b1c63c6ad8d101a3e986a4110a0817d506fcd7d582e488220240d47413cab4f255aa32eb4808a19861d17d92b86aa76987086f791dabd535907557dbbad7013d3fa09750302d1420c349d2061651b6c73f2f00492", 0xef}], 0x9}, 0x4000000)
open$dir(&(0x7f0000001480)='./file0\x00', 0x501480, 0x8)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = syz_io_uring_complete(0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x1, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, &(0x7f00000015c0)={0x2, 'hsr0\x00', {0x9}, 0x365})
chmod(&(0x7f0000001600)='./file0\x00', 0x154)

10:27:41 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 61)

[ 1750.852524] FAULT_INJECTION: forcing a failure.
[ 1750.852524] name failslab, interval 1, probability 0, space 0, times 0
[ 1750.855407] CPU: 1 PID: 9159 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1750.856864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1750.858626] Call Trace:
[ 1750.859190]  dump_stack+0x107/0x167
[ 1750.859966]  should_fail.cold+0x5/0xa
[ 1750.860775]  ? create_object.isra.0+0x3a/0xa30
[ 1750.861787]  should_failslab+0x5/0x20
[ 1750.862593]  kmem_cache_alloc+0x5b/0x310
[ 1750.863459]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1750.864743]  create_object.isra.0+0x3a/0xa30
[ 1750.865683]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1750.866767]  kmem_cache_alloc+0x159/0x310
[ 1750.867657]  ptlock_alloc+0x1d/0x70
[ 1750.868427]  pte_alloc_one+0x68/0x1a0
[ 1750.869239]  ? replace_page_cache_page+0x1200/0x1200
[ 1750.870322]  handle_mm_fault+0x2ab2/0x3500
[ 1750.871223]  ? __lock_acquire+0x1657/0x5b00
[ 1750.872144]  ? find_held_lock+0x2c/0x110
[ 1750.872998]  ? pgtable_bad+0x90/0x90
[ 1750.873801]  ? __pmd_alloc+0x630/0x630
[ 1750.874634]  ? vmacache_find+0x55/0x2a0
[ 1750.875488]  do_user_addr_fault+0x56e/0xc60
[ 1750.876422]  exc_page_fault+0xa2/0x1a0
[ 1750.877256]  asm_exc_page_fault+0x1e/0x30
[ 1750.878153] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1750.879404] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1750.883458] RSP: 0018:ffff88803ef777b8 EFLAGS: 00050287
[ 1750.884580] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1750.886105] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803ef77888
[ 1750.887624] RBP: ffff88803ef77888 R08: 0000000000000001 R09: ffff88803ef77907
[ 1750.889125] R10: ffffed1007deef20 R11: 0000000000000001 R12: 0000000020000100
[ 1750.890635] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1750.892174]  _copy_from_user+0x172/0x1b0
[ 1750.893038]  move_addr_to_kernel.part.0+0x31/0x110
[ 1750.894088]  move_addr_to_kernel+0x4f/0x70
[ 1750.894983]  io_connect+0x47a/0x610
[ 1750.895753]  ? io_prep_rw+0x1050/0x1050
[ 1750.896623]  ? __lock_acquire+0xbb1/0x5b00
[ 1750.897520]  io_issue_sqe+0x1611/0x77d0
[ 1750.898387]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1750.899499]  ? lock_chain_count+0x20/0x20
[ 1750.900424]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1750.901622]  ? io_connect+0x610/0x610
[ 1750.902444]  ? lock_acquire+0x197/0x470
[ 1750.903293]  ? find_held_lock+0x2c/0x110
[ 1750.904169]  ? __fget_files+0x2cf/0x520
[ 1750.905016]  ? lock_downgrade+0x6d0/0x6d0
[ 1750.905937]  __io_queue_sqe+0x90/0x9d0
[ 1750.906771]  ? io_issue_sqe+0x77d0/0x77d0
[ 1750.907643]  ? __fget_files+0x2f8/0x520
[ 1750.908513]  io_submit_sqes+0x44a8/0x8610
[ 1750.909423]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1750.910493]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1750.911525]  ? find_held_lock+0x2c/0x110
[ 1750.912402]  ? io_submit_sqes+0x8610/0x8610
[ 1750.913327]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1750.914363]  ? wait_for_completion_io+0x270/0x270
[ 1750.915380]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1750.916413]  ? vfs_write+0x354/0xb10
[ 1750.917201]  ? fput_many+0x2f/0x1a0
[ 1750.917973]  ? ksys_write+0x1a9/0x260
[ 1750.918782]  ? __ia32_sys_read+0xb0/0xb0
[ 1750.919650]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1750.920766]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1750.921879]  do_syscall_64+0x33/0x40
[ 1750.922675]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1750.923761] RIP: 0033:0x7ff5992a9b19
[ 1750.924553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1750.928477] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1750.930092] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1750.931613] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1750.933134] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1750.934655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1750.936158] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:27:55 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 62)

10:27:55 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x40000000, 0x0, 0x0, 0x0)

10:27:55 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffffffff0700, 0x0, 0x0)

10:27:55 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006c80)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000360700c4df1a5689000c000180080001"], 0x20}}, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000080)={@dev, @dev, <r3=>0x0}, &(0x7f00000000c0)=0xc)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000004740)={@initdev, <r4=>0x0}, &(0x7f0000004780)=0x14)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000004880)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000004840)={&(0x7f00000047c0)={0x6c, r2, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x9}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0xc3}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x9}, @ETHTOOL_A_RINGS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x7}]}, 0x6c}, 0x1, 0x0, 0x0, 0x801}, 0x20000f1)
r5 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000180)=<r7=>0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:55 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r5=>0x0)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0)=<r7=>0x0, &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r8=>r6, {0x401}}, './file0\x00'})
close_range(r6, r8, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000100)=<r10=>0x0)
syz_io_uring_submit(r9, r10, 0x0, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r11}}, 0x101)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x440000)
syz_io_uring_submit(r7, r5, &(0x7f0000001340)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, r8, 0x0, 0x0, 0x0, 0x1, 0x3d52be40df0c388e, {0x1, r11}}, 0xfffffffb)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r12, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r13, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r5, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r13, 0x0, &(0x7f0000000340)="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", 0x1000, 0x800, 0x1}, 0x3a)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:55 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

10:27:55 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:55 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0xb10, &(0x7f0000000240)={0x0, 0xf40c, 0x2, 0xfffffffd, 0xec, 0x0, r0}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000000980), &(0x7f0000000140))
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x19, 0x1010, r4, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x2, 0x6000, @fd_index=0xfff, 0xa7a, &(0x7f0000000040)="cb5ff8c0c4ebd636f9d40a5afbf1d4532e49ee7416e46dfe83badd80a7e74312c4ae3577895515b8a4e236c9b3f30a49a115cdfedf7e1c339424621c25a3b9000cca2b30303360376af044283e6181e7d29a2537261a9f8bce9cc541540ff7dfc48f33908c1818ee082f4668998ac49cf9b9b06304fcf527408299d7352e74bcdd7304da6ed23a7ab17384bdfef32b41536d2398267d4ef62f34ba2d2276ed5e73dd9b0ee7b8e27d24a5706dee106ae64290915ad183ca53be68010a109c6058ec5ce0fd09849421da5e0ef22d298376a0e9ab383f1857b325628ab1c8fe78ff8e20", 0xe2, 0x17, 0x2308f0ba4e31bd01, {0x0, r6}}, 0x34dc)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6000, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1, 0x4}, 0x4000)
r9 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r9, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r10 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r10, 0x0)
io_uring_enter(r10, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353, 0x0, r4}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
syz_io_uring_submit(r7, r2, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x1, 0x0, r9, &(0x7f0000000940)={0x2000}, r10, 0x3, 0x0, 0x1}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000001, 0x11, r4, 0x10000000)
syz_io_uring_submit(r5, r11, &(0x7f0000000900)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r3, 0x0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000340)=""/99, 0x63}, {&(0x7f00000003c0)=""/170, 0xaa}, {&(0x7f0000000480)=""/80, 0x50}, {&(0x7f00000001c0)=""/3, 0x3}, {&(0x7f0000000500)=""/61, 0x3d}, {&(0x7f0000000540)=""/30, 0x1e}, {&(0x7f0000000580)=""/17, 0x11}, {&(0x7f00000005c0)=""/64, 0x40}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/155, 0x9b}], 0xa, &(0x7f0000000800)=""/173, 0xad}, 0x0, 0x10060, 0x1, {0x3, r6}}, 0x18c)

[ 1764.768505] FAULT_INJECTION: forcing a failure.
[ 1764.768505] name failslab, interval 1, probability 0, space 0, times 0
[ 1764.771035] CPU: 0 PID: 9171 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1764.772488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1764.774255] Call Trace:
[ 1764.774821]  dump_stack+0x107/0x167
[ 1764.775596]  should_fail.cold+0x5/0xa
[ 1764.776413]  ? create_object.isra.0+0x3a/0xa30
[ 1764.777382]  should_failslab+0x5/0x20
[ 1764.778199]  kmem_cache_alloc+0x5b/0x310
[ 1764.779061]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1764.780338]  create_object.isra.0+0x3a/0xa30
[ 1764.781268]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1764.782358]  kmem_cache_alloc+0x159/0x310
[ 1764.783255]  ptlock_alloc+0x1d/0x70
[ 1764.784034]  pte_alloc_one+0x68/0x1a0
[ 1764.784855]  ? replace_page_cache_page+0x1200/0x1200
[ 1764.785943]  handle_mm_fault+0x2ab2/0x3500
[ 1764.786855]  ? __lock_acquire+0x1657/0x5b00
[ 1764.787778]  ? __pmd_alloc+0x630/0x630
[ 1764.788617]  ? vmacache_find+0x55/0x2a0
[ 1764.789468]  do_user_addr_fault+0x56e/0xc60
[ 1764.790463]  exc_page_fault+0xa2/0x1a0
[ 1764.791301]  asm_exc_page_fault+0x1e/0x30
[ 1764.792196] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1764.793349] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1764.797264] RSP: 0018:ffff8880400077b8 EFLAGS: 00050246
[ 1764.798407] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1764.799915] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888040007888
[ 1764.801434] RBP: ffff888040007888 R08: 0000000000000001 R09: ffff888040007907
[ 1764.802960] R10: ffffed1008000f20 R11: 0000000000000001 R12: 0000000020000100
[ 1764.804476] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1764.806038]  _copy_from_user+0x172/0x1b0
[ 1764.806908]  move_addr_to_kernel.part.0+0x31/0x110
[ 1764.807951]  move_addr_to_kernel+0x4f/0x70
[ 1764.808860]  io_connect+0x47a/0x610
[ 1764.809634]  ? io_prep_rw+0x1050/0x1050
[ 1764.810512]  ? __lock_acquire+0xbb1/0x5b00
[ 1764.811425]  io_issue_sqe+0x1611/0x77d0
[ 1764.812275]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1764.813384]  ? lock_chain_count+0x20/0x20
[ 1764.814269]  ? __is_insn_slot_addr+0x14c/0x290
[ 1764.815248]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1764.816364]  ? io_connect+0x610/0x610
[ 1764.817177]  ? lock_acquire+0x197/0x470
[ 1764.818034]  ? find_held_lock+0x2c/0x110
[ 1764.818905]  ? __fget_files+0x2cf/0x520
[ 1764.819746]  ? lock_downgrade+0x6d0/0x6d0
[ 1764.820630]  __io_queue_sqe+0x90/0x9d0
[ 1764.821467]  ? io_issue_sqe+0x77d0/0x77d0
[ 1764.822357]  ? __fget_files+0x2f8/0x520
[ 1764.823215]  io_submit_sqes+0x44a8/0x8610
[ 1764.824138]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1764.825204]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1764.826249]  ? find_held_lock+0x2c/0x110
[ 1764.827117]  ? io_submit_sqes+0x8610/0x8610
[ 1764.828037]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1764.829057]  ? wait_for_completion_io+0x270/0x270
[ 1764.830087]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1764.831074]  ? vfs_write+0x354/0xb10
[ 1764.831867]  ? fput_many+0x2f/0x1a0
[ 1764.832633]  ? ksys_write+0x1a9/0x260
[ 1764.833445]  ? __ia32_sys_read+0xb0/0xb0
[ 1764.834316]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1764.835421]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1764.836524]  do_syscall_64+0x33/0x40
[ 1764.837311]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1764.838401] RIP: 0033:0x7ff5992a9b19
[ 1764.839191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1764.843089] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1764.844707] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1764.846227] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1764.847741] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1764.849248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1764.850759] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:07 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:07 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2)

10:28:07 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

10:28:07 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xffffffe, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:07 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x8)
getsockname(r4, &(0x7f0000000040)=@generic, &(0x7f00000000c0)=0x80)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000000, 0x40010, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:07 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 63)

10:28:07 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

[ 1777.527754] FAULT_INJECTION: forcing a failure.
[ 1777.527754] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1777.529544] CPU: 1 PID: 9219 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1777.530401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1777.531402] Call Trace:
[ 1777.531758]  dump_stack+0x107/0x167
[ 1777.532202]  should_fail.cold+0x5/0xa
[ 1777.532663]  __alloc_pages_nodemask+0x182/0x600
[ 1777.533228]  ? lock_acquire+0x197/0x470
[ 1777.533709]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1777.534448]  ? find_held_lock+0x2c/0x110
[ 1777.534953]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1777.535588]  ? lock_downgrade+0x6d0/0x6d0
[ 1777.536090]  ? mark_held_locks+0x9e/0xe0
[ 1777.536585]  alloc_pages_current+0x187/0x280
[ 1777.537110]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1777.537737]  ? replace_page_cache_page+0x1200/0x1200
[ 1777.538359]  pte_alloc_one+0x16/0x1a0
[ 1777.538814]  ? replace_page_cache_page+0x1200/0x1200
[ 1777.539419]  handle_mm_fault+0x2ab2/0x3500
[ 1777.539926]  ? __lock_acquire+0x1657/0x5b00
[ 1777.540455]  ? find_held_lock+0x2c/0x110
[ 1777.540944]  ? pgtable_bad+0x90/0x90
[ 1777.541392]  ? __pmd_alloc+0x630/0x630
[ 1777.541864]  ? vmacache_find+0x55/0x2a0
[ 1777.542361]  do_user_addr_fault+0x56e/0xc60
[ 1777.542885]  exc_page_fault+0xa2/0x1a0
[ 1777.543358]  asm_exc_page_fault+0x1e/0x30
[ 1777.543855] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1777.544568] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1777.546801] RSP: 0018:ffff888040fff7b8 EFLAGS: 00050287
[ 1777.547441] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1777.548310] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888040fff888
[ 1777.549163] RBP: ffff888040fff888 R08: 0000000000000001 R09: ffff888040fff907
[ 1777.550029] R10: ffffed10081fff20 R11: 0000000000000001 R12: 0000000020000100
[ 1777.550896] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1777.551787]  _copy_from_user+0x172/0x1b0
[ 1777.552283]  move_addr_to_kernel.part.0+0x31/0x110
[ 1777.552884]  move_addr_to_kernel+0x4f/0x70
[ 1777.553402]  io_connect+0x47a/0x610
[ 1777.553834]  ? io_prep_rw+0x1050/0x1050
[ 1777.554328]  ? __lock_acquire+0xbb1/0x5b00
[ 1777.554840]  io_issue_sqe+0x1611/0x77d0
[ 1777.555326]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1777.555961]  ? lock_chain_count+0x20/0x20
[ 1777.556463]  ? __is_insn_slot_addr+0x14c/0x290
[ 1777.557010]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1777.557638]  ? io_connect+0x610/0x610
[ 1777.558102]  ? lock_acquire+0x197/0x470
[ 1777.558576]  ? find_held_lock+0x2c/0x110
[ 1777.559062]  ? __fget_files+0x2cf/0x520
[ 1777.559533]  ? lock_downgrade+0x6d0/0x6d0
[ 1777.560034]  __io_queue_sqe+0x90/0x9d0
[ 1777.560508]  ? io_issue_sqe+0x77d0/0x77d0
[ 1777.560999]  ? __fget_files+0x2f8/0x520
[ 1777.561498]  io_submit_sqes+0x44a8/0x8610
[ 1777.562026]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1777.562629]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1777.563209]  ? find_held_lock+0x2c/0x110
[ 1777.563698]  ? io_submit_sqes+0x8610/0x8610
[ 1777.564213]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1777.564787]  ? wait_for_completion_io+0x270/0x270
[ 1777.565364]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1777.565917]  ? vfs_write+0x354/0xb10
[ 1777.566391]  ? fput_many+0x2f/0x1a0
[ 1777.566830]  ? ksys_write+0x1a9/0x260
[ 1777.567290]  ? __ia32_sys_read+0xb0/0xb0
[ 1777.567791]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1777.568413]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1777.569038]  do_syscall_64+0x33/0x40
[ 1777.569492]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1777.570263] RIP: 0033:0x7ff5992a9b19
[ 1777.570740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1777.572921] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1777.573827] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1777.574684] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1777.575528] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1777.576377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1777.577219] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:07 executing program 0:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0x2010, r0, 0x8000000)
io_uring_enter(0xffffffffffffffff, 0xb97, 0x6d2c, 0x2, &(0x7f0000000040)={[0x9]}, 0x8)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x3, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:07 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x10000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)={0x2001, 0x0, 0x1a}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r4}}, 0x7fffffff)

10:28:07 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:20 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf, 0x0, 0x0)

10:28:20 executing program 5:
r0 = syz_io_uring_setup(0x79a6, &(0x7f00000002c0)={0x0, 0x5dfc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
signalfd4(r4, &(0x7f0000000080)={[0x1fffffffe0000000]}, 0x8, 0x0)
io_uring_enter(r0, 0x1c28, 0xe020, 0x1, &(0x7f00000000c0)={[0x40]}, 0x8)

10:28:20 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

10:28:20 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf)

10:28:20 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 64)

10:28:20 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x10, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:20 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xc, 0x810, r0, 0x8000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000002, 0x4000010, r0, 0x10000000)
read(r0, &(0x7f0000000080)=""/47, 0x2f)
syz_io_uring_submit(r1, r5, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0xfffffffc)

10:28:20 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1790.739778] FAULT_INJECTION: forcing a failure.
[ 1790.739778] name failslab, interval 1, probability 0, space 0, times 0
[ 1790.742534] CPU: 1 PID: 9253 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1790.743990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1790.745744] Call Trace:
[ 1790.746320]  dump_stack+0x107/0x167
[ 1790.747096]  should_fail.cold+0x5/0xa
[ 1790.747908]  ? ptlock_alloc+0x1d/0x70
[ 1790.748715]  should_failslab+0x5/0x20
[ 1790.749520]  kmem_cache_alloc+0x5b/0x310
[ 1790.750407]  ptlock_alloc+0x1d/0x70
[ 1790.751180]  pte_alloc_one+0x68/0x1a0
[ 1790.751988]  ? replace_page_cache_page+0x1200/0x1200
[ 1790.753060]  handle_mm_fault+0x2ab2/0x3500
[ 1790.753965]  ? __lock_acquire+0x1657/0x5b00
[ 1790.754894]  ? find_held_lock+0x2c/0x110
[ 1790.755748]  ? pgtable_bad+0x90/0x90
[ 1790.756535]  ? __pmd_alloc+0x630/0x630
[ 1790.757368]  ? vmacache_find+0x55/0x2a0
[ 1790.758228]  do_user_addr_fault+0x56e/0xc60
[ 1790.759152]  exc_page_fault+0xa2/0x1a0
[ 1790.759981]  asm_exc_page_fault+0x1e/0x30
[ 1790.760863] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1790.762115] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1790.766046] RSP: 0018:ffff88803f7f77b8 EFLAGS: 00050287
[ 1790.767202] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1790.768712] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803f7f7888
[ 1790.770226] RBP: ffff88803f7f7888 R08: 0000000000000001 R09: ffff88803f7f7907
[ 1790.771740] R10: ffffed1007efef20 R11: 0000000000000001 R12: 0000000020000100
[ 1790.773253] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1790.774799]  _copy_from_user+0x172/0x1b0
[ 1790.775665]  move_addr_to_kernel.part.0+0x31/0x110
[ 1790.776712]  move_addr_to_kernel+0x4f/0x70
[ 1790.777611]  io_connect+0x47a/0x610
[ 1790.778397]  ? io_prep_rw+0x1050/0x1050
[ 1790.779261]  ? __lock_acquire+0xbb1/0x5b00
[ 1790.780160]  io_issue_sqe+0x1611/0x77d0
[ 1790.781013]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1790.782120]  ? lock_chain_count+0x20/0x20
[ 1790.783012]  ? __is_insn_slot_addr+0x14c/0x290
[ 1790.783980]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1790.785095]  ? io_connect+0x610/0x610
[ 1790.785906]  ? lock_acquire+0x197/0x470
[ 1790.786759]  ? find_held_lock+0x2c/0x110
[ 1790.787629]  ? __fget_files+0x2cf/0x520
[ 1790.788471]  ? lock_downgrade+0x6d0/0x6d0
[ 1790.789358]  __io_queue_sqe+0x90/0x9d0
[ 1790.790186]  ? io_issue_sqe+0x77d0/0x77d0
[ 1790.791077]  ? __fget_files+0x2f8/0x520
[ 1790.791931]  io_submit_sqes+0x44a8/0x8610
[ 1790.792843]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1790.793895]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1790.794930]  ? find_held_lock+0x2c/0x110
[ 1790.795801]  ? io_submit_sqes+0x8610/0x8610
[ 1790.796720]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1790.797739]  ? wait_for_completion_io+0x270/0x270
[ 1790.798775]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1790.799754]  ? vfs_write+0x354/0xb10
[ 1790.800546]  ? fput_many+0x2f/0x1a0
[ 1790.801313]  ? ksys_write+0x1a9/0x260
[ 1790.802119]  ? __ia32_sys_read+0xb0/0xb0
[ 1790.802993]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1790.804100]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1790.805197]  do_syscall_64+0x33/0x40
[ 1790.805989]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1790.807077] RIP: 0033:0x7ff5992a9b19
[ 1790.807859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1790.811757] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1790.813366] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1790.814882] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1790.816385] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1790.817893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1790.819448] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 5:
r0 = syz_io_uring_setup(0x2314, &(0x7f00000002c0)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x4000010, r3, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r5, 0xf505, 0x0)
ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f00000000c0)={'\x00', 0xb4a5, 0x2, 0xd7})

10:28:21 executing program 0:
r0 = syz_io_uring_setup(0x158aa, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r3, 0x6d7c, 0xabb3, 0x2, &(0x7f0000000100)={[0x8]}, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000c, 0x38010, r3, 0x8000000)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
dup3(r5, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x5f07, &(0x7f0000000040)={0x0, 0x372b, 0x20, 0x4, 0x115, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000001340), &(0x7f00000000c0)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1, r5}}, 0x8)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, &(0x7f0000000240)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x40010, r6, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x600c00, 0x0)
flock(r4, 0x5)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00, 0x0, 0x0)

10:28:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x10, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:21 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 65)

[ 1791.302774] FAULT_INJECTION: forcing a failure.
[ 1791.302774] name failslab, interval 1, probability 0, space 0, times 0
[ 1791.305605] CPU: 0 PID: 9284 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1791.307161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1791.309028] Call Trace:
[ 1791.309643]  dump_stack+0x107/0x167
[ 1791.310481]  should_fail.cold+0x5/0xa
[ 1791.311350]  ? create_object.isra.0+0x3a/0xa30
[ 1791.312378]  should_failslab+0x5/0x20
[ 1791.313244]  kmem_cache_alloc+0x5b/0x310
[ 1791.314156]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1791.315535]  create_object.isra.0+0x3a/0xa30
[ 1791.316528]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1791.317686]  kmem_cache_alloc+0x159/0x310
[ 1791.318654]  ptlock_alloc+0x1d/0x70
[ 1791.319482]  pte_alloc_one+0x68/0x1a0
[ 1791.320349]  ? replace_page_cache_page+0x1200/0x1200
[ 1791.321495]  handle_mm_fault+0x2ab2/0x3500
[ 1791.322482]  ? __lock_acquire+0x1657/0x5b00
[ 1791.323450]  ? find_held_lock+0x2c/0x110
[ 1791.324376]  ? pgtable_bad+0x90/0x90
[ 1791.325214]  ? __pmd_alloc+0x630/0x630
[ 1791.326104]  ? vmacache_find+0x55/0x2a0
[ 1791.327029]  do_user_addr_fault+0x56e/0xc60
[ 1791.328123]  exc_page_fault+0xa2/0x1a0
[ 1791.329037]  asm_exc_page_fault+0x1e/0x30
[ 1791.329982] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1791.331323] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1791.335465] RSP: 0018:ffff88803f45f7b8 EFLAGS: 00050287
[ 1791.336662] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1791.338280] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803f45f888
[ 1791.339886] RBP: ffff88803f45f888 R08: 0000000000000001 R09: ffff88803f45f907
[ 1791.341484] R10: ffffed1007e8bf20 R11: 0000000000000001 R12: 0000000020000100
[ 1791.343091] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1791.344727]  _copy_from_user+0x172/0x1b0
[ 1791.345653]  move_addr_to_kernel.part.0+0x31/0x110
[ 1791.346771]  move_addr_to_kernel+0x4f/0x70
[ 1791.347726]  io_connect+0x47a/0x610
[ 1791.348551]  ? io_prep_rw+0x1050/0x1050
[ 1791.349465]  ? __lock_acquire+0xbb1/0x5b00
[ 1791.350441]  io_issue_sqe+0x1611/0x77d0
[ 1791.351354]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1791.352534]  ? lock_chain_count+0x20/0x20
[ 1791.353474]  ? __is_insn_slot_addr+0x14c/0x290
[ 1791.354519]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1791.355720]  ? io_connect+0x610/0x610
[ 1791.356581]  ? lock_acquire+0x197/0x470
[ 1791.357475]  ? find_held_lock+0x2c/0x110
[ 1791.358405]  ? __fget_files+0x2cf/0x520
[ 1791.359297]  ? lock_downgrade+0x6d0/0x6d0
[ 1791.360239]  __io_queue_sqe+0x90/0x9d0
[ 1791.361123]  ? io_issue_sqe+0x77d0/0x77d0
[ 1791.362058]  ? __fget_files+0x2f8/0x520
[ 1791.362988]  io_submit_sqes+0x44a8/0x8610
[ 1791.363950]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1791.365077]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1791.366160]  ? find_held_lock+0x2c/0x110
[ 1791.367094]  ? io_submit_sqes+0x8610/0x8610
[ 1791.368060]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1791.369138]  ? wait_for_completion_io+0x270/0x270
[ 1791.370211]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1791.371261]  ? vfs_write+0x354/0xb10
[ 1791.372093]  ? fput_many+0x2f/0x1a0
[ 1791.372901]  ? ksys_write+0x1a9/0x260
[ 1791.373747]  ? __ia32_sys_read+0xb0/0xb0
[ 1791.374676]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1791.375842]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1791.377004]  do_syscall_64+0x33/0x40
[ 1791.377833]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1791.378991] RIP: 0033:0x7ff5992a9b19
[ 1791.379817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1791.383911] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1791.385589] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1791.387183] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1791.388761] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1791.390353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1791.391933] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:34 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 66)

10:28:34 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000)

10:28:34 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

10:28:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(r6, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x10, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x800, 0x4, &(0x7f0000001400)=[{&(0x7f00000000c0)="516c60d9bb1bff6cdce2a4dec4d8aca42c00cc99787216e2d3b6cd770a0378eef329131947a6e719bb4506437cb7fc117128a562a788ec1c44fc019a74365df6fa29cc875863bb21cfc11e36148057fbd6658436cb67ee3d6ab0c5d71cfef7815257144a1c8d485a5badada661c27d90450e223b9bab61e7c5e5db465818137cf2adf483", 0x84, 0x1}, {&(0x7f0000000340)="bc199893095fe431f69409727b23908a042d22e3c757c85d42ea004d7a862bdb475051e92c112a0887b62d89c01ca061e31f442c8278d9ea699818fd8f31fce7ea30bde9f3ccae74be0f39971a13ce9e072a944c1795a3fe178925d0f910535fbc910511fbcd1bda65b7903717770a788447ebea03f30a77dde55928a6f8db5791deba005ad23ccc7836284b2ae90e", 0x8f, 0x8}, {&(0x7f0000000400)="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", 0x1000, 0x6}, {&(0x7f0000000240)="ed09e1cb0882422a2905bfec7042e188a293e373356f9558c8409b350b6ccdedafed74143f834cc33d2f5104959e8fb8bcf6fdcfb0634b0256294b82e9cc22a0dff73bda977e61e05a41622b042a", 0x4e, 0x5}], 0x400, &(0x7f0000001480)={[{@nodots}, {@fat=@nfs}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@dots}], [{@measure}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fowner_gt={'fowner>', 0xee01}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}]})
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, 0x1050, r4, 0xb4b08000)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000001580)='./file0\x00', &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x100)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000001500), 0x9, &(0x7f0000001640)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@access_user}, {@version_u}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}, {@privport}], [{@uid_lt={'uid<', r5}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@dont_hash}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@measure}, {@appraise_type}, {@fowner_eq={'fowner', 0x3d, r6}}, {@dont_hash}]}})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0xffffffffffffffff, r7, 0x0)
setreuid(r7, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
setreuid(r8, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000000000002000600", @ANYRES32=0xee00, @ANYBLOB="02000700", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=0xee00, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="02000500", @ANYRES32=r9, @ANYBLOB="040001000000000008000600", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0xee01, @ANYBLOB="10000400000000002000000000000000"], 0x6c, 0x1)

10:28:34 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00)

[ 1803.813785] FAULT_INJECTION: forcing a failure.
[ 1803.813785] name failslab, interval 1, probability 0, space 0, times 0
[ 1803.816135] CPU: 1 PID: 9296 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1803.817497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1803.819166] Call Trace:
[ 1803.819708]  dump_stack+0x107/0x167
[ 1803.820454]  should_fail.cold+0x5/0xa
[ 1803.821228]  should_failslab+0x5/0x20
[ 1803.821993]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1803.822901]  io_submit_sqes+0x6fe4/0x8610
[ 1803.823754]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1803.824758]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1803.825730]  ? find_held_lock+0x2c/0x110
[ 1803.826553]  ? io_submit_sqes+0x8610/0x8610
[ 1803.827417]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1803.828383]  ? wait_for_completion_io+0x270/0x270
[ 1803.829344]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1803.830265]  ? vfs_write+0x354/0xb10
[ 1803.831016]  ? fput_many+0x2f/0x1a0
[ 1803.831739]  ? ksys_write+0x1a9/0x260
[ 1803.832505]  ? __ia32_sys_read+0xb0/0xb0
[ 1803.833319]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1803.834368]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1803.835396]  do_syscall_64+0x33/0x40
[ 1803.836130]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1803.837146] RIP: 0033:0x7ff5992a9b19
[ 1803.837882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1803.841533] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1803.843026] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1803.844459] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1803.845883] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1803.847296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1803.848733] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
[ 1803.878939] loop0: detected capacity change from 0 to 4096
[ 1803.891748] FAT-fs (loop0): Unrecognized mount option "measure" or missing value
10:28:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000bcd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
dup3(0xffffffffffffffff, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

[ 1803.909974] 9pnet: Insufficient options for proto=fd
[ 1803.948484] loop0: detected capacity change from 0 to 4096
10:28:34 executing program 5:
r0 = syz_io_uring_setup(0x5521, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = socket(0x2c, 0x2, 0x5)
r9 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000100000076000000", @ANYRES32=<r10=>r9, @ANYBLOB="01ff0000000010002e2f66696c653000f21f56d1020b551e0f31167030952ac8b964e72bb1b5350f80f1df683f556c5e277b5c44a6dcc6ecee4c036eeb0746472e5192b012d9590842ed0fa515f757fd9765bbe6632eedd57bf5748af78ab7134cd1d35feeee7aa5e4efa3d0e089f1f6f379b23292b1148d4899217929882e0322d1771b5eeb0d189b0167b6ae6ee633b9a4b8b9b0073f86feb957e8e528a11d28f7224525f745a52eaaa0601107aeea2bd8182bb05435ccef3b8e2b14702a59"])
close_range(r9, r10, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r9}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r11=>0x0, &(0x7f0000000100)=<r12=>0x0)
syz_io_uring_submit(r11, r12, 0x0, 0x0)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r13}}, 0x101)
syz_io_uring_submit(r3, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r8, 0x0, 0x0, 0x0, {0x2002}, 0x0, {0x0, r13}}, 0xdc91)
r14 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r14, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1803.961828] FAT-fs (loop0): Unrecognized mount option "measure" or missing value
[ 1803.979873] 9pnet: Insufficient options for proto=fd
10:28:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4000004, 0x80010, r0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 67)

10:28:34 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, 0xffffffffffffffff, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:34 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000, 0x0, 0x0)

[ 1804.219607] FAULT_INJECTION: forcing a failure.
[ 1804.219607] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1804.222303] CPU: 0 PID: 9336 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1804.223759] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1804.225510] Call Trace:
[ 1804.226071]  dump_stack+0x107/0x167
[ 1804.226852]  should_fail.cold+0x5/0xa
[ 1804.227666]  __alloc_pages_nodemask+0x182/0x600
[ 1804.228652]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1804.229936]  alloc_pages_current+0x187/0x280
[ 1804.230887]  allocate_slab+0x26f/0x380
[ 1804.231721]  ___slab_alloc+0x470/0x700
[ 1804.232546]  ? io_submit_sqes+0x6fe4/0x8610
[ 1804.233467]  ? kmem_cache_alloc_bulk+0x1ec/0x320
[ 1804.234483]  kmem_cache_alloc_bulk+0x1ec/0x320
[ 1804.235454]  io_submit_sqes+0x6fe4/0x8610
[ 1804.236354]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1804.237396]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1804.238437]  ? find_held_lock+0x2c/0x110
[ 1804.239307]  ? io_submit_sqes+0x8610/0x8610
[ 1804.240231]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1804.241249]  ? wait_for_completion_io+0x270/0x270
[ 1804.242262]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1804.243247]  ? vfs_write+0x354/0xb10
[ 1804.244036]  ? fput_many+0x2f/0x1a0
[ 1804.244798]  ? ksys_write+0x1a9/0x260
[ 1804.245600]  ? __ia32_sys_read+0xb0/0xb0
[ 1804.246470]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1804.247573]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1804.248658]  do_syscall_64+0x33/0x40
[ 1804.249445]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1804.250525] RIP: 0033:0x7ff5992a9b19
[ 1804.251307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1804.255167] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1804.256760] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1804.258253] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1804.259766] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1804.261266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1804.262767] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1100)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r5, &(0x7f0000000140)={&(0x7f0000000080)=@generic, 0x80, &(0x7f0000001500)=[{&(0x7f0000000100)=""/62, 0x3e}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000000240)=""/95, 0x5f}, {&(0x7f0000001340)=""/252, 0xfc}, {&(0x7f0000001440)=""/175, 0xaf}], 0x5, &(0x7f0000001580)=""/66, 0x42}, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x6, 0x30, r4, 0x0)

10:28:34 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

10:28:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r4}}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:47 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 68)

10:28:47 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

10:28:47 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, 0xffffffffffffffff, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:47 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000, 0x0, 0x0)

10:28:47 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(0x0, &(0x7f00000024c0)=[{&(0x7f0000000040)=""/238, 0xee}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/235, 0xeb}, {&(0x7f0000000240)=""/101, 0x65}, {&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000002440)=""/81, 0x51}], 0x6, &(0x7f00000001c0)=[{&(0x7f0000002540)=""/166, 0xa6}, {&(0x7f0000000140)=""/38, 0x26}, {&(0x7f0000002600)=""/99, 0x63}], 0x3, 0x0)

10:28:47 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r4}}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:47 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:47 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf000000)

[ 1817.525659] FAULT_INJECTION: forcing a failure.
[ 1817.525659] name failslab, interval 1, probability 0, space 0, times 0
[ 1817.528329] CPU: 0 PID: 9369 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1817.529782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1817.531529] Call Trace:
[ 1817.532091]  dump_stack+0x107/0x167
[ 1817.532865]  should_fail.cold+0x5/0xa
[ 1817.533675]  ? create_object.isra.0+0x3a/0xa30
[ 1817.534652]  should_failslab+0x5/0x20
[ 1817.535455]  kmem_cache_alloc+0x5b/0x310
[ 1817.536313]  ? mark_held_locks+0x9e/0xe0
[ 1817.537171]  create_object.isra.0+0x3a/0xa30
[ 1817.538094]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1817.539172]  kmem_cache_alloc_bulk+0x168/0x320
[ 1817.540115]  io_submit_sqes+0x6fe4/0x8610
[ 1817.541018]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1817.542066]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1817.543110]  ? find_held_lock+0x2c/0x110
[ 1817.543970]  ? io_submit_sqes+0x8610/0x8610
[ 1817.544882]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1817.545891]  ? wait_for_completion_io+0x270/0x270
[ 1817.546911]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1817.547895]  ? vfs_write+0x354/0xb10
[ 1817.548672]  ? fput_many+0x2f/0x1a0
[ 1817.549444]  ? ksys_write+0x1a9/0x260
[ 1817.550228]  ? __ia32_sys_read+0xb0/0xb0
[ 1817.551106]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1817.552183]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1817.553278]  do_syscall_64+0x33/0x40
[ 1817.554041]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1817.555141] RIP: 0033:0x7ff5992a9b19
[ 1817.555925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1817.559806] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1817.561406] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1817.562914] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1817.564422] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1817.565915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1817.567427] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:28:47 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:47 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf000000, 0x0, 0x0)

10:28:47 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r4}}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:48 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x317}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x1442, 0x9626, 0x0, &(0x7f0000000040), 0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000080)={<r4=>0x0, <r5=>0x0})
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f00000000c0)={r4, r5+60000000}, 0x1, 0x0, 0x58a35936e78367fc, {0x0, r6}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:28:48 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_enter(r0, 0x5d59, 0x61ff, 0x1, &(0x7f0000000040)={[0x2]}, 0x8)
io_uring_enter(0xffffffffffffffff, 0x4341, 0xf7e2, 0x1, &(0x7f0000000080)={[0x7]}, 0x8)
r3 = syz_open_dev$hiddev(&(0x7f00000001c0), 0x6, 0x20601)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r3, 0x48, 0x0, 0x626aaf76}, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r5, 0x5851, 0x66e8, 0x0, &(0x7f0000000100)={[0x1]}, 0x8)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xe, 0x20010, r6, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x610001, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
lremovexattr(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)=@known='trusted.overlay.metacopy\x00')

10:28:48 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 69)

10:28:48 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r4}}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1817.912790] FAULT_INJECTION: forcing a failure.
[ 1817.912790] name failslab, interval 1, probability 0, space 0, times 0
[ 1817.915289] CPU: 0 PID: 9400 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1817.916686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1817.918379] Call Trace:
[ 1817.919012]  dump_stack+0x107/0x167
[ 1817.919934]  should_fail.cold+0x5/0xa
[ 1817.920879]  ? create_object.isra.0+0x3a/0xa30
[ 1817.921927]  should_failslab+0x5/0x20
[ 1817.922732]  kmem_cache_alloc+0x5b/0x310
[ 1817.923600]  ? mark_held_locks+0x9e/0xe0
[ 1817.924433]  create_object.isra.0+0x3a/0xa30
[ 1817.925319]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1817.926355]  kmem_cache_alloc_bulk+0x168/0x320
[ 1817.927304]  io_submit_sqes+0x6fe4/0x8610
[ 1817.928178]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1817.929198]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1817.930211]  ? find_held_lock+0x2c/0x110
[ 1817.931051]  ? io_submit_sqes+0x8610/0x8610
[ 1817.931932]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1817.932924]  ? wait_for_completion_io+0x270/0x270
[ 1817.933926]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1817.934875]  ? vfs_write+0x354/0xb10
[ 1817.935654]  ? fput_many+0x2f/0x1a0
[ 1817.936390]  ? ksys_write+0x1a9/0x260
[ 1817.937164]  ? __ia32_sys_read+0xb0/0xb0
[ 1817.938002]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1817.939103]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1817.940169]  do_syscall_64+0x33/0x40
[ 1817.940944]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1817.941985] RIP: 0033:0x7ff5992a9b19
[ 1817.942746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1817.946529] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1817.948102] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1817.949604] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1817.951115] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1817.952592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1817.954050] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:03 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

10:29:03 executing program 5:
r0 = syz_io_uring_setup(0x7ec5, &(0x7f00000002c0)={0x0, 0x0, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x100, 0x61)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
recvfrom$unix(r6, &(0x7f00000001c0)=""/44, 0x2c, 0x2120, &(0x7f0000000400)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r4, 0x7, {0x0, r3}, 0xd87, 0xc, 0x1, {0x0, r5, r3}}, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f00000000c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x1, 0x1, 0x0, {0x0, r11}}, 0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

10:29:03 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r4, r5, 0x80000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x20000000, 0x0, 0x0)

10:29:03 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, 0xffffffffffffffff, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 70)

10:29:03 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1833.318722] FAULT_INJECTION: forcing a failure.
[ 1833.318722] name failslab, interval 1, probability 0, space 0, times 0
[ 1833.321589] CPU: 0 PID: 9423 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1833.323176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1833.325066] Call Trace:
[ 1833.325668]  dump_stack+0x107/0x167
[ 1833.326484]  should_fail.cold+0x5/0xa
[ 1833.327365]  ? create_object.isra.0+0x3a/0xa30
[ 1833.328385]  should_failslab+0x5/0x20
[ 1833.329252]  kmem_cache_alloc+0x5b/0x310
[ 1833.330153]  ? mark_held_locks+0x9e/0xe0
[ 1833.331092]  create_object.isra.0+0x3a/0xa30
[ 1833.332061]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1833.333188]  kmem_cache_alloc_bulk+0x168/0x320
[ 1833.334225]  io_submit_sqes+0x6fe4/0x8610
[ 1833.335175]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1833.336278]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1833.337355]  ? find_held_lock+0x2c/0x110
[ 1833.338274]  ? io_submit_sqes+0x8610/0x8610
[ 1833.339316]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1833.340374]  ? wait_for_completion_io+0x270/0x270
[ 1833.341450]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1833.342485]  ? vfs_write+0x354/0xb10
[ 1833.343327]  ? fput_many+0x2f/0x1a0
[ 1833.344126]  ? ksys_write+0x1a9/0x260
[ 1833.344974]  ? __ia32_sys_read+0xb0/0xb0
[ 1833.345902]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1833.347096]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1833.348269]  do_syscall_64+0x33/0x40
[ 1833.349106]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1833.350247] RIP: 0033:0x7ff5992a9b19
[ 1833.351082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1833.355226] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1833.356912] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1833.358503] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1833.360105] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1833.361730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1833.363359] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:03 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x40000000, 0x0, 0x0)

10:29:03 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f0000000040)=""/110, &(0x7f00000000c0)=0x6e)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x3]}, 0x8, 0x800)
mkdirat(r4, &(0x7f0000000080)='./file0\x00', 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 71)

10:29:03 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000002, 0x20010, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r2, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:03 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1833.673382] FAULT_INJECTION: forcing a failure.
[ 1833.673382] name failslab, interval 1, probability 0, space 0, times 0
[ 1833.676079] CPU: 0 PID: 9448 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1833.677637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1833.679522] Call Trace:
[ 1833.680126]  dump_stack+0x107/0x167
[ 1833.680955]  should_fail.cold+0x5/0xa
[ 1833.681810]  ? create_object.isra.0+0x3a/0xa30
[ 1833.682825]  should_failslab+0x5/0x20
[ 1833.683687]  kmem_cache_alloc+0x5b/0x310
[ 1833.684599]  ? mark_held_locks+0x9e/0xe0
[ 1833.685514]  create_object.isra.0+0x3a/0xa30
[ 1833.686521]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1833.687680]  kmem_cache_alloc_bulk+0x168/0x320
[ 1833.688727]  io_submit_sqes+0x6fe4/0x8610
[ 1833.689721]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1833.690835]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1833.691939]  ? find_held_lock+0x2c/0x110
[ 1833.692876]  ? io_submit_sqes+0x8610/0x8610
[ 1833.693864]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1833.694976]  ? wait_for_completion_io+0x270/0x270
[ 1833.696061]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1833.697077]  ? vfs_write+0x354/0xb10
[ 1833.697895]  ? fput_many+0x2f/0x1a0
[ 1833.698695]  ? ksys_write+0x1a9/0x260
[ 1833.699545]  ? __ia32_sys_read+0xb0/0xb0
[ 1833.700444]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1833.701547]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1833.702705]  do_syscall_64+0x33/0x40
[ 1833.703518]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1833.704646] RIP: 0033:0x7ff5992a9b19
[ 1833.705474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1833.709484] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1833.711126] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1833.712653] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1833.714249] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1833.715892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1833.717512] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:17 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:18 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
shmat(0xffffffffffffffff, &(0x7f0000fff000/0x1000)=nil, 0x5000)
syz_io_uring_submit(r1, r6, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x4000, @fd=r8, 0x6, 0x6, 0x6, 0x0, 0x1, {0x2}}, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x1010, r8, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f00000000c0)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x4, &(0x7f0000000080)=[r8, r3], 0x2, 0x0, 0x1, {0x0, r10}}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r11=>r0, {0x40}}, './file0\x00'})
syz_io_uring_submit(0x0, r6, &(0x7f0000000280)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd=r11, 0x0, 0x0, 0x0, {0x489}, 0x0, {0x0, r10}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:18 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x10000000000, 0x0, 0x0)

10:29:18 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:18 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x40000000)

10:29:18 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r4, 0x400021e2, 0x3c93, 0x2, &(0x7f0000000040)={[0xb3]}, 0xfffffe70)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005b00)=[{{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/11, 0xb}, {&(0x7f0000000100)=""/5, 0x5}, {&(0x7f0000000240)=""/89, 0x59}, {&(0x7f0000001340)=""/236, 0xec}, {&(0x7f0000001440)=""/161, 0xa1}, {&(0x7f0000001500)=""/204, 0xcc}, {&(0x7f0000001600)=""/229, 0xe5}, {&(0x7f00000001c0)=""/28, 0x1c}], 0x9, &(0x7f00000017c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x88}}, {{&(0x7f0000001880), 0x6e, &(0x7f0000001a80)=[{&(0x7f0000001900)=""/71, 0x47}, {&(0x7f0000001980)=""/234, 0xea}], 0x2}}, {{&(0x7f0000001ac0), 0x6e, &(0x7f0000001c00)=[{&(0x7f0000001b40)=""/161, 0xa1}], 0x1}}, {{&(0x7f0000001c40), 0x6e, &(0x7f0000002180)=[{&(0x7f0000001cc0)=""/24, 0x18}, {&(0x7f0000001d00)=""/50, 0x32}, {&(0x7f0000001d40)=""/138, 0x8a}, {&(0x7f0000001e00)=""/224, 0xe0}, {&(0x7f0000001f00)=""/154, 0x9a}, {&(0x7f0000001fc0)=""/206, 0xce}, {&(0x7f00000020c0)=""/152, 0x98}], 0x7, &(0x7f0000002200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{0x0, 0x0, &(0x7f0000002600)=[{&(0x7f0000002240)=""/48, 0x30}, {&(0x7f0000002280)=""/144, 0x90}, {&(0x7f0000002340)=""/66, 0x42}, {&(0x7f00000023c0)=""/137, 0x89}, {&(0x7f0000002480)=""/24, 0x18}, {&(0x7f00000024c0)=""/169, 0xa9}, {&(0x7f0000002580)=""/101, 0x65}], 0x7, &(0x7f0000002680)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f00000026c0)=@abs, 0x6e, &(0x7f0000003bc0)=[{&(0x7f0000002740)=""/4096, 0x1000}, {&(0x7f0000003740)=""/116, 0x74}, {&(0x7f00000037c0)=""/109, 0x6d}, {&(0x7f0000003840)=""/131, 0x83}, {&(0x7f0000003900)=""/91, 0x5b}, {&(0x7f0000003980)=""/204, 0xcc}, {&(0x7f0000003a80)=""/68, 0x44}, {&(0x7f0000003b00)=""/136, 0x88}], 0x8}}, {{&(0x7f0000003c40)=@abs, 0x6e, &(0x7f0000005180)=[{&(0x7f0000003cc0)=""/222, 0xde}, {&(0x7f0000003dc0)=""/4096, 0x1000}, {&(0x7f0000004dc0)=""/109, 0x6d}, {&(0x7f0000004e40)=""/222, 0xde}, {&(0x7f0000004f40)=""/207, 0xcf}, {&(0x7f0000005040)=""/227, 0xe3}, {&(0x7f0000005140)=""/61, 0x3d}], 0x7, &(0x7f0000005200)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{0x0, 0x0, &(0x7f00000054c0)=[{&(0x7f0000005300)=""/219, 0xdb}, {&(0x7f0000005400)=""/135, 0x87}], 0x2}}, {{&(0x7f0000005500)=@abs, 0x6e, &(0x7f00000055c0)=[{&(0x7f0000005580)=""/52, 0x34}], 0x1}}, {{&(0x7f0000005600), 0x6e, &(0x7f0000005a40)=[{&(0x7f0000005680)=""/197, 0xc5}, {&(0x7f0000005780)=""/153, 0x99}, {&(0x7f0000005840)=""/83, 0x53}, {&(0x7f00000058c0)=""/133, 0x85}, {&(0x7f0000005980)=""/61, 0x3d}, {&(0x7f00000059c0)=""/122, 0x7a}], 0x6, &(0x7f0000005ac0)=[@cred={{0x1c}}], 0x20}}], 0xa, 0x2140, 0x0)
copy_file_range(0xffffffffffffffff, &(0x7f0000000080)=0xffffffff, r5, &(0x7f0000005d80)=0x8000, 0x9d, 0x0)

10:29:18 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 72)

10:29:18 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

[ 1847.757572] FAULT_INJECTION: forcing a failure.
[ 1847.757572] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.760387] CPU: 1 PID: 9473 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1847.761861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1847.763620] Call Trace:
[ 1847.764173]  dump_stack+0x107/0x167
[ 1847.764956]  should_fail.cold+0x5/0xa
[ 1847.765762]  ? create_object.isra.0+0x3a/0xa30
[ 1847.766725]  should_failslab+0x5/0x20
[ 1847.767560]  kmem_cache_alloc+0x5b/0x310
[ 1847.768431]  ? mark_held_locks+0x9e/0xe0
[ 1847.769301]  create_object.isra.0+0x3a/0xa30
[ 1847.770234]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1847.771323]  kmem_cache_alloc_bulk+0x168/0x320
[ 1847.772307]  io_submit_sqes+0x6fe4/0x8610
[ 1847.773216]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1847.774281]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1847.775307]  ? find_held_lock+0x2c/0x110
[ 1847.776181]  ? io_submit_sqes+0x8610/0x8610
[ 1847.777091]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1847.778105]  ? wait_for_completion_io+0x270/0x270
[ 1847.779133]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1847.780094]  ? vfs_write+0x354/0xb10
[ 1847.780887]  ? fput_many+0x2f/0x1a0
[ 1847.781653]  ? ksys_write+0x1a9/0x260
[ 1847.782461]  ? __ia32_sys_read+0xb0/0xb0
[ 1847.783337]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1847.784457]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1847.785559]  do_syscall_64+0x33/0x40
[ 1847.786360]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1847.787431] RIP: 0033:0x7ff5992a9b19
[ 1847.788212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.792122] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1847.793730] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1847.795232] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1847.796777] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.798318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.799893] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:18 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:18 executing program 0:
r0 = syz_io_uring_setup(0xf9a8, &(0x7f00000002c0)={0x0, 0x650d, 0x0, 0x0, 0x200000}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x68, 0x0, &(0x7f0000000100)=[@request_death={0x400c630e, 0x3}, @register_looper, @free_buffer, @register_looper, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000040)={@fd={0x66642a85, 0x0, r0}, @flat=@weak_handle={0x77682a85, 0xa, 0x1}, @fda={0x66646185, 0x6}}, &(0x7f00000000c0)={0x0, 0x18, 0x30}}}], 0x41, 0x0, &(0x7f0000000240)="9017ae514660abca1308391f40024dc1542ab7212acfb014104673c6009523574edcf7fa63ed76500b25cea3b410eb299d39a42ab6a3ac13125fe94bd236c032cb"})
syz_io_uring_setup(0x5fc3, &(0x7f0000000340)={0x0, 0xa6ef, 0x1, 0x1, 0x186}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r3, 0x2, 0x0, 0x9, 0x0, 0xc1eeb0171f9871c4}, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
readahead(r4, 0x826, 0x20)

10:29:18 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f00000000c0)={0x0, 0x1, 0x6, @random="7f2264cd7fc1"}, 0x10)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
signalfd4(r5, &(0x7f0000000100)={[0xc4e]}, 0x8, 0x80800)

10:29:18 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 2:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
preadv(r5, &(0x7f0000000140)=[{&(0x7f00000004c0)=""/76, 0x4c}], 0x1, 0x3, 0x1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x10b)
sendfile(0xffffffffffffffff, r6, 0x0, 0x80000001)
r7 = syz_genetlink_get_family_id$gtp(&(0x7f0000000440), r6)
r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000480), 0x10001, 0x0)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)=ANY=[@ANYBLOB="004bfc51fa1204d11d35056e1157f618000000", @ANYRES16=r7, @ANYBLOB="000027bd7000fbdbdf2502000000080002000000000008000700", @ANYRES32=r8, @ANYBLOB="080005007f00000108000500ac1414bb0c00030004000000000000000800020001000000"], 0x48}, 0x1, 0x0, 0x0, 0x48091}, 0x4)
sendmsg$GTP_CMD_DELPDP(r4, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="080029bd7000fcdbdf2501000000080009000000000008000500ac141423"], 0x24}, 0x1, 0x0, 0x0, 0x10000}, 0x815)

10:29:31 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7ffffffffffff, 0x0, 0x0)

10:29:31 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 73)

10:29:31 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x0, 0x1ff}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)={0x170, r1, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0x60, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MEDIA={0x34, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb1f}]}]}, @TIPC_NLA_SOCK={0x98, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2eb3}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3f}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffff801}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}]}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}]}, 0x170}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000)
r2 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r5, 0x40286608, &(0x7f00000001c0)={0x0, 0x8001, 0x7f96, 0x2, 0x7, 0x5})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000)

10:29:31 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x10000000000)

[ 1860.864516] FAULT_INJECTION: forcing a failure.
[ 1860.864516] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.867443] CPU: 1 PID: 9509 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1860.868915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.870621] Call Trace:
[ 1860.871313]  dump_stack+0x107/0x167
[ 1860.872085]  should_fail.cold+0x5/0xa
[ 1860.872871]  ? create_object.isra.0+0x3a/0xa30
[ 1860.873807]  should_failslab+0x5/0x20
[ 1860.874588]  kmem_cache_alloc+0x5b/0x310
[ 1860.875431]  ? mark_held_locks+0x9e/0xe0
[ 1860.876264]  create_object.isra.0+0x3a/0xa30
[ 1860.877178]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1860.878469]  kmem_cache_alloc_bulk+0x168/0x320
[ 1860.879623]  io_submit_sqes+0x6fe4/0x8610
[ 1860.880704]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1860.881751]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1860.882753]  ? find_held_lock+0x2c/0x110
[ 1860.883602]  ? io_submit_sqes+0x8610/0x8610
[ 1860.884495]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1860.885489]  ? wait_for_completion_io+0x270/0x270
[ 1860.886489]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1860.887690]  ? vfs_write+0x354/0xb10
[ 1860.888657]  ? fput_many+0x2f/0x1a0
[ 1860.889419]  ? ksys_write+0x1a9/0x260
[ 1860.890193]  ? __ia32_sys_read+0xb0/0xb0
[ 1860.891028]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.892154]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.893207]  do_syscall_64+0x33/0x40
[ 1860.893972]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.895014] RIP: 0033:0x7ff5992a9b19
[ 1860.895799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.899610] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1860.901152] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1860.902612] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1860.904087] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.905562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.907008] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:31 executing program 2:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

10:29:31 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0)
syz_io_uring_setup(0x2345, &(0x7f0000000040)={0x0, 0x519c, 0x4, 0x2, 0xe5, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
r4 = fsmount(r3, 0x1, 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x40010, r4, 0x0)

10:29:31 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 74)

10:29:31 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 2:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x11, r0, 0x10000000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r8, &(0x7f0000000280)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x4007, @fd_index=0x4, 0x8, 0x0, 0x1, 0x8, 0x0, {0x2, r9}}, 0x7c51)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r10 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r11=>r10, {0x401}}, './file0\x00'})
close_range(r10, r11, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r12=>0x0, &(0x7f0000000100)=<r13=>0x0)
syz_io_uring_submit(r12, r13, 0x0, 0x0)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r14}}, 0x101)
syz_io_uring_submit(r5, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index=0x9, 0x5, 0x0, 0x9c7a, 0x2, 0x1, {0x0, r14}}, 0x496)

[ 1861.208766] FAULT_INJECTION: forcing a failure.
[ 1861.208766] name failslab, interval 1, probability 0, space 0, times 0
[ 1861.211445] CPU: 1 PID: 9535 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1861.213199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1861.214978] Call Trace:
[ 1861.215552]  dump_stack+0x107/0x167
[ 1861.216312]  should_fail.cold+0x5/0xa
[ 1861.217093]  ? create_object.isra.0+0x3a/0xa30
[ 1861.218044]  should_failslab+0x5/0x20
[ 1861.218854]  kmem_cache_alloc+0x5b/0x310
[ 1861.219719]  ? mark_held_locks+0x9e/0xe0
[ 1861.220562]  create_object.isra.0+0x3a/0xa30
[ 1861.221479]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1861.222538]  kmem_cache_alloc_bulk+0x168/0x320
[ 1861.223493]  io_submit_sqes+0x6fe4/0x8610
[ 1861.224372]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1861.225401]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1861.226383]  ? find_held_lock+0x2c/0x110
[ 1861.227212]  ? io_submit_sqes+0x8610/0x8610
[ 1861.228133]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1861.229387]  ? wait_for_completion_io+0x270/0x270
[ 1861.230394]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1861.231569]  ? vfs_write+0x354/0xb10
[ 1861.232550]  ? fput_many+0x2f/0x1a0
[ 1861.233309]  ? ksys_write+0x1a9/0x260
[ 1861.234231]  ? __ia32_sys_read+0xb0/0xb0
[ 1861.235287]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1861.236396]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1861.237665]  do_syscall_64+0x33/0x40
[ 1861.238611]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1861.239717] RIP: 0033:0x7ff5992a9b19
[ 1861.240497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1861.244294] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1861.246009] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1861.247712] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1861.249200] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1861.250663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1861.252144] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:31 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:31 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000002, 0x810, r0, 0x0)

10:29:31 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fstat(r0, &(0x7f0000000040))

10:29:43 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:43 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 75)

10:29:43 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:43 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x7ffffffffffff)

10:29:43 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x200000000000000, 0x0, 0x0)

10:29:43 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x20, 0x0, 0x18a}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000002, 0x10, r0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x13, r0, 0x10000000)
r5 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none}, &(0x7f00000000c0)=0xe, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r0, 0x1, {0x0, r5}, 0x4, 0x3, 0x1, {0x0, 0x0, r0}}, 0x800)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x214000)
syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x5, 0x9, {0x0, r6}, 0x8, 0x8, 0x0, {0x0, 0x0, r8}}, 0x5)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x6000, @fd_index=0x1, 0x6, &(0x7f0000000800)="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", 0x1000}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r13, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r7, r11, &(0x7f00000007c0)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r13, 0x0, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000001c0)=""/50, 0x32}, {&(0x7f0000000240)=""/91, 0x5b}, {&(0x7f0000000340)=""/237, 0xed}, {&(0x7f0000000440)=""/87, 0x57}, {&(0x7f00000004c0)=""/135, 0x87}, {&(0x7f0000000580)=""/27, 0x1b}, {&(0x7f00000005c0)=""/248, 0xf8}], 0x7, &(0x7f0000000740)=""/56, 0x38}, 0x0, 0x40000002, 0x1, {0x2}}, 0x3f)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:43 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf000000)

10:29:43 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e24, @private=0xa010102}, 0x10)

[ 1873.527744] FAULT_INJECTION: forcing a failure.
[ 1873.527744] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1873.530665] CPU: 0 PID: 9567 Comm: syz-executor.3 Not tainted 5.10.246 #1
10:29:43 executing program 5:
r0 = syz_io_uring_setup(0x55b5, &(0x7f00000002c0), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3, {0xfffeffff}}, './file0\x00'})
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(r4, r5, 0x80000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1873.532196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1873.534194] Call Trace:
[ 1873.534783]  dump_stack+0x107/0x167
[ 1873.535600]  should_fail.cold+0x5/0xa
[ 1873.536468]  _copy_from_user+0x2e/0x1b0
[ 1873.537358]  move_addr_to_kernel.part.0+0x31/0x110
[ 1873.538470]  move_addr_to_kernel+0x4f/0x70
[ 1873.539404]  io_connect+0x47a/0x610
[ 1873.540249]  ? io_prep_rw+0x1050/0x1050
[ 1873.541157]  ? mark_lock+0xf5/0x2df0
[ 1873.541976]  ? lock_acquire+0x197/0x470
[ 1873.542893]  ? __lock_acquire+0xbb1/0x5b00
[ 1873.543871]  io_issue_sqe+0x1611/0x77d0
[ 1873.544792]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1873.545955]  ? lock_chain_count+0x20/0x20
[ 1873.546877]  ? __is_insn_slot_addr+0x14c/0x290
[ 1873.547930]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1873.549092]  ? io_connect+0x610/0x610
[ 1873.549939]  ? lock_acquire+0x197/0x470
[ 1873.550832]  ? find_held_lock+0x2c/0x110
[ 1873.551775]  ? __fget_files+0x2cf/0x520
[ 1873.552696]  ? lock_downgrade+0x6d0/0x6d0
[ 1873.553637]  __io_queue_sqe+0x90/0x9d0
[ 1873.554509]  ? io_issue_sqe+0x77d0/0x77d0
[ 1873.555458]  ? __fget_files+0x2f8/0x520
[ 1873.556355]  io_submit_sqes+0x44a8/0x8610
[ 1873.557292]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1873.558398]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1873.559501]  ? find_held_lock+0x2c/0x110
[ 1873.560419]  ? io_submit_sqes+0x8610/0x8610
[ 1873.561410]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1873.562479]  ? wait_for_completion_io+0x270/0x270
[ 1873.563581]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1873.564621]  ? vfs_write+0x354/0xb10
[ 1873.565438]  ? fput_many+0x2f/0x1a0
[ 1873.566264]  ? ksys_write+0x1a9/0x260
[ 1873.567132]  ? __ia32_sys_read+0xb0/0xb0
[ 1873.568059]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1873.569242]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1873.570383]  do_syscall_64+0x33/0x40
[ 1873.571227]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1873.572435] RIP: 0033:0x7ff5992a9b19
[ 1873.573281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1873.577416] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1873.579132] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1873.580723] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1873.582321] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1873.583951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1873.585541] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:43 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x548d5ed743048a23}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:43 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:43 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000040)={0x0, 0x0, 0x8, 0xfffffffc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f0000000540)=""/119, &(0x7f00000005c0)=0x77)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00'], &(0x7f00000004c0)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='\x00', &(0x7f00000002c0)='&][(!-\x00', &(0x7f0000000300)='\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='+#\x00', &(0x7f0000000480)='\x00'], 0x1500)

10:29:44 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x4bbf, &(0x7f0000000040)={0x0, 0x3dab, 0x1, 0x3, 0x3ca, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r4, &(0x7f0000000140)=0x80, &(0x7f0000000240)=@x25, 0x0, 0x80000, 0x1}, 0x7)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:44 executing program 2:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:44 executing program 5:
keyctl$get_keyring_id(0x0, 0x0, 0x4)
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000340)={0x0, 0x0, 0x1c, 0x1, 0x277}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000040)={0x0, 0x23, 0x1f}, &(0x7f00000003c0)=ANY=[@ANYBLOB="656e633d72617720686173683d636d61632d6165732d6e656f6e00000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000034f98863b07250c1b23b05e15b2afcba2ba402e9002a97bc4360233ad77c3651f16a963892066369c28f313c4af492e3dae2a700b0ab9dacfefa43adcb3792795378b38a6399d4abfef9acee0be0193716671e3747239de7866f758345be6c3faf62d40d34b217179041912cc985116bf2007c489de334478b73b4884daec28fb2f7d23cd80cfa7166973210ef0c50f19d4bb5bbfd70d43e4564c4ae75f846615b4b196b97ab01beda7a98f5ab7adfc1d846ea51a46215d6e4edbacf726488cb65a49e1a41ca192a99ca4bff94b07e"], &(0x7f0000000100)="7ac619dbaef60a22a1097a0efd8bfa43a58e234f691c3fd3690cf4eb2af35bf3a2adda", &(0x7f0000000140)=""/31)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_setup(0x52a0, &(0x7f0000000080)={0x0, 0x3fb2, 0x2, 0x3, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000240)=<r5=>0x0, &(0x7f00000002c0))
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x10)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
r10 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$set_timeout(0xf, r10, 0x5)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000002b00)={r10, 0xea, 0x88}, &(0x7f0000002d80)=ANY=[@ANYBLOB="656e633d706b63733120686173683d7368613232342d67656e6572691415630000000000000000000000000000000000000000000800000100000000000000005600"/81], &(0x7f0000002bc0)="c020575e35ce484d00a97169371088c157c25892e5ae6c54167b8824b3e0232325e178549eaf3dce5091d26e9460db12a931fa5cef442d8f2b54376398082849c6109b80bbe7e329784fba001e50e2cf360c3dcdef3e8441b4601c96c5123c4ec1c0d36ad76842e6925de3970f85630adac5c2cbd81059ca4d65569e29b582781d3f6b9c8b12f698a1f950c2867a8b3c5d967e9fc5232fcc9dad2ecb767249cf5667c14ece10678d60b70e897e358f32d6995fb9f96927bce1723f020b3b4cd07924bccac38954ba400386497029483af59788cd28425508b70b185f93c33cd64acd90cf704884482228", &(0x7f0000002cc0)=""/136)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x6818, 0x9821, 0x1, &(0x7f0000002ac0)={[0x1]}, 0x8)
syz_io_uring_submit(r5, r8, &(0x7f0000002a00)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r4, 0x0, &(0x7f00000029c0)={&(0x7f0000000500)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000300)="be9c3acd10be3956a656a5a2e62ecbb9ad", 0x11}, {&(0x7f0000000580)="70957d527075a5f701b2c01992570d653d0820f203ee8d41ffa14df4730ce50cb075f72d97384517474ec387e6f281da5860968be8d6eb66cd772a71c65e59aeacf75d1aa3b098cdff5f7dd893564808713a833687f55e60d72f54043e92eb2f009e5b12ae", 0x65}], 0x2, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x2358}, 0x0, 0x20044000}, 0x1)
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000002a40)='cifs.idmap\x00', &(0x7f0000002a80))
ioctl$SIOCGSTAMPNS(r4, 0x8907, &(0x7f00000001c0))

10:29:55 executing program 2:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:55 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:55 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00000000000000, 0x0, 0x0)

10:29:55 executing program 5:
r0 = syz_io_uring_setup(0x39cf, &(0x7f00000002c0)={0x0, 0xffffffff, 0x0, 0x0, 0x1df}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = syz_io_uring_setup(0x7d04, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2, 0xf0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8003)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200000, 0x100)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000600)=@IORING_OP_WRITE={0x17, 0x2, 0x6000, @fd_index=0x7, 0x3, &(0x7f0000000500)="87c58e6eb52177cb1ac11170e09734c1bd5b99fa14336100f80a045c229b3e4cfa09396093bcf0f85ca91fd2ef440a2e4053ee8c24ee33143bb2751b708958aa99d6b83b84d3e7dc8f3caedfebf2a7cfd0f111fb9f165e59b503383268244d9c0c0c525621b991c3dec544d31bec5fb63e9041ba35be431dee3e886636ae3719682af9c3d8a660e31bad426360a9d680ca349203078b9d1d6bf6f68d97da2f10eb57e2ec19d76f44dfeb0a27784a2b655c8238ef92ae1094f7d55d178f213249cdc020cd3f6684331f2407e5d8a8881d738df4", 0xd3, 0x10, 0x0, {0x0, r10}}, 0x2f)
syz_io_uring_setup(0x44b2, &(0x7f0000000480)={0x0, 0xbd87, 0x2, 0x1, 0x212, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000280))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
io_uring_enter(r9, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f00000000c0)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x3, &(0x7f0000000080)=[0xffffffffffffffff, r8, r9, r0, r0, r3], 0x6, 0x0, 0x1, {0x0, r11}}, 0x8a)

10:29:55 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x79d0, 0x80c1, 0x1, &(0x7f0000000040)={[0x2]}, 0x8)

10:29:55 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

10:29:55 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 76)

10:29:55 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

[ 1885.450081] FAULT_INJECTION: forcing a failure.
[ 1885.450081] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1885.452434] CPU: 0 PID: 9625 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1885.453563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1885.454919] Call Trace:
[ 1885.455357]  dump_stack+0x107/0x167
[ 1885.455960]  should_fail.cold+0x5/0xa
[ 1885.456581]  __alloc_pages_nodemask+0x182/0x600
[ 1885.457351]  ? lock_acquire+0x197/0x470
[ 1885.457998]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1885.458973]  ? find_held_lock+0x2c/0x110
[ 1885.459649]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1885.460491]  ? lock_downgrade+0x6d0/0x6d0
[ 1885.461164]  ? mark_held_locks+0x9e/0xe0
[ 1885.461843]  alloc_pages_current+0x187/0x280
[ 1885.462557]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1885.463401]  ? replace_page_cache_page+0x1200/0x1200
[ 1885.464233]  pte_alloc_one+0x16/0x1a0
[ 1885.464848]  ? replace_page_cache_page+0x1200/0x1200
[ 1885.465672]  handle_mm_fault+0x2ab2/0x3500
[ 1885.466364]  ? __lock_acquire+0x1657/0x5b00
[ 1885.467064]  ? __pmd_alloc+0x630/0x630
[ 1885.467701]  ? vmacache_find+0x55/0x2a0
[ 1885.468355]  do_user_addr_fault+0x56e/0xc60
[ 1885.469084]  exc_page_fault+0xa2/0x1a0
[ 1885.469711]  asm_exc_page_fault+0x1e/0x30
[ 1885.470396] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1885.471261] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1885.474284] RSP: 0018:ffff8880411df7b8 EFLAGS: 00050246
[ 1885.475147] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1885.476315] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff8880411df888
[ 1885.477490] RBP: ffff8880411df888 R08: 0000000000000001 R09: ffff8880411df907
[ 1885.478660] R10: ffffed100823bf20 R11: 0000000000000001 R12: 0000000020000100
[ 1885.479844] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1885.481030]  _copy_from_user+0x172/0x1b0
[ 1885.481697]  move_addr_to_kernel.part.0+0x31/0x110
[ 1885.482496]  move_addr_to_kernel+0x4f/0x70
[ 1885.483184]  io_connect+0x47a/0x610
[ 1885.483783]  ? io_prep_rw+0x1050/0x1050
[ 1885.484447]  ? lock_acquire+0x197/0x470
[ 1885.485102]  ? __lock_acquire+0xbb1/0x5b00
[ 1885.485789]  io_issue_sqe+0x1611/0x77d0
[ 1885.486437]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1885.487286]  ? lock_chain_count+0x20/0x20
[ 1885.487975]  ? __is_insn_slot_addr+0x14c/0x290
[ 1885.488736]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1885.489584]  ? io_connect+0x610/0x610
[ 1885.490204]  ? lock_acquire+0x197/0x470
[ 1885.490840]  ? find_held_lock+0x2c/0x110
[ 1885.491512]  ? __fget_files+0x2cf/0x520
[ 1885.492170]  ? lock_downgrade+0x6d0/0x6d0
[ 1885.492855]  __io_queue_sqe+0x90/0x9d0
[ 1885.493495]  ? io_issue_sqe+0x77d0/0x77d0
[ 1885.494166]  ? __fget_files+0x2f8/0x520
[ 1885.494835]  io_submit_sqes+0x44a8/0x8610
[ 1885.495532]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1885.496349]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1885.497138]  ? find_held_lock+0x2c/0x110
[ 1885.497795]  ? io_submit_sqes+0x8610/0x8610
[ 1885.498505]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1885.499293]  ? wait_for_completion_io+0x270/0x270
[ 1885.500093]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1885.500849]  ? vfs_write+0x354/0xb10
[ 1885.501464]  ? fput_many+0x2f/0x1a0
[ 1885.502058]  ? ksys_write+0x1a9/0x260
[ 1885.502685]  ? __ia32_sys_read+0xb0/0xb0
[ 1885.503340]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1885.504199]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1885.505051]  do_syscall_64+0x33/0x40
[ 1885.505672]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1885.506503] RIP: 0033:0x7ff5992a9b19
[ 1885.507112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1885.510141] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1885.511382] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1885.512562] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1885.513731] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1885.514886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1885.516057] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:29:55 executing program 2:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:55 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000040))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
pread64(r4, &(0x7f0000000500)=""/61, 0x3d, 0x200000000008)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>r6, {0x401}}, './file0\x00'})
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, r3, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x35}}, 0x2, 0x2, 0x2, 0x2}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000080)="eefae549d0efc1bc29b2e31aed3d208ba6f6753cbe455dce57f9d64648e538c9fc60f2e675484db37f", 0x29}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1b0}, 0x0, 0x1, 0x0, {0x0, r10}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:55 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2, 0x1000, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:55 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
ioctl$FIOCLEX(0xffffffffffffffff, 0x5451)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x200000000000000)

10:29:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x6, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000002400)=[{&(0x7f00000000c0)=""/65, 0x41}, {&(0x7f0000000340)=""/139, 0x8b}, {&(0x7f0000000140)=""/28, 0x1c}, {&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000000240)=""/111, 0x6f}], 0x6, &(0x7f0000002480)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32=<r4=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="0000000018000000000000400100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x70}, 0x40012001)
syz_io_uring_setup(0x5f50, &(0x7f0000002500)={0x0, 0xae00, 0x0, 0x2, 0xb7, 0x0, r4}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000002580), &(0x7f00000025c0))

10:29:56 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

10:29:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x40000000)

10:29:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:29:56 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 77)

10:29:56 executing program 5:
r0 = syz_io_uring_setup(0xf61, &(0x7f00000002c0)={0x0, 0x821e}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, &(0x7f0000000040)=""/93, &(0x7f00000000c0)=0x5d)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$FIGETBSZ(r4, 0x2, &(0x7f0000000100))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1886.137722] FAULT_INJECTION: forcing a failure.
[ 1886.137722] name failslab, interval 1, probability 0, space 0, times 0
[ 1886.139387] CPU: 0 PID: 9675 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1886.140316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1886.141422] Call Trace:
[ 1886.141784]  dump_stack+0x107/0x167
[ 1886.142282]  should_fail.cold+0x5/0xa
[ 1886.142798]  ? ptlock_alloc+0x1d/0x70
[ 1886.143308]  should_failslab+0x5/0x20
[ 1886.143830]  kmem_cache_alloc+0x5b/0x310
[ 1886.144383]  ptlock_alloc+0x1d/0x70
[ 1886.144878]  pte_alloc_one+0x68/0x1a0
[ 1886.145388]  ? replace_page_cache_page+0x1200/0x1200
[ 1886.146072]  handle_mm_fault+0x2ab2/0x3500
[ 1886.146649]  ? __lock_acquire+0x1657/0x5b00
[ 1886.147224]  ? __pmd_alloc+0x630/0x630
[ 1886.147771]  ? vmacache_find+0x55/0x2a0
[ 1886.148316]  do_user_addr_fault+0x56e/0xc60
[ 1886.148919]  exc_page_fault+0xa2/0x1a0
[ 1886.149444]  asm_exc_page_fault+0x1e/0x30
[ 1886.150006] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1886.150732] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1886.153218] RSP: 0018:ffff8880403a77b8 EFLAGS: 00050246
[ 1886.153934] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1886.154894] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff8880403a7888
[ 1886.155859] RBP: ffff8880403a7888 R08: 0000000000000001 R09: ffff8880403a7907
[ 1886.156830] R10: ffffed1008074f20 R11: 0000000000000001 R12: 0000000020000100
[ 1886.157804] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1886.158799]  _copy_from_user+0x172/0x1b0
[ 1886.159353]  move_addr_to_kernel.part.0+0x31/0x110
[ 1886.160007]  move_addr_to_kernel+0x4f/0x70
[ 1886.160573]  io_connect+0x47a/0x610
[ 1886.161065]  ? io_prep_rw+0x1050/0x1050
[ 1886.161604]  ? lock_acquire+0x197/0x470
[ 1886.162153]  ? __lock_acquire+0xbb1/0x5b00
[ 1886.162720]  io_issue_sqe+0x1611/0x77d0
[ 1886.163257]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1886.163965]  ? lock_chain_count+0x20/0x20
[ 1886.164538]  ? __is_insn_slot_addr+0x14c/0x290
[ 1886.165143]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1886.165839]  ? io_connect+0x610/0x610
[ 1886.166349]  ? lock_acquire+0x197/0x470
[ 1886.166889]  ? find_held_lock+0x2c/0x110
[ 1886.167453]  ? __fget_files+0x2cf/0x520
[ 1886.167999]  ? lock_downgrade+0x6d0/0x6d0
[ 1886.168555]  __io_queue_sqe+0x90/0x9d0
[ 1886.169080]  ? io_issue_sqe+0x77d0/0x77d0
[ 1886.169637]  ? __fget_files+0x2f8/0x520
[ 1886.170183]  io_submit_sqes+0x44a8/0x8610
[ 1886.170760]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1886.171431]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1886.172081]  ? io_submit_sqes+0x8610/0x8610
[ 1886.172664]  ? recalibrate_cpu_khz+0x10/0x10
[ 1886.173241]  ? ktime_get+0x158/0x1f0
[ 1886.173745]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1886.174331]  ? clockevents_program_event+0x131/0x360
[ 1886.175009]  ? tick_program_event+0xa8/0x140
[ 1886.175599]  ? hrtimer_interrupt+0x771/0x9b0
[ 1886.176209]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1886.176905]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1886.177596]  do_syscall_64+0x33/0x40
[ 1886.178099]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1886.178774] RIP: 0033:0x7ff5992a9b19
[ 1886.179266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1886.181719] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1886.182718] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1886.183685] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1886.184637] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1886.185580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1886.186538] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:30:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00000000000000)

10:30:08 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x10000000000)

10:30:08 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000000000000000, 0x0, 0x0)

10:30:08 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_setup(0x2af3, &(0x7f0000000040)={0x0, 0x74b3, 0x0, 0x1, 0x14e}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r5=>0x0)
syz_io_uring_submit(r1, r5, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x8)
pread64(r4, &(0x7f0000000000)=""/59, 0x3b, 0x8)
fsmount(r4, 0x0, 0xc)

10:30:08 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 78)

10:30:08 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xce96, 0x8, 0x0, 0x183}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1898.368331] FAULT_INJECTION: forcing a failure.
[ 1898.368331] name failslab, interval 1, probability 0, space 0, times 0
[ 1898.370350] CPU: 0 PID: 9702 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1898.371374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1898.372618] Call Trace:
[ 1898.373026]  dump_stack+0x107/0x167
[ 1898.373581]  should_fail.cold+0x5/0xa
[ 1898.374162]  ? create_object.isra.0+0x3a/0xa30
[ 1898.374851]  should_failslab+0x5/0x20
[ 1898.375426]  kmem_cache_alloc+0x5b/0x310
[ 1898.376087]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1898.376993]  create_object.isra.0+0x3a/0xa30
[ 1898.377660]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1898.378428]  kmem_cache_alloc+0x159/0x310
[ 1898.379059]  ptlock_alloc+0x1d/0x70
[ 1898.379624]  pte_alloc_one+0x68/0x1a0
[ 1898.380200]  ? replace_page_cache_page+0x1200/0x1200
[ 1898.380951]  handle_mm_fault+0x2ab2/0x3500
[ 1898.381591]  ? mark_held_locks+0x9e/0xe0
[ 1898.382195]  ? __pmd_alloc+0x630/0x630
[ 1898.382790]  ? vmacache_find+0x55/0x2a0
[ 1898.383385]  do_user_addr_fault+0x56e/0xc60
[ 1898.384047]  exc_page_fault+0xa2/0x1a0
[ 1898.384631]  asm_exc_page_fault+0x1e/0x30
[ 1898.385251] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1898.386055] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1898.388812] RSP: 0018:ffff88803efbf7b8 EFLAGS: 00050246
[ 1898.389606] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1898.390659] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88803efbf888
[ 1898.391801] RBP: ffff88803efbf888 R08: 0000000000000001 R09: ffff88803efbf907
[ 1898.392976] R10: ffffed1007df7f20 R11: 0000000000000001 R12: 0000000020000100
[ 1898.394109] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1898.395292]  _copy_from_user+0x172/0x1b0
[ 1898.395956]  move_addr_to_kernel.part.0+0x31/0x110
[ 1898.396751]  move_addr_to_kernel+0x4f/0x70
[ 1898.397439]  io_connect+0x47a/0x610
[ 1898.398029]  ? io_prep_rw+0x1050/0x1050
[ 1898.398698]  ? __lock_acquire+0xbb1/0x5b00
[ 1898.399382]  io_issue_sqe+0x1611/0x77d0
[ 1898.400027]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1898.400882]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1898.401750]  ? trace_hardirqs_on+0x5b/0x180
[ 1898.402445]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1898.403327]  ? io_connect+0x610/0x610
[ 1898.403938]  ? lock_acquire+0x1b9/0x470
[ 1898.404575]  ? find_held_lock+0x2c/0x110
[ 1898.405235]  ? __fget_files+0x2cf/0x520
[ 1898.405874]  ? lock_downgrade+0x6d0/0x6d0
[ 1898.406556]  __io_queue_sqe+0x90/0x9d0
[ 1898.407142]  ? io_issue_sqe+0x77d0/0x77d0
[ 1898.407798]  ? __fget_files+0x2f8/0x520
[ 1898.408423]  io_submit_sqes+0x44a8/0x8610
[ 1898.409117]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1898.409919]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1898.410704]  ? find_held_lock+0x2c/0x110
[ 1898.411367]  ? io_submit_sqes+0x8610/0x8610
[ 1898.412062]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1898.412846]  ? wait_for_completion_io+0x270/0x270
[ 1898.413626]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1898.414386]  ? vfs_write+0x354/0xb10
[ 1898.414952]  ? fput_many+0x2f/0x1a0
[ 1898.415525]  ? ksys_write+0x1a9/0x260
[ 1898.416138]  ? __ia32_sys_read+0xb0/0xb0
[ 1898.416795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1898.417650]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1898.418491]  do_syscall_64+0x33/0x40
[ 1898.419085]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1898.419952] RIP: 0033:0x7ff5992a9b19
[ 1898.420551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1898.423546] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1898.424769] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1898.425923] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1898.427062] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1898.428227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1898.429385] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:30:08 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4, 0x2010, r2, 0x8000000)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x8000000)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r5 = syz_open_dev$mouse(&(0x7f0000000080), 0x7, 0x80080)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x5, 0x3}}, './file0\x00'})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x7, 0x4}}, './file0\x00'})
r1 = syz_io_uring_setup(0x79a6, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x0, 0x0, 0x20, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0xa6, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
linkat(r5, &(0x7f0000000100)='./file0\x00', r6, &(0x7f0000000140)='./file0\x00', 0x1000)
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000340)={0x0, 0x20, 0x100000000, 0x1})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:08 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x53, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_inet_SIOCGIFBRDADDR(r4, 0x8919, &(0x7f0000000040)={'ipvlan0\x00'})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
accept4(r4, &(0x7f0000000080)=@hci, &(0x7f0000000100)=0x80, 0x800)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

10:30:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:09 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

10:30:21 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 79)

10:30:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:21 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:21 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x7ffffffffffff)

10:30:21 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x80, 0x0, 0x3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x340240, 0x24, 0x2}, &(0x7f0000000080)='./file0\x00', 0x18}, 0x2)
r3 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000140)=0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:21 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

10:30:21 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffffffff0700, 0x0, 0x0)

10:30:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000400)=""/142, 0x8e}], 0x1}, 0x4f60)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_setup(0x570d, &(0x7f0000000340)={0x0, 0x1f6e, 0x0, 0x2, 0x346, 0x0, r3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0)=<r7=>0x0, &(0x7f0000000280))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r5, &(0x7f00000003c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2, r8}}, 0x80000001)
write$binfmt_aout(r0, &(0x7f00000004c0)={{0x107, 0x1f, 0x1, 0x2db, 0x2fd, 0x4, 0x372, 0x9}, "eb9dc8bb250937e0bb7eff4b90365e170e81b7c01ce409f01074792718f18f8c85b604252387d8333da6705f0f24cd0ea4384f8dc7d2576e0318d8069f90dde0516fe30ff02a8329e531ff13dc", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa6d)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r5, &(0x7f00000000c0)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000040)=@nfc_llcp={0x27, 0x0, 0x1, 0x2, 0x0, 0x9, "01b4c0bc99636d0fa8ce1ef40aac7d26c99fdcdbc6fcabc4afc8b16c9343defb242d01226cd7583522b1d01a0be29eada6483b36cbc44119089a5b9717529b", 0xb}, 0x0, 0x0, 0x1}, 0x4)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1911.582685] FAULT_INJECTION: forcing a failure.
[ 1911.582685] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1911.584283] CPU: 1 PID: 9746 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1911.585022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1911.585917] Call Trace:
[ 1911.586236]  dump_stack+0x107/0x167
[ 1911.586661]  should_fail.cold+0x5/0xa
[ 1911.587102]  __alloc_pages_nodemask+0x182/0x600
[ 1911.587635]  ? lock_acquire+0x197/0x470
[ 1911.588083]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1911.588779]  ? find_held_lock+0x2c/0x110
[ 1911.589237]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 1911.589797]  ? lock_downgrade+0x6d0/0x6d0
[ 1911.590244]  ? mark_held_locks+0x9e/0xe0
[ 1911.590711]  alloc_pages_current+0x187/0x280
[ 1911.591196]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 1911.591774]  ? replace_page_cache_page+0x1200/0x1200
[ 1911.592336]  pte_alloc_one+0x16/0x1a0
[ 1911.592774]  ? replace_page_cache_page+0x1200/0x1200
[ 1911.593355]  handle_mm_fault+0x2ab2/0x3500
[ 1911.593840]  ? __lock_acquire+0x1657/0x5b00
[ 1911.594337]  ? find_held_lock+0x2c/0x110
[ 1911.594805]  ? pgtable_bad+0x90/0x90
[ 1911.595234]  ? __pmd_alloc+0x630/0x630
[ 1911.595687]  ? vmacache_find+0x55/0x2a0
[ 1911.596162]  do_user_addr_fault+0x56e/0xc60
[ 1911.596666]  exc_page_fault+0xa2/0x1a0
[ 1911.597114]  asm_exc_page_fault+0x1e/0x30
[ 1911.597591] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1911.598232] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1911.600357] RSP: 0018:ffff888041fb77b8 EFLAGS: 00050287
[ 1911.600967] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1911.601746] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041fb7888
[ 1911.602574] RBP: ffff888041fb7888 R08: 0000000000000001 R09: ffff888041fb7907
[ 1911.603369] R10: ffffed10083f6f20 R11: 0000000000000001 R12: 0000000020000100
[ 1911.604196] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1911.604992]  _copy_from_user+0x172/0x1b0
[ 1911.605465]  move_addr_to_kernel.part.0+0x31/0x110
[ 1911.606002]  move_addr_to_kernel+0x4f/0x70
[ 1911.606494]  io_connect+0x47a/0x610
[ 1911.606914]  ? io_prep_rw+0x1050/0x1050
[ 1911.607378]  ? lock_acquire+0x197/0x470
[ 1911.607811]  ? __lock_acquire+0xbb1/0x5b00
[ 1911.608309]  io_issue_sqe+0x1611/0x77d0
[ 1911.608770]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1911.609373]  ? lock_chain_count+0x20/0x20
[ 1911.609850]  ? __is_insn_slot_addr+0x14c/0x290
[ 1911.610379]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1911.610950]  ? io_connect+0x610/0x610
[ 1911.611398]  ? lock_acquire+0x197/0x470
[ 1911.611832]  ? find_held_lock+0x2c/0x110
[ 1911.612311]  ? __fget_files+0x2cf/0x520
[ 1911.612766]  ? lock_downgrade+0x6d0/0x6d0
[ 1911.613254]  __io_queue_sqe+0x90/0x9d0
[ 1911.613705]  ? io_issue_sqe+0x77d0/0x77d0
[ 1911.614192]  ? __fget_files+0x2f8/0x520
[ 1911.614658]  io_submit_sqes+0x44a8/0x8610
[ 1911.615148]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1911.615716]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1911.616251]  ? find_held_lock+0x2c/0x110
[ 1911.616717]  ? io_submit_sqes+0x8610/0x8610
[ 1911.617193]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1911.617746]  ? wait_for_completion_io+0x270/0x270
[ 1911.618274]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1911.618773]  ? vfs_write+0x354/0xb10
[ 1911.619176]  ? fput_many+0x2f/0x1a0
[ 1911.619569]  ? ksys_write+0x1a9/0x260
[ 1911.619978]  ? __ia32_sys_read+0xb0/0xb0
[ 1911.620462]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1911.621026]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1911.621618]  do_syscall_64+0x33/0x40
[ 1911.622027]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1911.622620] RIP: 0033:0x7ff5992a9b19
[ 1911.623023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1911.625146] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1911.625964] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1911.626734] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1911.627504] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1911.628277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1911.629040] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:30:35 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

10:30:35 executing program 0:
sendmsg$IEEE802154_LLSEC_LIST_DEV(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ac, 0x709e, 0x0, 0x0, 0x0)

10:30:35 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {0x0}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 80)

10:30:35 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2)

10:30:35 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

[ 1924.916384] FAULT_INJECTION: forcing a failure.
[ 1924.916384] name failslab, interval 1, probability 0, space 0, times 0
[ 1924.918850] CPU: 0 PID: 9775 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1924.920314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1924.922072] Call Trace:
[ 1924.922637]  dump_stack+0x107/0x167
[ 1924.923414]  should_fail.cold+0x5/0xa
[ 1924.924235]  ? ptlock_alloc+0x1d/0x70
[ 1924.925043]  should_failslab+0x5/0x20
[ 1924.925852]  kmem_cache_alloc+0x5b/0x310
[ 1924.926723]  ptlock_alloc+0x1d/0x70
[ 1924.927499]  pte_alloc_one+0x68/0x1a0
[ 1924.928326]  ? replace_page_cache_page+0x1200/0x1200
[ 1924.929417]  handle_mm_fault+0x2ab2/0x3500
[ 1924.930323]  ? __lock_acquire+0x1657/0x5b00
[ 1924.931238]  ? find_held_lock+0x2c/0x110
[ 1924.932097]  ? pgtable_bad+0x90/0x90
[ 1924.932898]  ? __pmd_alloc+0x630/0x630
[ 1924.933736]  ? vmacache_find+0x55/0x2a0
[ 1924.934591]  do_user_addr_fault+0x56e/0xc60
[ 1924.935522]  exc_page_fault+0xa2/0x1a0
[ 1924.936379]  asm_exc_page_fault+0x1e/0x30
[ 1924.937270] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1924.938527] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1924.942443] RSP: 0018:ffff888041f5f7b8 EFLAGS: 00050287
[ 1924.943594] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1924.945112] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041f5f888
[ 1924.946643] RBP: ffff888041f5f888 R08: 0000000000000001 R09: ffff888041f5f907
[ 1924.948156] R10: ffffed10083ebf20 R11: 0000000000000001 R12: 0000000020000100
[ 1924.949697] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1924.951250]  _copy_from_user+0x172/0x1b0
[ 1924.952122]  move_addr_to_kernel.part.0+0x31/0x110
[ 1924.953179]  move_addr_to_kernel+0x4f/0x70
[ 1924.954079]  io_connect+0x47a/0x610
[ 1924.954861]  ? io_prep_rw+0x1050/0x1050
[ 1924.955721]  ? lock_acquire+0x197/0x470
[ 1924.956582]  ? __lock_acquire+0xbb1/0x5b00
[ 1924.957492]  io_issue_sqe+0x1611/0x77d0
[ 1924.958346]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1924.959459]  ? lock_chain_count+0x20/0x20
[ 1924.960320]  ? __is_insn_slot_addr+0x14c/0x290
[ 1924.961300]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1924.962420]  ? io_connect+0x610/0x610
[ 1924.963233]  ? lock_acquire+0x197/0x470
[ 1924.964072]  ? find_held_lock+0x2c/0x110
[ 1924.964952]  ? __fget_files+0x2cf/0x520
[ 1924.965800]  ? lock_downgrade+0x6d0/0x6d0
[ 1924.966687]  __io_queue_sqe+0x90/0x9d0
[ 1924.967522]  ? io_issue_sqe+0x77d0/0x77d0
[ 1924.968534]  ? __fget_files+0x2f8/0x520
[ 1924.969397]  io_submit_sqes+0x44a8/0x8610
[ 1924.970311]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1924.971376]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1924.972427]  ? find_held_lock+0x2c/0x110
[ 1924.973295]  ? io_submit_sqes+0x8610/0x8610
[ 1924.974217]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1924.975245]  ? wait_for_completion_io+0x270/0x270
[ 1924.976289]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1924.977281]  ? vfs_write+0x354/0xb10
[ 1924.978074]  ? fput_many+0x2f/0x1a0
[ 1924.978849]  ? ksys_write+0x1a9/0x260
[ 1924.979662]  ? __ia32_sys_read+0xb0/0xb0
[ 1924.980538]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1924.981653]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1924.982750]  do_syscall_64+0x33/0x40
[ 1924.983543]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1924.984645] RIP: 0033:0x7ff5992a9b19
[ 1924.985433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1924.989348] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1924.990934] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1924.992460] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1924.993979] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1924.995499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1924.997027] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:30:35 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fstat(r0, &(0x7f0000000040))

10:30:35 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x55bc, &(0x7f0000000040)={0x0, 0x4448, 0x0, 0x1, 0xa7, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000001780)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r3, 0x0, &(0x7f0000001740)={&(0x7f0000000240)=@hci, 0x80, &(0x7f0000001600)=[{&(0x7f0000000340)=""/107, 0x6b}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/132, 0x84}, {&(0x7f0000001480)=""/205, 0xcd}, {&(0x7f0000000140)=""/22, 0x16}, {&(0x7f0000001580)=""/91, 0x5b}, {&(0x7f00000001c0)=""/24, 0x18}], 0x7, &(0x7f0000001680)=""/140, 0x8c}, 0x0, 0x40000002, 0x0, {0x1, r5}}, 0x0)

10:30:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fstat(r0, &(0x7f0000000040))

10:30:35 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x10, r0, 0x8000000)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r6 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>r6, {0x401}}, './file0\x00'})
close_range(r6, r7, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r10}}, 0x101)
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_STATX={0x15, 0x6, 0x0, r5, &(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x7ff, 0x0, 0x0, {0x0, r10}}, 0x3)

10:30:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:35 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fstat(r0, &(0x7f0000000040))

10:30:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r3, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 81)

10:30:56 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf)

10:30:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x110, r4, 0x8000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x40010, r0, 0x10000000)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x1, 0x0, 0xffffffffffffffff, 0x0, r10}, 0xffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {0x0}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

10:30:56 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x200000000000000)

[ 1946.203871] FAULT_INJECTION: forcing a failure.
[ 1946.203871] name failslab, interval 1, probability 0, space 0, times 0
[ 1946.206206] CPU: 1 PID: 9824 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1946.207482] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1946.209033] Call Trace:
[ 1946.209535]  dump_stack+0x107/0x167
[ 1946.210206]  should_fail.cold+0x5/0xa
[ 1946.210908]  ? create_object.isra.0+0x3a/0xa30
[ 1946.211743]  should_failslab+0x5/0x20
[ 1946.212434]  kmem_cache_alloc+0x5b/0x310
[ 1946.213170]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1946.214252]  create_object.isra.0+0x3a/0xa30
[ 1946.215048]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1946.215966]  kmem_cache_alloc+0x159/0x310
[ 1946.216731]  ptlock_alloc+0x1d/0x70
[ 1946.217397]  pte_alloc_one+0x68/0x1a0
[ 1946.218080]  ? replace_page_cache_page+0x1200/0x1200
[ 1946.218983]  handle_mm_fault+0x2ab2/0x3500
[ 1946.219747]  ? __lock_acquire+0x1657/0x5b00
[ 1946.220557]  ? find_held_lock+0x2c/0x110
[ 1946.221289]  ? pgtable_bad+0x90/0x90
[ 1946.221966]  ? __pmd_alloc+0x630/0x630
[ 1946.222689]  ? vmacache_find+0x55/0x2a0
[ 1946.223412]  do_user_addr_fault+0x56e/0xc60
[ 1946.224202]  exc_page_fault+0xa2/0x1a0
[ 1946.224916]  asm_exc_page_fault+0x1e/0x30
[ 1946.225678] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 1946.226738] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 1946.230071] RSP: 0018:ffff888044c377b8 EFLAGS: 00050287
[ 1946.231035] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 1946.232324] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888044c37888
[ 1946.233614] RBP: ffff888044c37888 R08: 0000000000000001 R09: ffff888044c37907
[ 1946.234893] R10: ffffed1008986f20 R11: 0000000000000001 R12: 0000000020000100
[ 1946.236176] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1946.237487]  _copy_from_user+0x172/0x1b0
[ 1946.238218]  move_addr_to_kernel.part.0+0x31/0x110
[ 1946.239102]  move_addr_to_kernel+0x4f/0x70
[ 1946.239858]  io_connect+0x47a/0x610
[ 1946.240525]  ? io_prep_rw+0x1050/0x1050
[ 1946.241253]  ? lock_acquire+0x197/0x470
[ 1946.241982]  ? __lock_acquire+0xbb1/0x5b00
[ 1946.242744]  io_issue_sqe+0x1611/0x77d0
[ 1946.243459]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1946.244398]  ? lock_chain_count+0x20/0x20
[ 1946.245175]  ? __is_insn_slot_addr+0x14c/0x290
[ 1946.245998]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1946.246937]  ? io_connect+0x610/0x610
[ 1946.247622]  ? lock_acquire+0x197/0x470
[ 1946.248330]  ? find_held_lock+0x2c/0x110
[ 1946.249068]  ? __fget_files+0x2cf/0x520
[ 1946.249775]  ? lock_downgrade+0x6d0/0x6d0
[ 1946.250518]  __io_queue_sqe+0x90/0x9d0
[ 1946.251222]  ? io_issue_sqe+0x77d0/0x77d0
[ 1946.251968]  ? __fget_files+0x2f8/0x520
[ 1946.252703]  io_submit_sqes+0x44a8/0x8610
[ 1946.253467]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1946.254344]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1946.255193]  ? find_held_lock+0x2c/0x110
[ 1946.255913]  ? io_submit_sqes+0x8610/0x8610
[ 1946.256687]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1946.257537]  ? wait_for_completion_io+0x270/0x270
[ 1946.258403]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1946.259222]  ? vfs_write+0x354/0xb10
[ 1946.259876]  ? fput_many+0x2f/0x1a0
[ 1946.260520]  ? ksys_write+0x1a9/0x260
[ 1946.261188]  ? __ia32_sys_read+0xb0/0xb0
[ 1946.261917]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1946.262852]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1946.263759]  do_syscall_64+0x33/0x40
[ 1946.264417]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1946.265336] RIP: 0033:0x7ff5992a9b19
[ 1946.265994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1946.269266] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1946.270605] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1946.271871] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1946.273128] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1946.274377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1946.275627] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:30:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r1, &(0x7f0000000000)=""/59, 0x3b, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000040))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r1, &(0x7f0000000000)=""/59, 0x3b, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:30:56 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_open_dev$vcsa(&(0x7f0000000080), 0xfff, 0x2c0)
io_uring_enter(r4, 0x64bf, 0x729e, 0x1, &(0x7f00000000c0)={[0xfffffffffffeffff]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
clock_gettime(0x0, &(0x7f00000037c0)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r4, &(0x7f0000003640)=[{{0xfffffffffffffffc, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/176, 0xb0}], 0x1, &(0x7f0000000400)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000240)=""/21, 0x15}, {&(0x7f00000004c0)=""/202, 0xca}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/168, 0xa8}, {&(0x7f0000001680)=""/212, 0xd4}, {&(0x7f0000000280)=""/51, 0x33}], 0x6, &(0x7f0000001800)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001840), 0x6e, &(0x7f0000001c80)=[{&(0x7f00000018c0)=""/197, 0xc5}, {&(0x7f00000019c0)=""/125, 0x7d}, {&(0x7f0000001a40)=""/27, 0x1b}, {&(0x7f0000001a80)=""/214, 0xd6}, {&(0x7f0000001b80)=""/204, 0xcc}], 0x5, &(0x7f0000001d00)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000001d80)=@abs, 0x6e, &(0x7f0000002000)=[{&(0x7f0000001e00)=""/23, 0x17}, {&(0x7f0000001e40)=""/37, 0x25}, {&(0x7f0000001e80)=""/156, 0x9c}, {&(0x7f0000001f40)=""/165, 0xa5}], 0x4, &(0x7f0000002040)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x110}}, {{&(0x7f0000002180)=@abs, 0x6e, &(0x7f0000002480)=[{&(0x7f0000002200)=""/73, 0x49}, {&(0x7f0000002280)=""/103, 0x67}, {&(0x7f0000002300)=""/13, 0xd}, {&(0x7f0000002340)=""/59, 0x3b}, {&(0x7f0000002380)=""/164, 0xa4}, {&(0x7f0000002440)}], 0x6, &(0x7f0000002500)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000002540)=@abs, 0x6e, &(0x7f00000035c0)=[{&(0x7f00000025c0)=""/4096, 0x1000}], 0x1, &(0x7f0000003600)=[@cred={{0x1c}}, @rights={{0x10}}], 0x30}}], 0x6, 0x1, &(0x7f0000003800)={r5, r6+60000000})
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x4, 0x20, 0x3f, 0x9, 0x0, 0x9, 0x10, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffff, 0x4, @perf_config_ext={0x3ff, 0xd8}, 0x840, 0x4aa, 0x0, 0x7, 0x1, 0x7fffffff, 0xffff, 0x0, 0x9, 0x0, 0xd1e4}, r7, 0x10, r4, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})

10:30:56 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f00000015c0)=""/108, 0x6c}, {0x0}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00)

10:31:11 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r1, &(0x7f0000000000)=""/59, 0x3b, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffffffff0700)

10:31:11 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00000000000000)

10:31:11 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 82)

10:31:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r4, r5, 0x80000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1961.317406] FAULT_INJECTION: forcing a failure.
[ 1961.317406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1961.320085] CPU: 0 PID: 9867 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1961.321541] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1961.323311] Call Trace:
[ 1961.323876]  dump_stack+0x107/0x167
[ 1961.324652]  should_fail.cold+0x5/0xa
[ 1961.325486]  _copy_from_user+0x2e/0x1b0
[ 1961.326329]  move_addr_to_kernel.part.0+0x31/0x110
[ 1961.327369]  move_addr_to_kernel+0x4f/0x70
[ 1961.328273]  io_connect+0x47a/0x610
[ 1961.329054]  ? io_prep_rw+0x1050/0x1050
[ 1961.329920]  ? __lock_acquire+0xbb1/0x5b00
[ 1961.330833]  io_issue_sqe+0x1611/0x77d0
[ 1961.331687]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1961.332811]  ? lock_chain_count+0x20/0x20
[ 1961.333697]  ? __is_insn_slot_addr+0x14c/0x290
[ 1961.334661]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1961.335770]  ? io_connect+0x610/0x610
[ 1961.336581]  ? lock_acquire+0x197/0x470
[ 1961.337439]  ? find_held_lock+0x2c/0x110
[ 1961.338316]  ? __fget_files+0x2cf/0x520
[ 1961.339172]  ? lock_downgrade+0x6d0/0x6d0
[ 1961.340073]  __io_queue_sqe+0x90/0x9d0
[ 1961.340915]  ? io_issue_sqe+0x77d0/0x77d0
[ 1961.341794]  ? __fget_files+0x2f8/0x520
[ 1961.342657]  io_submit_sqes+0x44a8/0x8610
[ 1961.343568]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.344617]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.345649]  ? find_held_lock+0x2c/0x110
[ 1961.346532]  ? io_submit_sqes+0x8610/0x8610
[ 1961.347472]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1961.348497]  ? wait_for_completion_io+0x270/0x270
[ 1961.349528]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1961.350527]  ? vfs_write+0x354/0xb10
[ 1961.351317]  ? fput_many+0x2f/0x1a0
[ 1961.352085]  ? ksys_write+0x1a9/0x260
[ 1961.352908]  ? __ia32_sys_read+0xb0/0xb0
[ 1961.353776]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1961.354895]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1961.356001]  do_syscall_64+0x33/0x40
[ 1961.356797]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1961.357907] RIP: 0033:0x7ff5992a9b19
[ 1961.358701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1961.362638] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1961.364262] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1961.365790] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1961.367301] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1961.368827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1961.370348] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:31:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r4, r5, 0x80000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r4, r5, 0x80000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:11 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x5b8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:12 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:12 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 83)

[ 1961.784482] FAULT_INJECTION: forcing a failure.
[ 1961.784482] name failslab, interval 1, probability 0, space 0, times 0
[ 1961.787432] CPU: 0 PID: 9890 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1961.788921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1961.790687] Call Trace:
[ 1961.791363]  dump_stack+0x107/0x167
[ 1961.792161]  should_fail.cold+0x5/0xa
[ 1961.793083]  ? ptlock_alloc+0x1d/0x70
[ 1961.793905]  should_failslab+0x5/0x20
[ 1961.794736]  kmem_cache_alloc+0x5b/0x310
[ 1961.795613]  ptlock_alloc+0x1d/0x70
[ 1961.796383]  pte_alloc_one+0x68/0x1a0
[ 1961.797204]  ? replace_page_cache_page+0x1200/0x1200
[ 1961.798245]  handle_mm_fault+0x2ab2/0x3500
[ 1961.799153]  ? __lock_acquire+0x1657/0x5b00
[ 1961.800071]  ? __pmd_alloc+0x630/0x630
[ 1961.800908]  ? vmacache_find+0x55/0x2a0
[ 1961.801725]  do_user_addr_fault+0x56e/0xc60
[ 1961.802614]  exc_page_fault+0xa2/0x1a0
[ 1961.803445]  asm_exc_page_fault+0x1e/0x30
[ 1961.804325] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1961.805470] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1961.809318] RSP: 0018:ffff888041ee77b8 EFLAGS: 00050246
[ 1961.810460] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1961.811943] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041ee7888
[ 1961.813422] RBP: ffff888041ee7888 R08: 0000000000000001 R09: ffff888041ee7907
[ 1961.814883] R10: ffffed10083dcf20 R11: 0000000000000001 R12: 0000000020000100
[ 1961.816348] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1961.817846]  _copy_from_user+0x172/0x1b0
[ 1961.818709]  move_addr_to_kernel.part.0+0x31/0x110
[ 1961.819725]  move_addr_to_kernel+0x4f/0x70
[ 1961.820591]  io_connect+0x47a/0x610
[ 1961.821345]  ? io_prep_rw+0x1050/0x1050
[ 1961.822205]  ? __lock_acquire+0x1657/0x5b00
[ 1961.823130]  ? __lock_acquire+0xbb1/0x5b00
[ 1961.824018]  io_issue_sqe+0x1611/0x77d0
[ 1961.824876]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1961.825984]  ? lock_chain_count+0x20/0x20
[ 1961.826874]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1961.827988]  ? io_connect+0x610/0x610
[ 1961.828808]  ? lock_acquire+0x197/0x470
[ 1961.829613]  ? find_held_lock+0x2c/0x110
[ 1961.830449]  ? __fget_files+0x2cf/0x520
[ 1961.831295]  ? lock_downgrade+0x6d0/0x6d0
[ 1961.832174]  __io_queue_sqe+0x90/0x9d0
[ 1961.833016]  ? io_issue_sqe+0x77d0/0x77d0
[ 1961.833900]  ? __fget_files+0x2f8/0x520
[ 1961.834756]  io_submit_sqes+0x44a8/0x8610
[ 1961.835666]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.836715]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.837756]  ? find_held_lock+0x2c/0x110
[ 1961.838601]  ? io_submit_sqes+0x8610/0x8610
[ 1961.839537]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1961.840557]  ? wait_for_completion_io+0x270/0x270
[ 1961.841588]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1961.842577]  ? vfs_write+0x354/0xb10
[ 1961.843344]  ? fput_many+0x2f/0x1a0
[ 1961.844112]  ? ksys_write+0x1a9/0x260
[ 1961.844904]  ? __ia32_sys_read+0xb0/0xb0
[ 1961.845775]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1961.846891]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1961.847980]  do_syscall_64+0x33/0x40
[ 1961.848750]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1961.849838] RIP: 0033:0x7ff5992a9b19
[ 1961.850597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1961.854438] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1961.855988] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1961.857494] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1961.858947] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1961.860463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1961.861945] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:31:23 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 84)

10:31:23 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:23 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r3, r4, 0x80000)

10:31:23 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

10:31:23 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:23 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0xfffffffffffffede, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmstat\x00', 0x0, 0x0)

10:31:23 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

10:31:23 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:23 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1973.412886] FAULT_INJECTION: forcing a failure.
[ 1973.412886] name failslab, interval 1, probability 0, space 0, times 0
[ 1973.415534] CPU: 1 PID: 9902 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1973.416992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1973.418762] Call Trace:
[ 1973.419323]  dump_stack+0x107/0x167
[ 1973.420091]  should_fail.cold+0x5/0xa
[ 1973.420911]  ? ptlock_alloc+0x1d/0x70
[ 1973.421728]  should_failslab+0x5/0x20
[ 1973.422537]  kmem_cache_alloc+0x5b/0x310
[ 1973.423392]  ptlock_alloc+0x1d/0x70
[ 1973.424164]  pte_alloc_one+0x68/0x1a0
[ 1973.424986]  ? replace_page_cache_page+0x1200/0x1200
[ 1973.426066]  handle_mm_fault+0x2ab2/0x3500
[ 1973.426963]  ? __lock_acquire+0x1657/0x5b00
[ 1973.427881]  ? __pmd_alloc+0x630/0x630
[ 1973.428701]  ? vmacache_find+0x55/0x2a0
[ 1973.429570]  do_user_addr_fault+0x56e/0xc60
[ 1973.430485]  exc_page_fault+0xa2/0x1a0
[ 1973.431318]  asm_exc_page_fault+0x1e/0x30
[ 1973.432187] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1973.433342] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1973.437286] RSP: 0018:ffff88800f8b77b8 EFLAGS: 00050246
[ 1973.438403] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1973.439898] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88800f8b7888
[ 1973.441418] RBP: ffff88800f8b7888 R08: 0000000000000001 R09: ffff88800f8b7907
[ 1973.442911] R10: ffffed1001f16f20 R11: 0000000000000001 R12: 0000000020000100
[ 1973.444407] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1973.445956]  _copy_from_user+0x172/0x1b0
[ 1973.446817]  move_addr_to_kernel.part.0+0x31/0x110
[ 1973.447852]  move_addr_to_kernel+0x4f/0x70
[ 1973.448741]  io_connect+0x47a/0x610
[ 1973.449567]  ? io_prep_rw+0x1050/0x1050
[ 1973.450425]  ? __lock_acquire+0xbb1/0x5b00
[ 1973.451318]  io_issue_sqe+0x1611/0x77d0
[ 1973.452158]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
10:31:23 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1973.453299]  ? lock_chain_count+0x20/0x20
[ 1973.454363]  ? __is_insn_slot_addr+0x14c/0x290
[ 1973.455318]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1973.456412]  ? io_connect+0x610/0x610
[ 1973.457244]  ? lock_acquire+0x197/0x470
[ 1973.458074]  ? find_held_lock+0x2c/0x110
[ 1973.458933]  ? __fget_files+0x2cf/0x520
[ 1973.459766]  ? lock_downgrade+0x6d0/0x6d0
[ 1973.460640]  __io_queue_sqe+0x90/0x9d0
[ 1973.461487]  ? io_issue_sqe+0x77d0/0x77d0
[ 1973.462350]  ? __fget_files+0x2f8/0x520
[ 1973.463193]  io_submit_sqes+0x44a8/0x8610
[ 1973.464096]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1973.465164]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1973.466180]  ? find_held_lock+0x2c/0x110
[ 1973.467039]  ? io_submit_sqes+0x8610/0x8610
[ 1973.467942]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1973.468969]  ? wait_for_completion_io+0x270/0x270
[ 1973.470006]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1973.470980]  ? vfs_write+0x354/0xb10
[ 1973.471758]  ? fput_many+0x2f/0x1a0
[ 1973.472517]  ? ksys_write+0x1a9/0x260
[ 1973.473337]  ? __ia32_sys_read+0xb0/0xb0
[ 1973.474196]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1973.475292]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1973.476382]  do_syscall_64+0x33/0x40
[ 1973.477200]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1973.478266] RIP: 0033:0x7ff5992a9b19
[ 1973.479046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1973.482899] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1973.484500] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1973.486034] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1973.487529] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1973.489049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1973.490545] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:31:23 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:23 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(r3, 0xffffffffffffffff, 0x80000)

10:31:23 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:24 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

10:31:24 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:24 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(r3, 0xffffffffffffffff, 0x80000)

10:31:24 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(r3, 0xffffffffffffffff, 0x80000)

10:31:38 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(0x0, r11, &(0x7f0000000280)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x8208}, 0x1}, 0x9)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x2004, @fd=r6, 0x10001, 0x1c12, 0x7fff, 0x5, 0x1, {0x3}}, 0x4)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r12, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r13 = fsopen(&(0x7f0000000140)='sockfs\x00', 0x0)
syz_io_uring_submit(r7, r11, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r13, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

10:31:38 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 85)

10:31:38 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

10:31:38 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r3, r4, 0x80000)

[ 1988.323592] FAULT_INJECTION: forcing a failure.
[ 1988.323592] name failslab, interval 1, probability 0, space 0, times 0
[ 1988.326252] CPU: 1 PID: 9949 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 1988.327714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1988.329494] Call Trace:
[ 1988.330059]  dump_stack+0x107/0x167
[ 1988.330841]  should_fail.cold+0x5/0xa
[ 1988.331654]  ? create_object.isra.0+0x3a/0xa30
[ 1988.332628]  should_failslab+0x5/0x20
[ 1988.333458]  kmem_cache_alloc+0x5b/0x310
[ 1988.334328]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 1988.335623]  create_object.isra.0+0x3a/0xa30
[ 1988.336598]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1988.337701]  kmem_cache_alloc+0x159/0x310
[ 1988.338598]  ptlock_alloc+0x1d/0x70
[ 1988.339382]  pte_alloc_one+0x68/0x1a0
[ 1988.340198]  ? replace_page_cache_page+0x1200/0x1200
[ 1988.341292]  handle_mm_fault+0x2ab2/0x3500
[ 1988.342210]  ? __lock_acquire+0x1657/0x5b00
[ 1988.343140]  ? __pmd_alloc+0x630/0x630
[ 1988.343982]  ? vmacache_find+0x55/0x2a0
[ 1988.344845]  do_user_addr_fault+0x56e/0xc60
[ 1988.345785]  exc_page_fault+0xa2/0x1a0
[ 1988.346619]  asm_exc_page_fault+0x1e/0x30
[ 1988.347507] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 1988.348661] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 1988.352635] RSP: 0018:ffff88803f6877b8 EFLAGS: 00050246
[ 1988.353790] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 1988.355325] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88803f687888
[ 1988.356866] RBP: ffff88803f687888 R08: 0000000000000001 R09: ffff88803f687907
[ 1988.358408] R10: ffffed1007ed0f20 R11: 0000000000000001 R12: 0000000020000100
[ 1988.359945] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 1988.361514]  _copy_from_user+0x172/0x1b0
[ 1988.362398]  move_addr_to_kernel.part.0+0x31/0x110
[ 1988.363453]  move_addr_to_kernel+0x4f/0x70
[ 1988.364366]  io_connect+0x47a/0x610
[ 1988.365163]  ? io_prep_rw+0x1050/0x1050
[ 1988.366040]  ? __lock_acquire+0xbb1/0x5b00
[ 1988.366955]  io_issue_sqe+0x1611/0x77d0
[ 1988.367823]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1988.368953]  ? lock_chain_count+0x20/0x20
[ 1988.369851]  ? __is_insn_slot_addr+0x14c/0x290
[ 1988.370835]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1988.371960]  ? io_connect+0x610/0x610
[ 1988.372788]  ? lock_acquire+0x197/0x470
[ 1988.373648]  ? find_held_lock+0x2c/0x110
[ 1988.374530]  ? __fget_files+0x2cf/0x520
[ 1988.375384]  ? lock_downgrade+0x6d0/0x6d0
[ 1988.376278]  __io_queue_sqe+0x90/0x9d0
[ 1988.377130]  ? io_issue_sqe+0x77d0/0x77d0
[ 1988.378018]  ? __fget_files+0x2f8/0x520
[ 1988.378889]  io_submit_sqes+0x44a8/0x8610
[ 1988.379816]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1988.380887]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1988.381934]  ? find_held_lock+0x2c/0x110
[ 1988.382816]  ? io_submit_sqes+0x8610/0x8610
[ 1988.383749]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1988.384793]  ? wait_for_completion_io+0x270/0x270
[ 1988.385847]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1988.386849]  ? vfs_write+0x354/0xb10
[ 1988.387651]  ? fput_many+0x2f/0x1a0
[ 1988.388431]  ? ksys_write+0x1a9/0x260
[ 1988.389260]  ? __ia32_sys_read+0xb0/0xb0
[ 1988.390139]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1988.391265]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1988.392380]  do_syscall_64+0x33/0x40
[ 1988.393194]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1988.394300] RIP: 0033:0x7ff5992a9b19
[ 1988.395103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1988.399084] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1988.400721] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 1988.402268] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1988.403809] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1988.405344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1988.406885] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:31:38 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:38 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r3, r4, 0x80000)

10:31:38 executing program 0:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:39 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(0xffffffffffffffff, r3, 0x80000)

10:31:39 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0xffffffffffffffff, r7, 0x0)
setreuid(r7, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
setreuid(r8, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000000000002000600", @ANYRES32=0xee00, @ANYBLOB="02000700", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=0xee00, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="02000500", @ANYRES32=r9, @ANYBLOB="040001000000000008000600", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0xee01, @ANYBLOB="10000400000000002000000000000000"], 0x6c, 0x1)

10:31:39 executing program 0:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000240)={0x0, <r7=>0x0})
waitid(0x0, r7, &(0x7f0000000340), 0x20000000, &(0x7f00000003c0))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0xffffffffffffffff, r7, 0x0)
setreuid(r7, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
setreuid(r8, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000000000002000600", @ANYRES32=0xee00, @ANYBLOB="02000700", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=0xee00, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="02000500", @ANYRES32=r9, @ANYBLOB="040001000000000008000600", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0xee01, @ANYBLOB="10000400000000002000000000000000"], 0x6c, 0x1)

10:31:53 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

10:31:53 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 86)

10:31:53 executing program 0:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffffffff0700)

10:31:53 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(0xffffffffffffffff, r3, 0x80000)

10:31:53 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2003.074727] FAULT_INJECTION: forcing a failure.
[ 2003.074727] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2003.077631] CPU: 1 PID: 9993 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2003.079057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2003.080787] Call Trace:
[ 2003.081356]  dump_stack+0x107/0x167
[ 2003.082130]  should_fail.cold+0x5/0xa
[ 2003.082928]  __alloc_pages_nodemask+0x182/0x600
[ 2003.083915]  ? lock_acquire+0x197/0x470
[ 2003.084763]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2003.086039]  ? find_held_lock+0x2c/0x110
[ 2003.086918]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2003.088018]  ? lock_downgrade+0x6d0/0x6d0
[ 2003.088892]  ? mark_held_locks+0x9e/0xe0
[ 2003.089770]  alloc_pages_current+0x187/0x280
[ 2003.090701]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2003.091801]  ? replace_page_cache_page+0x1200/0x1200
[ 2003.092873]  pte_alloc_one+0x16/0x1a0
[ 2003.093697]  ? replace_page_cache_page+0x1200/0x1200
[ 2003.094768]  handle_mm_fault+0x2ab2/0x3500
[ 2003.095671]  ? __pmd_alloc+0x630/0x630
[ 2003.096500]  ? vmacache_find+0x55/0x2a0
[ 2003.097370]  do_user_addr_fault+0x56e/0xc60
[ 2003.098283]  exc_page_fault+0xa2/0x1a0
[ 2003.099097]  asm_exc_page_fault+0x1e/0x30
[ 2003.099974] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 2003.101222] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 2003.105194] RSP: 0018:ffff88801ce7f7b8 EFLAGS: 00050287
[ 2003.106353] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 2003.107897] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88801ce7f888
[ 2003.109447] RBP: ffff88801ce7f888 R08: 0000000000000001 R09: ffff88801ce7f907
[ 2003.110980] R10: ffffed10039cff20 R11: 0000000000000001 R12: 0000000020000100
[ 2003.112526] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2003.114092]  _copy_from_user+0x172/0x1b0
[ 2003.114973]  move_addr_to_kernel.part.0+0x31/0x110
[ 2003.116047]  move_addr_to_kernel+0x4f/0x70
[ 2003.116953]  io_connect+0x47a/0x610
[ 2003.117755]  ? io_prep_rw+0x1050/0x1050
[ 2003.118627]  ? __lock_acquire+0xbb1/0x5b00
[ 2003.119536]  io_issue_sqe+0x1611/0x77d0
[ 2003.120396]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2003.121526]  ? lock_chain_count+0x20/0x20
[ 2003.122411]  ? __is_insn_slot_addr+0x14c/0x290
[ 2003.123385]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2003.124501]  ? io_connect+0x610/0x610
[ 2003.125335]  ? lock_acquire+0x197/0x470
[ 2003.126172]  ? find_held_lock+0x2c/0x110
[ 2003.127046]  ? __fget_files+0x2cf/0x520
[ 2003.127902]  ? lock_downgrade+0x6d0/0x6d0
[ 2003.128799]  __io_queue_sqe+0x90/0x9d0
[ 2003.129636]  ? io_issue_sqe+0x77d0/0x77d0
[ 2003.130525]  ? __fget_files+0x2f8/0x520
[ 2003.131386]  io_submit_sqes+0x44a8/0x8610
[ 2003.132298]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2003.133363]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2003.134395]  ? find_held_lock+0x2c/0x110
[ 2003.135261]  ? io_submit_sqes+0x8610/0x8610
[ 2003.136179]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2003.137225]  ? wait_for_completion_io+0x270/0x270
[ 2003.138263]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2003.139263]  ? vfs_write+0x354/0xb10
[ 2003.140060]  ? fput_many+0x2f/0x1a0
[ 2003.140825]  ? ksys_write+0x1a9/0x260
[ 2003.141642]  ? __ia32_sys_read+0xb0/0xb0
[ 2003.142505]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2003.143622]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2003.144713]  do_syscall_64+0x33/0x40
[ 2003.145509]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2003.146587] RIP: 0033:0x7ff5992a9b19
[ 2003.147376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2003.151289] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2003.152912] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2003.154439] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2003.155961] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2003.157491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2003.159017] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:31:53 executing program 0:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(0xffffffffffffffff, r3, 0x80000)

10:31:53 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0xffffffffffffffff, r7, 0x0)
setreuid(r7, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
setreuid(r8, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000000000002000600", @ANYRES32=0xee00, @ANYBLOB="02000700", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=0xee00, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="02000500", @ANYRES32=r9, @ANYBLOB="040001000000000008000600", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0xee01, @ANYBLOB="10000400000000002000000000000000"], 0x6c, 0x1)

10:31:53 executing program 0:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:31:53 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@remote, @in=@empty}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)

10:31:53 executing program 0:
r0 = syz_io_uring_setup(0x79a8, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:31:53 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 87)

[ 2003.591844] FAULT_INJECTION: forcing a failure.
[ 2003.591844] name failslab, interval 1, probability 0, space 0, times 0
[ 2003.594342] CPU: 1 PID: 10022 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2003.595781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2003.597540] Call Trace:
[ 2003.598090]  dump_stack+0x107/0x167
[ 2003.598856]  should_fail.cold+0x5/0xa
[ 2003.599665]  ? ptlock_alloc+0x1d/0x70
[ 2003.600461]  should_failslab+0x5/0x20
[ 2003.601265]  kmem_cache_alloc+0x5b/0x310
[ 2003.602125]  ptlock_alloc+0x1d/0x70
[ 2003.602889]  pte_alloc_one+0x68/0x1a0
[ 2003.603689]  ? replace_page_cache_page+0x1200/0x1200
[ 2003.604752]  handle_mm_fault+0x2ab2/0x3500
[ 2003.605656]  ? __lock_acquire+0x1657/0x5b00
[ 2003.606563]  ? find_held_lock+0x2c/0x110
[ 2003.607415]  ? pgtable_bad+0x90/0x90
[ 2003.608195]  ? __pmd_alloc+0x630/0x630
[ 2003.609031]  ? vmacache_find+0x55/0x2a0
[ 2003.609882]  do_user_addr_fault+0x56e/0xc60
[ 2003.610806]  exc_page_fault+0xa2/0x1a0
[ 2003.611630]  asm_exc_page_fault+0x1e/0x30
[ 2003.612510] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 2003.613750] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 2003.617635] RSP: 0018:ffff888041dd77b8 EFLAGS: 00050287
[ 2003.618749] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 2003.620249] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888041dd7888
[ 2003.621777] RBP: ffff888041dd7888 R08: 0000000000000001 R09: ffff888041dd7907
[ 2003.623275] R10: ffffed10083baf20 R11: 0000000000000001 R12: 0000000020000100
[ 2003.624772] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2003.626309]  _copy_from_user+0x172/0x1b0
[ 2003.627172]  move_addr_to_kernel.part.0+0x31/0x110
[ 2003.628204]  move_addr_to_kernel+0x4f/0x70
[ 2003.629094]  io_connect+0x47a/0x610
[ 2003.629867]  ? io_prep_rw+0x1050/0x1050
[ 2003.630722]  ? __lock_acquire+0xbb1/0x5b00
[ 2003.631616]  io_issue_sqe+0x1611/0x77d0
[ 2003.632459]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2003.633577]  ? lock_chain_count+0x20/0x20
[ 2003.634450]  ? __is_insn_slot_addr+0x14c/0x290
[ 2003.635418]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2003.636513]  ? io_connect+0x610/0x610
[ 2003.637318]  ? lock_acquire+0x197/0x470
[ 2003.638164]  ? find_held_lock+0x2c/0x110
[ 2003.639027]  ? __fget_files+0x2cf/0x520
[ 2003.639866]  ? lock_downgrade+0x6d0/0x6d0
[ 2003.640744]  __io_queue_sqe+0x90/0x9d0
[ 2003.641573]  ? io_issue_sqe+0x77d0/0x77d0
[ 2003.642445]  ? __fget_files+0x2f8/0x520
[ 2003.643298]  io_submit_sqes+0x44a8/0x8610
[ 2003.644197]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2003.645247]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2003.646270]  ? find_held_lock+0x2c/0x110
[ 2003.647132]  ? io_submit_sqes+0x8610/0x8610
[ 2003.648045]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2003.649056]  ? wait_for_completion_io+0x270/0x270
[ 2003.650080]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2003.651057]  ? vfs_write+0x354/0xb10
[ 2003.651847]  ? fput_many+0x2f/0x1a0
[ 2003.652607]  ? ksys_write+0x1a9/0x260
[ 2003.653417]  ? __ia32_sys_read+0xb0/0xb0
[ 2003.654274]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2003.655368]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2003.656451]  do_syscall_64+0x33/0x40
[ 2003.657236]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2003.658313] RIP: 0033:0x7ff5992a9b19
[ 2003.659093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2003.662963] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2003.664556] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2003.666063] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2003.667555] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2003.669049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2003.670562] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:07 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
io_uring_enter(r4, 0x6cba, 0x7c4d, 0x2, &(0x7f00000001c0)={[0x7]}, 0x8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4308, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, @perf_config_ext, 0x800, 0x8001, 0x3, 0x0, 0x0, 0x401, 0x3f, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0B\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x4)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = gettid()
r8 = syz_io_uring_setup(0x7d84, &(0x7f00000002c0)={0x0, 0x0, 0x8, 0x3, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r8, 0x0, 0x0, 0x5c, 0x8, 0x0, {0x0, 0x0, r6}}, 0x58e)
process_vm_readv(r7, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
waitid(0x2, r7, &(0x7f0000000240), 0x2, &(0x7f0000000340))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:07 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000)

10:32:07 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:07 executing program 5:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:07 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:32:07 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 88)

10:32:07 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00dq\xc4p\xb0\x89\x9c\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2017.447931] FAULT_INJECTION: forcing a failure.
[ 2017.447931] name failslab, interval 1, probability 0, space 0, times 0
[ 2017.450603] CPU: 0 PID: 10044 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2017.452082] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2017.453863] Call Trace:
[ 2017.454427]  dump_stack+0x107/0x167
[ 2017.455202]  should_fail.cold+0x5/0xa
[ 2017.456014]  ? create_object.isra.0+0x3a/0xa30
[ 2017.456980]  should_failslab+0x5/0x20
[ 2017.457795]  kmem_cache_alloc+0x5b/0x310
[ 2017.458662]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2017.459936]  create_object.isra.0+0x3a/0xa30
[ 2017.460864]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2017.461984]  kmem_cache_alloc+0x159/0x310
[ 2017.462872]  ptlock_alloc+0x1d/0x70
[ 2017.463648]  pte_alloc_one+0x68/0x1a0
[ 2017.464456]  ? replace_page_cache_page+0x1200/0x1200
[ 2017.465539]  handle_mm_fault+0x2ab2/0x3500
[ 2017.466447]  ? __lock_acquire+0x1657/0x5b00
[ 2017.467361]  ? find_held_lock+0x2c/0x110
[ 2017.468221]  ? pgtable_bad+0x90/0x90
[ 2017.469013]  ? __pmd_alloc+0x630/0x630
[ 2017.469858]  ? vmacache_find+0x55/0x2a0
[ 2017.470713]  do_user_addr_fault+0x56e/0xc60
[ 2017.471646]  exc_page_fault+0xa2/0x1a0
[ 2017.472477]  asm_exc_page_fault+0x1e/0x30
[ 2017.473362] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 2017.474626] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 2017.478550] RSP: 0018:ffff88800d9777b8 EFLAGS: 00050287
[ 2017.479687] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 2017.481200] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88800d977888
[ 2017.482727] RBP: ffff88800d977888 R08: 0000000000000001 R09: ffff88800d977907
[ 2017.484242] R10: ffffed1001b2ef20 R11: 0000000000000001 R12: 0000000020000100
[ 2017.485766] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2017.487316]  _copy_from_user+0x172/0x1b0
10:32:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2017.488187]  move_addr_to_kernel.part.0+0x31/0x110
[ 2017.489350]  move_addr_to_kernel+0x4f/0x70
[ 2017.490245]  io_connect+0x47a/0x610
[ 2017.490992]  ? io_prep_rw+0x1050/0x1050
[ 2017.491831]  ? __lock_acquire+0xbb1/0x5b00
[ 2017.492711]  io_issue_sqe+0x1611/0x77d0
[ 2017.493552]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2017.494638]  ? lock_chain_count+0x20/0x20
[ 2017.495486]  ? __is_insn_slot_addr+0x14c/0x290
[ 2017.496442]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2017.497535]  ? io_connect+0x610/0x610
[ 2017.498328]  ? lock_acquire+0x197/0x470
[ 2017.499156]  ? find_held_lock+0x2c/0x110
[ 2017.499998]  ? __fget_files+0x2cf/0x520
[ 2017.500823]  ? lock_downgrade+0x6d0/0x6d0
[ 2017.501693]  __io_queue_sqe+0x90/0x9d0
[ 2017.502501]  ? io_issue_sqe+0x77d0/0x77d0
[ 2017.503362]  ? __fget_files+0x2f8/0x520
[ 2017.504191]  io_submit_sqes+0x44a8/0x8610
[ 2017.505070]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2017.506112]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2017.507113]  ? find_held_lock+0x2c/0x110
[ 2017.507958]  ? io_submit_sqes+0x8610/0x8610
[ 2017.508850]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2017.509856]  ? wait_for_completion_io+0x270/0x270
[ 2017.510866]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2017.511829]  ? vfs_write+0x354/0xb10
[ 2017.512594]  ? fput_many+0x2f/0x1a0
[ 2017.513341]  ? ksys_write+0x1a9/0x260
[ 2017.514131]  ? __ia32_sys_read+0xb0/0xb0
[ 2017.514971]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2017.516046]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2017.517105]  do_syscall_64+0x33/0x40
[ 2017.517879]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2017.518930] RIP: 0033:0x7ff5992a9b19
[ 2017.519695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2017.523466] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2017.525030] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2017.526518] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2017.527981] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2017.529444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2017.530940] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:07 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:07 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(r6, 0x0)

10:32:07 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf000000)

10:32:08 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:08 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:08 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(r6, 0x0)

10:32:08 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(r6, 0x0)

10:32:21 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:21 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = gettid()
process_vm_readv(r3, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
waitid(0x0, r3, 0x0, 0x4, &(0x7f00000008c0))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = gettid()
process_vm_readv(r5, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
waitid(0x1, r5, &(0x7f0000000240), 0x40000000, &(0x7f0000000340))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
r7 = inotify_init1(0x80800)
preadv(r7, &(0x7f0000000400)=[{&(0x7f0000000500)=""/181, 0xb5}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/226, 0xe2}, {&(0x7f0000000140)=""/37, 0x25}, {&(0x7f00000006c0)=""/236, 0xec}, {&(0x7f00000007c0)=""/227, 0xe3}], 0x6, 0x800, 0x80)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:21 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 89)

10:32:21 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

10:32:21 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f0000638000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_open_dev$vcsu(&(0x7f0000000140), 0x20000000000, 0x200000)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x6}, 0x300, 0x0, 0x4, 0x8, 0x0, 0x62, 0x8002, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r5, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0)
io_uring_enter(r11, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r9, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r11}, 0x7)

10:32:21 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:32:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2030.891849] FAULT_INJECTION: forcing a failure.
[ 2030.891849] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2030.893331] CPU: 0 PID: 10082 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2030.894152] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2030.895141] Call Trace:
[ 2030.895460]  dump_stack+0x107/0x167
[ 2030.895888]  should_fail.cold+0x5/0xa
10:32:21 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2030.896341]  _copy_from_user+0x2e/0x1b0
[ 2030.896912]  move_addr_to_kernel.part.0+0x31/0x110
[ 2030.897483]  move_addr_to_kernel+0x4f/0x70
[ 2030.897989]  io_connect+0x47a/0x610
[ 2030.898417]  ? io_prep_rw+0x1050/0x1050
[ 2030.898892]  ? __lock_acquire+0xbb1/0x5b00
[ 2030.899387]  io_issue_sqe+0x1611/0x77d0
[ 2030.899850]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2030.900461]  ? lock_chain_count+0x20/0x20
[ 2030.900945]  ? __is_insn_slot_addr+0x14c/0x290
[ 2030.901483]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2030.902123]  ? io_connect+0x610/0x610
[ 2030.902570]  ? lock_acquire+0x197/0x470
[ 2030.903029]  ? find_held_lock+0x2c/0x110
[ 2030.903514]  ? __fget_files+0x2cf/0x520
[ 2030.903980]  ? lock_downgrade+0x6d0/0x6d0
[ 2030.904470]  __io_queue_sqe+0x90/0x9d0
[ 2030.904925]  ? io_issue_sqe+0x77d0/0x77d0
[ 2030.905408]  ? __fget_files+0x2f8/0x520
[ 2030.905882]  io_submit_sqes+0x44a8/0x8610
[ 2030.906380]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2030.906950]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2030.907513]  ? find_held_lock+0x2c/0x110
[ 2030.907984]  ? io_submit_sqes+0x8610/0x8610
[ 2030.908489]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2030.909045]  ? wait_for_completion_io+0x270/0x270
[ 2030.909611]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2030.910152]  ? vfs_write+0x354/0xb10
[ 2030.910587]  ? fput_many+0x2f/0x1a0
[ 2030.911002]  ? ksys_write+0x1a9/0x260
[ 2030.911446]  ? __ia32_sys_read+0xb0/0xb0
[ 2030.911915]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2030.912526]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2030.913120]  do_syscall_64+0x33/0x40
[ 2030.913550]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2030.914154] RIP: 0033:0x7ff5992a9b19
[ 2030.914585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2030.916724] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2030.917599] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2030.918454] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2030.919343] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2030.920166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2030.920988] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:32:21 executing program 5:
r0 = syz_io_uring_setup(0x7d04, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:21 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:21 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:32:21 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 90)

[ 2031.107812] FAULT_INJECTION: forcing a failure.
[ 2031.107812] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2031.109459] CPU: 0 PID: 10114 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2031.110253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2031.111211] Call Trace:
[ 2031.111522]  dump_stack+0x107/0x167
[ 2031.111946]  should_fail.cold+0x5/0xa
[ 2031.112393]  __alloc_pages_nodemask+0x182/0x600
[ 2031.112936]  ? lock_acquire+0x197/0x470
[ 2031.113396]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2031.114089]  ? find_held_lock+0x2c/0x110
[ 2031.114568]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2031.115172]  ? lock_downgrade+0x6d0/0x6d0
[ 2031.115647]  ? mark_held_locks+0x9e/0xe0
[ 2031.116114]  alloc_pages_current+0x187/0x280
[ 2031.116621]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2031.117221]  ? replace_page_cache_page+0x1200/0x1200
[ 2031.117816]  pte_alloc_one+0x16/0x1a0
[ 2031.118255]  ? replace_page_cache_page+0x1200/0x1200
[ 2031.118837]  handle_mm_fault+0x2ab2/0x3500
[ 2031.119323]  ? __lock_acquire+0x1657/0x5b00
[ 2031.119819]  ? __pmd_alloc+0x630/0x630
[ 2031.120268]  ? vmacache_find+0x55/0x2a0
[ 2031.120731]  do_user_addr_fault+0x56e/0xc60
[ 2031.121236]  exc_page_fault+0xa2/0x1a0
[ 2031.121685]  asm_exc_page_fault+0x1e/0x30
[ 2031.122210] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2031.122849] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2031.124949] RSP: 0018:ffff888042f977b8 EFLAGS: 00050246
[ 2031.125564] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2031.126391] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042f97888
[ 2031.127207] RBP: ffff888042f97888 R08: 0000000000000001 R09: ffff888042f97907
[ 2031.128028] R10: ffffed10085f2f20 R11: 0000000000000001 R12: 0000000020000100
[ 2031.128849] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2031.129686]  _copy_from_user+0x172/0x1b0
[ 2031.130164]  move_addr_to_kernel.part.0+0x31/0x110
[ 2031.130727]  move_addr_to_kernel+0x4f/0x70
[ 2031.131217]  io_connect+0x47a/0x610
[ 2031.131635]  ? io_prep_rw+0x1050/0x1050
[ 2031.132103]  ? __lock_acquire+0xbb1/0x5b00
[ 2031.132590]  io_issue_sqe+0x1611/0x77d0
[ 2031.133052]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2031.133648]  ? lock_chain_count+0x20/0x20
[ 2031.134136]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2031.134745]  ? io_connect+0x610/0x610
[ 2031.135186]  ? lock_acquire+0x197/0x470
[ 2031.135638]  ? find_held_lock+0x2c/0x110
[ 2031.136108]  ? __fget_files+0x2cf/0x520
[ 2031.136568]  ? lock_downgrade+0x6d0/0x6d0
[ 2031.137042]  __io_queue_sqe+0x90/0x9d0
[ 2031.137498]  ? io_issue_sqe+0x77d0/0x77d0
[ 2031.137975]  ? __fget_files+0x2f8/0x520
[ 2031.138438]  io_submit_sqes+0x44a8/0x8610
[ 2031.138930]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2031.139499]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2031.140049]  ? find_held_lock+0x2c/0x110
[ 2031.140521]  ? io_submit_sqes+0x8610/0x8610
[ 2031.141020]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2031.141573]  ? wait_for_completion_io+0x270/0x270
[ 2031.142137]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2031.142665]  ? vfs_write+0x354/0xb10
[ 2031.143096]  ? fput_many+0x2f/0x1a0
[ 2031.143516]  ? ksys_write+0x1a9/0x260
[ 2031.143955]  ? __ia32_sys_read+0xb0/0xb0
[ 2031.144424]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2031.145032]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2031.145629]  do_syscall_64+0x33/0x40
[ 2031.146060]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2031.146653] RIP: 0033:0x7ff5992a9b19
[ 2031.147077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2031.149192] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2031.150066] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2031.150887] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2031.151711] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2031.152529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2031.153347] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:34 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f0000000380)=""/191, 0xbf}, {0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x3, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:34 executing program 5:
r0 = syz_io_uring_setup(0x7d04, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:34 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r4, {0x401}}, './file0\x00'})
close_range(r4, r5, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
syz_io_uring_submit(r6, r7, 0x0, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r8}}, 0x101)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x5, &(0x7f0000000400)=[0xffffffffffffffff, r0], 0x2, 0x0, 0x1, {0x0, r8}}, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x40000, 0x1, @perf_bp={&(0x7f0000000140), 0x7}, 0x2000, 0x5, 0x81, 0x0, 0xffff, 0x80, 0x1, 0x0, 0xea6}, 0x0, 0x5, r10, 0x1)
r11 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r11, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:34 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:34 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r5, 0x50009402, 0x0)
fsopen(&(0x7f0000000040)='bdev\x00', 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:34 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x40000000)

10:32:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:32:34 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 91)

[ 2044.610059] FAULT_INJECTION: forcing a failure.
[ 2044.610059] name failslab, interval 1, probability 0, space 0, times 0
[ 2044.612972] CPU: 1 PID: 10125 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2044.614442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2044.616203] Call Trace:
[ 2044.616762]  dump_stack+0x107/0x167
[ 2044.617531]  should_fail.cold+0x5/0xa
[ 2044.618342]  ? ptlock_alloc+0x1d/0x70
[ 2044.619149]  should_failslab+0x5/0x20
[ 2044.619963]  kmem_cache_alloc+0x5b/0x310
[ 2044.620830]  ptlock_alloc+0x1d/0x70
[ 2044.621601]  pte_alloc_one+0x68/0x1a0
[ 2044.622416]  ? replace_page_cache_page+0x1200/0x1200
[ 2044.623481]  handle_mm_fault+0x2ab2/0x3500
[ 2044.624353]  ? __lock_acquire+0x1657/0x5b00
[ 2044.625267]  ? __pmd_alloc+0x630/0x630
[ 2044.626111]  ? vmacache_find+0x55/0x2a0
[ 2044.626968]  do_user_addr_fault+0x56e/0xc60
[ 2044.627892]  exc_page_fault+0xa2/0x1a0
[ 2044.628729]  asm_exc_page_fault+0x1e/0x30
10:32:34 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

[ 2044.629603] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2044.630960] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2044.634929] RSP: 0018:ffff8880176777b8 EFLAGS: 00050246
[ 2044.636030] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2044.637490] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888017677888
[ 2044.638983] RBP: ffff888017677888 R08: 0000000000000001 R09: ffff888017677907
[ 2044.640442] R10: ffffed1002ecef20 R11: 0000000000000001 R12: 0000000020000100
[ 2044.641983] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2044.643504]  _copy_from_user+0x172/0x1b0
[ 2044.644351]  move_addr_to_kernel.part.0+0x31/0x110
[ 2044.645380]  move_addr_to_kernel+0x4f/0x70
[ 2044.646256]  io_connect+0x47a/0x610
[ 2044.647002]  ? io_prep_rw+0x1050/0x1050
[ 2044.647833]  ? __lock_acquire+0xbb1/0x5b00
[ 2044.648700]  io_issue_sqe+0x1611/0x77d0
[ 2044.649514]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2044.650593]  ? lock_chain_count+0x20/0x20
[ 2044.651456]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2044.652524]  ? io_connect+0x610/0x610
[ 2044.653308]  ? lock_acquire+0x197/0x470
[ 2044.654146]  ? find_held_lock+0x2c/0x110
[ 2044.654992]  ? __fget_files+0x2cf/0x520
[ 2044.655805]  ? lock_downgrade+0x6d0/0x6d0
[ 2044.656655]  __io_queue_sqe+0x90/0x9d0
[ 2044.657471]  ? io_issue_sqe+0x77d0/0x77d0
[ 2044.658329]  ? __fget_files+0x2f8/0x520
[ 2044.659157]  io_submit_sqes+0x44a8/0x8610
[ 2044.660034]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2044.661056]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2044.662069]  ? find_held_lock+0x2c/0x110
[ 2044.662900]  ? io_submit_sqes+0x8610/0x8610
[ 2044.663785]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2044.664764]  ? wait_for_completion_io+0x270/0x270
[ 2044.665784]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2044.666754]  ? vfs_write+0x354/0xb10
[ 2044.667507]  ? fput_many+0x2f/0x1a0
[ 2044.668240]  ? ksys_write+0x1a9/0x260
[ 2044.669015]  ? __ia32_sys_read+0xb0/0xb0
[ 2044.669870]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2044.670947]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2044.671989]  do_syscall_64+0x33/0x40
[ 2044.672743]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2044.673797] RIP: 0033:0x7ff5992a9b19
[ 2044.674557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2044.678341] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2044.679870] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2044.681320] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2044.682783] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2044.684239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2044.685708] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:35 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:35 executing program 5:
r0 = syz_io_uring_setup(0x7d04, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:32:35 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:35 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:35 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = accept4$unix(r6, &(0x7f0000000240)=@abs, &(0x7f0000000140)=0x6e, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendmsg$inet6(r6, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000500)="d2e308c0ba86d70b222bc7b06ef2aa9875e787d146ed51fc2d2ba493cee852c1914885c8368bc5cc0d627df1eb592a8b3ba023a72db6d2c6c493996e6891b072c26c5a5933bd5b00474373af72d0f180e7eabc1d093d770c5925af27ac3a6c63da8f59e973d62a39dd9a81f63e17c806e1c1cc3f72a5dcbea987d1fa3953ff62cff994bb7b94b659ecd6ab6287db67367d8ef7e37c8a1a12bc88f59220a50cb93916d5cff329e435b89cdad38ddd898a2ba98f4d", 0xb4}, {&(0x7f00000005c0)="c8f68cecd3cc2434344bf31d2d76d14ff2946236bf560c30fca641315f185507a539843f22bf22c459a82b2efdd5111e7f518fe85718c31f7c158e2dc9b6f792a6565926a5a2bb82233b3a952976dc3e3440a559deff0e0b7a723482fb86b662daa274a5b947ba8b05d447d967a96b40c5c25715baef86e416f2377fa6d9e386fbb2f7543bad0ddbf2023fe019768e7c31f98c181dff4d2a6b32ce94b0e5c4dd001524519be20e3f7342d70783f9c8a6ff82f96854023f292ac4f8945c447bbcf4890103760e3cdcbaf373", 0xcb}, {&(0x7f0000000400)="a7e1fcd6b16f3a1f812204df8acb83cae086f725f112bf4ade3b7afb54191c4ff0f64863d7940bf64838b59d0f1400d58627e432935664e96f", 0x39}], 0x3, &(0x7f00000006c0)=[@pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @tclass={{0x14, 0x29, 0x43, 0xdf5a}}, @hopopts={{0x70, 0x29, 0x36, {0x32, 0xb, '\x00', [@calipso={0x7, 0x50, {0x1, 0x12, 0x43, 0x5, [0x7, 0x8, 0x1ff, 0x9, 0x4, 0x6, 0x9, 0x2, 0x80000001]}}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x2}]}}}, @rthdr={{0x38, 0x29, 0x39, {0x2f, 0x4, 0x0, 0x3, 0x0, [@private1={0xfc, 0x1, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x10001}}, @tclass={{0x14, 0x29, 0x43, 0x80000001}}, @hopopts={{0x28, 0x29, 0x36, {0xff, 0x1, '\x00', [@enc_lim={0x4, 0x1, 0x1a}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2c, 0x2, 0x2, 0x2, 0x0, [@empty]}}}, @rthdr={{0x48, 0x29, 0x39, {0x2f, 0x6, 0x0, 0x1f, 0x0, [@dev={0xfe, 0x80, '\x00', 0x25}, @private2={0xfc, 0x2, '\x00', 0x1}, @remote]}}}], 0x1b0}, 0x20004001)
syz_io_uring_submit(r4, r9, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r11, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x1)

10:32:35 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:32:50 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:32:50 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:50 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
memfd_create(&(0x7f0000000140)=',#\x00', 0x3)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x20, 0x201, 0xf0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x2004, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000540)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x80000000)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, r2, &(0x7f0000000140)=@IORING_OP_NOP={0x0, 0x6}, 0x6f5)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000383000/0x2000)=nil, 0x2000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r11, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x10000000000)

10:32:50 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 92)

10:32:50 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2059.986943] FAULT_INJECTION: forcing a failure.
[ 2059.986943] name failslab, interval 1, probability 0, space 0, times 0
[ 2059.989569] CPU: 1 PID: 10181 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2059.991039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2059.992798] Call Trace:
[ 2059.993364]  dump_stack+0x107/0x167
[ 2059.994147]  should_fail.cold+0x5/0xa
[ 2059.994972]  ? create_object.isra.0+0x3a/0xa30
[ 2059.995940]  should_failslab+0x5/0x20
[ 2059.996745]  kmem_cache_alloc+0x5b/0x310
[ 2059.997603]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2059.998902]  create_object.isra.0+0x3a/0xa30
[ 2059.999824]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2060.000907]  kmem_cache_alloc+0x159/0x310
[ 2060.001801]  ptlock_alloc+0x1d/0x70
[ 2060.002582]  pte_alloc_one+0x68/0x1a0
[ 2060.003393]  ? replace_page_cache_page+0x1200/0x1200
[ 2060.004463]  handle_mm_fault+0x2ab2/0x3500
[ 2060.005373]  ? __lock_acquire+0x1657/0x5b00
[ 2060.006298]  ? __pmd_alloc+0x630/0x630
[ 2060.007139]  ? vmacache_find+0x55/0x2a0
[ 2060.007994]  do_user_addr_fault+0x56e/0xc60
[ 2060.008930]  exc_page_fault+0xa2/0x1a0
[ 2060.009757]  asm_exc_page_fault+0x1e/0x30
[ 2060.010649] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2060.011799] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2060.015708] RSP: 0018:ffff888041cf77b8 EFLAGS: 00050246
[ 2060.016848] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2060.018362] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888041cf7888
[ 2060.019876] RBP: ffff888041cf7888 R08: 0000000000000001 R09: ffff888041cf7907
[ 2060.021384] R10: ffffed100839ef20 R11: 0000000000000001 R12: 0000000020000100
[ 2060.022914] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2060.024464]  _copy_from_user+0x172/0x1b0
[ 2060.025338]  move_addr_to_kernel.part.0+0x31/0x110
[ 2060.026393]  move_addr_to_kernel+0x4f/0x70
[ 2060.027295]  io_connect+0x47a/0x610
[ 2060.028066]  ? io_prep_rw+0x1050/0x1050
[ 2060.028932]  ? __lock_acquire+0xbb1/0x5b00
[ 2060.029835]  io_issue_sqe+0x1611/0x77d0
[ 2060.030692]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2060.031802]  ? lock_chain_count+0x20/0x20
[ 2060.032677]  ? __is_insn_slot_addr+0x14c/0x290
[ 2060.033653]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2060.034769]  ? io_connect+0x610/0x610
[ 2060.035585]  ? lock_acquire+0x197/0x470
[ 2060.036424]  ? find_held_lock+0x2c/0x110
[ 2060.037283]  ? __fget_files+0x2cf/0x520
[ 2060.038135]  ? lock_downgrade+0x6d0/0x6d0
[ 2060.039018]  __io_queue_sqe+0x90/0x9d0
[ 2060.039848]  ? io_issue_sqe+0x77d0/0x77d0
[ 2060.040727]  ? __fget_files+0x2f8/0x520
[ 2060.041582]  io_submit_sqes+0x44a8/0x8610
[ 2060.042494]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2060.043553]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2060.044577]  ? find_held_lock+0x2c/0x110
[ 2060.045444]  ? io_submit_sqes+0x8610/0x8610
[ 2060.046364]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2060.047396]  ? wait_for_completion_io+0x270/0x270
[ 2060.048416]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2060.049415]  ? vfs_write+0x354/0xb10
[ 2060.050210]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2060.051178]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2060.052323]  ? ksys_write+0x1a9/0x260
[ 2060.053132]  ? __ia32_sys_read+0xb0/0xb0
[ 2060.053997]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2060.055111]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2060.056204]  do_syscall_64+0x33/0x40
[ 2060.056991]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2060.058070] RIP: 0033:0x7ff5992a9b19
[ 2060.058874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2060.062764] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2060.064375] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2060.065890] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2060.067426] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2060.068928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2060.070449] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:32:50 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:50 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:32:50 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x7ffffffffffff)

10:32:50 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:50 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@broadcast}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:32:50 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:32:50 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:32:50 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2cdb, &(0x7f0000000640)={0x0, 0x31ed, 0x1, 0x1, 0x2b4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000006c0))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:32:50 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:02 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r5, 0x80089419, &(0x7f0000000140))
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:02 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:02 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 93)

10:33:02 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:02 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

10:33:02 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x10, r6, 0x8000000)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:02 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:33:02 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:33:02 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, 0x0, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2072.300776] FAULT_INJECTION: forcing a failure.
[ 2072.300776] name failslab, interval 1, probability 0, space 0, times 0
[ 2072.303339] CPU: 1 PID: 10220 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2072.304801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2072.306568] Call Trace:
[ 2072.307133]  dump_stack+0x107/0x167
[ 2072.307908]  should_fail.cold+0x5/0xa
[ 2072.308719]  ? create_object.isra.0+0x3a/0xa30
[ 2072.309688]  should_failslab+0x5/0x20
[ 2072.310513]  kmem_cache_alloc+0x5b/0x310
[ 2072.311385]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2072.312667]  create_object.isra.0+0x3a/0xa30
[ 2072.313602]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2072.314707]  kmem_cache_alloc+0x159/0x310
[ 2072.315595]  ptlock_alloc+0x1d/0x70
[ 2072.316372]  pte_alloc_one+0x68/0x1a0
[ 2072.317178]  ? replace_page_cache_page+0x1200/0x1200
[ 2072.318243]  handle_mm_fault+0x2ab2/0x3500
[ 2072.319164]  ? __lock_acquire+0x1657/0x5b00
[ 2072.320076]  ? __pmd_alloc+0x630/0x630
[ 2072.320904]  ? vmacache_find+0x55/0x2a0
[ 2072.321751]  do_user_addr_fault+0x56e/0xc60
[ 2072.322678]  exc_page_fault+0xa2/0x1a0
[ 2072.323504]  asm_exc_page_fault+0x1e/0x30
[ 2072.324380] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2072.325523] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2072.329431] RSP: 0018:ffff8880410b77b8 EFLAGS: 00050246
[ 2072.330565] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2072.332069] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff8880410b7888
[ 2072.333565] RBP: ffff8880410b7888 R08: 0000000000000001 R09: ffff8880410b7907
[ 2072.335071] R10: ffffed1008216f20 R11: 0000000000000001 R12: 0000000020000100
[ 2072.336570] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2072.338117]  _copy_from_user+0x172/0x1b0
[ 2072.338995]  move_addr_to_kernel.part.0+0x31/0x110
[ 2072.340051]  move_addr_to_kernel+0x4f/0x70
[ 2072.340944]  io_connect+0x47a/0x610
[ 2072.341711]  ? io_prep_rw+0x1050/0x1050
[ 2072.342584]  ? __lock_acquire+0xbb1/0x5b00
[ 2072.343480]  io_issue_sqe+0x1611/0x77d0
[ 2072.344329]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2072.345430]  ? lock_chain_count+0x20/0x20
[ 2072.346314]  ? __is_insn_slot_addr+0x14c/0x290
[ 2072.347286]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2072.348386]  ? io_connect+0x610/0x610
[ 2072.349190]  ? lock_acquire+0x197/0x470
[ 2072.350031]  ? find_held_lock+0x2c/0x110
[ 2072.350900]  ? __fget_files+0x2cf/0x520
[ 2072.351741]  ? lock_downgrade+0x6d0/0x6d0
[ 2072.352615]  __io_queue_sqe+0x90/0x9d0
[ 2072.353446]  ? io_issue_sqe+0x77d0/0x77d0
[ 2072.354324]  ? __fget_files+0x2f8/0x520
[ 2072.355189]  io_submit_sqes+0x44a8/0x8610
[ 2072.356088]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2072.357138]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2072.358156]  ? find_held_lock+0x2c/0x110
[ 2072.359040]  ? io_submit_sqes+0x8610/0x8610
[ 2072.359966]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2072.360995]  ? wait_for_completion_io+0x270/0x270
[ 2072.362012]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2072.362995]  ? vfs_write+0x354/0xb10
[ 2072.363787]  ? fput_many+0x2f/0x1a0
[ 2072.364559]  ? ksys_write+0x1a9/0x260
[ 2072.365368]  ? __ia32_sys_read+0xb0/0xb0
[ 2072.366235]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2072.367351]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2072.368437]  do_syscall_64+0x33/0x40
[ 2072.369224]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2072.370304] RIP: 0033:0x7ff5992a9b19
[ 2072.371096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2072.375000] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2072.376607] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2072.378107] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2072.379609] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2072.381108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2072.382612] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:02 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, 0x0, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:33:14 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, 0x0, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x200000000000000)

10:33:14 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 94)

10:33:14 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:33:14 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = io_uring_setup(0x7764, &(0x7f0000000240)={0x0, 0xb2e4, 0x2, 0x2, 0xf0, 0x0, r0})
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f00006e6000/0x4000)=nil, 0x4000, 0x0, 0x100010, r4, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)

10:33:14 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x40904, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000500)='\x00#\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1dH6\xdd\xda\xac3B\xa7\x05\xb7\xb0\xb6(\x80\x04\x81V\vw\x01Q\xc6=\xb5\xc7\xa08:\xb0\xf9\xef\xc7Rw\xf2\xba1\x0fG/\xf9\nu6\xd04\x86\xae\x83\xd3\x95\xca\x9c0\xe8\xb8HeBZ\xa6P\xc7\r\xb1S|\xb3\n\xab6g\xd4\x18OH\xdd26\x95@\xc7\xdb\xe1\xe73\xed\xcbi\n~\x1b\xb6\xb3NE\x98\xd6\xb7?=\xa3Nm?\x03X\xec\x17AL\xb6\x06\xe1.\xc9\xafE\x9b\xd9\x05\xc0E\xfe\xb2\x8a\x13\xf0\x05\xe2\xa8\xa0\xfcD)\xfa.\xb7.\x8d\x84\x14\x9a\xc0\xef\x04\x1d\xbfX3e\x9bwHJ\xc4\x97\x116&\x1aJ&\b:\xb3\x8c \xd6\xfbG*!\xc6\"\xe8\xd3;\xf7\xa4L1\x04\xf8\\\xc6E', 0x5)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f00008ce000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0x8000000)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, r10, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4004, @fd_index=0xa, 0xfffffffffffff801, 0x0, 0x0, 0x0, 0x1}, 0x7)
sendmsg$nl_generic(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="cc0200001c00200026bd7000fbdbdf2512000000d2e1fe56df8fb13c06ec444ea8d669d79b01eda34bd0701f99ee11d0adf2e5a0bbc0df546cb252f6337ec33d8a6deee26c1a4ae6020fc97f0364b9657ef262cc645e200c980fbbe2572ba5e371620a25c84e24feb1356522ae7e1e26081670a2117bf5c5fac8e5b4ebea4c0013c07a3f1cc6f7f464a907bb3d4afe0358e7ded76e1bd70ff1e46804cee9513079dbc86ce179a8f8a6646b0aa495b136c6dbd57c44c8c8656b691d8867f52ccc4d53bd39b56a62241b7c3a5dfef85de5dd1b1ea2f1ec5cd335fb930d37aba17dba1f031bf00affc6293f166646a5f17a7b9f7cdae0ba3c8e0e015f08000600", @ANYRES32=0x0, @ANYBLOB="270119802c887da139f3eb2b514e3e4e8e4c1d8cdf92b1a986b963797c573a7587a95402b1ae040027231e1decc9576dfb234ade2f79b7ba32a2ac6e07be346f410aaed3eaa9eeef52250a1cf073fde36bf851471381246efae064929628b52a5d3ce33bf0884d72641d7766d03ddc4bb64d384a818784582fc5585d750c86f6590bfdf57af1efc6633d4741ee7b5031f4165d92c846270066901c787eb5e9eaf6d454ac2d94ba0a58be8791ac5ff2691572034a0e92e265b36b640bb9b53a17a80e75240455f7eabb95ae3223cbc6036c1a5da6e202423aa4539578f9935f0400860008009400", @ANYRES32=0x0, @ANYBLOB="08003300ffffffffb97c52b1c9590e68c606edace15b8ab6ac1269ed87d62264159bedf01de209dc7d549ca12f24617e53225b393579b38c1f38d0d300db7e9f23d802891a0525070972cf02ae1f72e59695bc578e4596e15236e2f8b6e42eac03d5de991d2057021722901c31b768a02e7d004ac1e29cb43bc990576cf868d57df8deab5544559f14a64c9b5dca03d140e9f3ec0a72c89a4241cddae89b2c39765aabb2c7e46e2f2aa22754b763de57b735f9dee27974e6a42880ad2f7c511631614e54fb43a27385a03fa2d5f450826175cb5473b4801b015a733b0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x20008000}, 0x4)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2083.958373] FAULT_INJECTION: forcing a failure.
[ 2083.958373] name failslab, interval 1, probability 0, space 0, times 0
[ 2083.961067] CPU: 1 PID: 10251 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2083.962575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2083.964372] Call Trace:
[ 2083.964947]  dump_stack+0x107/0x167
[ 2083.965736]  should_fail.cold+0x5/0xa
[ 2083.966573]  ? ptlock_alloc+0x1d/0x70
[ 2083.967405]  should_failslab+0x5/0x20
[ 2083.968223]  kmem_cache_alloc+0x5b/0x310
[ 2083.969110]  ptlock_alloc+0x1d/0x70
[ 2083.969896]  pte_alloc_one+0x68/0x1a0
[ 2083.970770]  ? replace_page_cache_page+0x1200/0x1200
[ 2083.971857]  handle_mm_fault+0x2ab2/0x3500
[ 2083.972770]  ? __lock_acquire+0x1657/0x5b00
[ 2083.973697]  ? find_held_lock+0x2c/0x110
[ 2083.974568]  ? pgtable_bad+0x90/0x90
[ 2083.975365]  ? __pmd_alloc+0x630/0x630
[ 2083.976235]  ? vmacache_find+0x55/0x2a0
[ 2083.977095]  do_user_addr_fault+0x56e/0xc60
[ 2083.978028]  exc_page_fault+0xa2/0x1a0
[ 2083.978871]  asm_exc_page_fault+0x1e/0x30
[ 2083.979759] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 2083.981021] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 2083.984960] RSP: 0018:ffff8880428177b8 EFLAGS: 00050287
[ 2083.986098] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 2083.987626] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff888042817888
[ 2083.989152] RBP: ffff888042817888 R08: 0000000000000001 R09: ffff888042817907
[ 2083.990680] R10: ffffed1008502f20 R11: 0000000000000001 R12: 0000000020000100
[ 2083.992204] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2083.993769]  _copy_from_user+0x172/0x1b0
[ 2083.994660]  move_addr_to_kernel.part.0+0x31/0x110
[ 2083.995724]  move_addr_to_kernel+0x4f/0x70
[ 2083.996636]  io_connect+0x47a/0x610
[ 2083.997422]  ? io_prep_rw+0x1050/0x1050
[ 2083.998300]  ? __lock_acquire+0xbb1/0x5b00
[ 2083.999227]  io_issue_sqe+0x1611/0x77d0
[ 2084.000088]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2084.001220]  ? lock_chain_count+0x20/0x20
[ 2084.002109]  ? __is_insn_slot_addr+0x14c/0x290
[ 2084.003105]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2084.004226]  ? io_connect+0x610/0x610
[ 2084.005045]  ? lock_acquire+0x197/0x470
[ 2084.005895]  ? find_held_lock+0x2c/0x110
[ 2084.006779]  ? __fget_files+0x2cf/0x520
[ 2084.007628]  ? lock_downgrade+0x6d0/0x6d0
[ 2084.008513]  __io_queue_sqe+0x90/0x9d0
[ 2084.009345]  ? io_issue_sqe+0x77d0/0x77d0
[ 2084.010229]  ? __fget_files+0x2f8/0x520
[ 2084.011099]  io_submit_sqes+0x44a8/0x8610
[ 2084.012011]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2084.013069]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2084.014099]  ? find_held_lock+0x2c/0x110
[ 2084.014983]  ? io_submit_sqes+0x8610/0x8610
[ 2084.015906]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2084.016936]  ? wait_for_completion_io+0x270/0x270
[ 2084.017965]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2084.018966]  ? vfs_write+0x354/0xb10
[ 2084.019760]  ? fput_many+0x2f/0x1a0
[ 2084.020533]  ? ksys_write+0x1a9/0x260
[ 2084.021344]  ? __ia32_sys_read+0xb0/0xb0
[ 2084.022214]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2084.023341]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2084.024441]  do_syscall_64+0x33/0x40
[ 2084.025233]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2084.026324] RIP: 0033:0x7ff5992a9b19
[ 2084.027106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2084.030946] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2084.032531] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2084.034023] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2084.035527] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2084.037023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2084.038526] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:14 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(0x0, 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:33:14 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xd75}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x88O\x1f\x11\xca\f\xc0\x826\xdd\xda\xacQB\xa7\x8d\xb7\xe1\v\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
r6 = gettid()
process_vm_readv(r6, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x6, 0x20, 0x1, 0x9, 0x0, 0xfff, 0x4020, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8001, 0x2, @perf_config_ext={0x4, 0x3}, 0x5130, 0x4, 0xfffffffb, 0x5, 0x3, 0x7f, 0x3ff, 0x0, 0x0, 0x0, 0x3}, r6, 0xd, 0xffffffffffffffff, 0x8)
syz_io_uring_setup(0x6ede, &(0x7f0000000340)={0x0, 0x94a7, 0x20, 0x3, 0x370}, &(0x7f0000556000/0x1000)=nil, &(0x7f00003b4000/0x1000)=nil, &(0x7f0000000140), &(0x7f00000001c0))
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f000007d000/0x2000)=nil, 0x2000, 0xb, 0x30, r3, 0xb73cf000)

10:33:14 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(r5, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setreuid(r6, 0x0)

10:33:14 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(0x0, 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:33:14 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf00000000000000)

10:33:14 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(r4, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:33:14 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 95)

10:33:14 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(0x0, 0x2, 0x2000)
dup3(r0, r1, 0x80000)

10:33:14 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x12002, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:14 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast1}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(r4, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:33:14 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(r0, r1, 0x80000)

[ 2084.533000] FAULT_INJECTION: forcing a failure.
[ 2084.533000] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2084.535726] CPU: 1 PID: 10299 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2084.537173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2084.538924] Call Trace:
[ 2084.539486]  dump_stack+0x107/0x167
[ 2084.540250]  should_fail.cold+0x5/0xa
[ 2084.541052]  _copy_from_user+0x2e/0x1b0
[ 2084.541896]  move_addr_to_kernel.part.0+0x31/0x110
[ 2084.542935]  move_addr_to_kernel+0x4f/0x70
[ 2084.543818]  io_connect+0x47a/0x610
[ 2084.544581]  ? io_prep_rw+0x1050/0x1050
[ 2084.545434]  ? __lock_acquire+0xbb1/0x5b00
[ 2084.546320]  io_issue_sqe+0x1611/0x77d0
[ 2084.547174]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2084.548271]  ? lock_chain_count+0x20/0x20
[ 2084.549149]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2084.550247]  ? io_connect+0x610/0x610
[ 2084.551060]  ? lock_acquire+0x197/0x470
[ 2084.551890]  ? find_held_lock+0x2c/0x110
[ 2084.552748]  ? __fget_files+0x2cf/0x520
[ 2084.553579]  ? lock_downgrade+0x6d0/0x6d0
[ 2084.554453]  __io_queue_sqe+0x90/0x9d0
[ 2084.555282]  ? io_issue_sqe+0x77d0/0x77d0
[ 2084.556145]  ? __fget_files+0x2f8/0x520
[ 2084.556993]  io_submit_sqes+0x44a8/0x8610
[ 2084.557893]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2084.558946]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2084.559963]  ? find_held_lock+0x2c/0x110
[ 2084.560816]  ? io_submit_sqes+0x8610/0x8610
[ 2084.561723]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2084.562737]  ? wait_for_completion_io+0x270/0x270
[ 2084.563748]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2084.564730]  ? vfs_write+0x354/0xb10
[ 2084.565513]  ? fput_many+0x2f/0x1a0
[ 2084.566276]  ? ksys_write+0x1a9/0x260
[ 2084.567081]  ? __ia32_sys_read+0xb0/0xb0
[ 2084.567944]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2084.569040]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2084.570116]  do_syscall_64+0x33/0x40
[ 2084.570923]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2084.572009] RIP: 0033:0x7ff5992a9b19
[ 2084.572798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2084.576668] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2084.578264] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2084.579773] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2084.581269] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2084.582762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2084.584248] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:27 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:27 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

10:33:27 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 96)

10:33:27 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(r4, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:33:27 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x114, &(0x7f0000000140), 0x0, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:27 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
dup3(r0, r1, 0x80000)

10:33:27 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:27 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r7, &(0x7f0000000000)=""/59, 0x3b, 0x8)
sendmmsg$sock(r7, &(0x7f0000000f40)=[{{&(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, r6, 0x0, 0x4, 0x1, 0x3, {0xa, 0xfff, 0x8, @loopback, 0x6}}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000340)="aa788e485998ec3cd239a6f69940033cc9bb35023a4f041925a93c008873de89d45cfb2b2ab0ab84aeeeb9ba74214fcd4b25657c42581b8f8f7062405e5597c5959a227f1f4dd449f590001ba0054379f6ce86564d7df27b5b5bce4b28aedb184f11dcd753c217bbf17a03a1d06d47e51d57033abb511fac373c3cd69dfcfd09a4e8b4bc63ed6b68c0544da799b61fcc58538f06d88406f63dc0aa94911310357a19a454953a0177642ab02ea9406a32292e2ce0ce610122f9963d8d7558e3da019bb7a101a4ab419bd1248bcd15d614fffe259bcd6a054f73aba758e0bc6d7a59c3d84ff15455867d", 0xe9}, {&(0x7f0000000500)="898a811f58adb9f8c77a3956126b02531d8c28236348eb759b12bae420657194f9eeed6fd09c4b709499c2e1b2c39d4553dadf0df81771e5b6b268d1edf9ab96723de484d0ef8357c0526369597b99bbd631a16cf0c9d2745e4b274b5a78b583544687aec03f042136f1924751a397a415f9306c14eae57d4333e7ff47db028d9ea17d561dccf659e40a8ede01c24c82aafe2e2ddd35b48cab97460de63c64984d921e18b7ad3d184f4ebf42af236e63c920e73a42ebff8b9e6b79fa33af707eda0bac3c8aab40387303431f55e8abc62d9d9fffd51b54ab", 0xd8}], 0x2}}, {{&(0x7f0000000600)=@x25, 0x80, &(0x7f0000000440)=[{&(0x7f0000000680)="7be4cc3b45d20b354d4608477f71ae916c8e8b6d5f1f49ff8d32e882d00bb8d64b04ab567ecec17aab33a70857d0aa1dccdebe2aeca6cd55aa66467b2d93cf0dfe08f7e20ad8b7ce8f794757b78def9c80559bae8a4f5361af272ba700632b638207e0e1c850a198c995d4b413b08b3c41dc2053cb965b76c3b50d8aad11b69e5d6b4a1f38691daf9f1eae4dbe99502f32274f875eb9222e6581f89931e51935f92849ec20cd474c0ca983", 0xab}, {&(0x7f00000001c0)='|', 0x1}], 0x2, &(0x7f0000000740)=[@txtime={{0x18, 0x1, 0x3d, 0x686}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x7f}}, @timestamping={{0x14, 0x1, 0x25, 0x81}}], 0x78}}, {{&(0x7f00000007c0)=@ll={0x11, 0x19, 0x0, 0x1, 0xff, 0x6, @remote}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000015c0)="668294fb8abf3599588a7c337583bc56d8560ffc25289c077a590404948e506399899f323d73f6a194b0e036907ae9bf1d9145e4263f3c4ddc7d14e41bee5065a800ebb9cf39ded6e4d5b2973adc46fb0a9ff94ea7ef4f40a3d4f08577a90e99bf99e4ae84f969619dd225cc64049b7e7b367cf554a2d45ace8488bcd0a6bd46df30d21da62715f151ac3d9d32aa94ef96191a45d0b1882fb761a73a3ad902a557c0bb4a2402cf048f4347ad87bf00cf72bf1cf77b03e0291e3eed0bc4272e11992fa2d235183a0655194ec8e600fa403570b7746df9e8b8667652f14466bc4225b610410c11814f32ccd109769418f2b7fa634ff86cea586a5554079a78adc7ee468580ef902eb05890983aaa0b42c844bf679e8969c0f7e5da347a62a360f20a6501a742320fd86c13a79722ad46fea0b1d8edf17f23190ff779001dcbbdd5bea82fb15d2173ebbe5b5720905878fba5e173effcee8ec681ab03503739b2624fb5a575b2732ed3a7ab6b7631f28ddbd4046bf0e4d13f72a81d43d35ed19227ecdb56c5f4e1d5bddd9f8f40921caa699c5eff9497515bbcfaa97de7baff88521a82c0e89b7b17cfaae5f4774738e2fa8861987319b37b175c46d1374a08159b7dfd0e6f582a2b0cd01ea1196f462e0ef26280436affad0fba68cada0427dd1b93010713ea31aef54214870990a1d207625e202df1ab2f309df0662139a8bb677a15b4867d5eede3f29b3a6e3d94a1f7b40f13cccdfc39b18ce2921564fbbd5bbf66c9f72dc6357b73a67d2e46dcf6a3a4014ac7ce19b058542f018deed561202bfe17fd86a652d3581d61869afbd486170bb1c098327775e657890c458da6de7e39dcfeae3188e751fedf79d3f4908bb95eb1ca9e4e7ba92cacaf0004815627647337a864da73d3228953d44e4790b0b832bf7c04302eb23af184ab2fe38152698817cfce75273f92ad40b7c401fa93f113d067d8ebbbbba49a6a6c2055d1a1936c101c6c821419e98113363be68790d1f9f362122d84fa9059db71bf2c8c0e3fc57f266b80f1ffbbf705fd8498177334ae47d7c473606656ea4ec1e3924729c71ea9442fc1b0be74e49dede139772e26960d2f895e870c21dfa7fe956ba53b2757e149e507028fcbdbab78165f3cf3cb77da37f1157e9cf1c698c295031f1b59b44356d95068e2242639772106c8181b8e4d106970febc28ad25fbff48c3c3cc9c8ba050c6e3cf057f9133188755eb9ee5d866676f296ec18578411c34e69af0ba06f4fdad27e7bcd443d1ae4b80f7d83d61292887f382cb9b8a719f0b1d4f59e8e31d9d771ced0e92121503a7df2733dd7814be5c3ca9eb95fd78f176634948978983db06be636710119c5fae31a6a6fe5cf4eeabf4bd362d547107ce0d736c28bfe744e8eb6299209a6e8e6995296c3f591677c63ceba838debffc0deb31f6f497e252dc430a4b4b6195f9c58ccf8a5f91c2f8abd80c05461be7f5f7d4f52c3506665ab56a582bc3f91645c37a989da79a4c489316bcf796b6afa0f47ad0f4d28ac569a00bc1b079cf2864670a827a79e23502098105d38b487220dd6e422ecf14ca6f5754f157631b628fa03f78d2e069589d897870b29794f62fd6e2155267dd052c9dea9c143fb4be1e12d78a9c3a82d40ead057c17be6131a70f6babf5f03ae7cf7a5b4ca02c22256d7391345a0aa87b5014ed0344979f57a2aa855d6110db274546448da7ca0ed16c81011ca8fa6227d256b0eb0f1610151eb6d59519dea7c0ce617f17478901a2b9987fc5a52ba4c418739a25531ecbc95110bcffb2830e278c9f06cf99e9f0a2c1f6a1dd44c75c6fce0e98e7a5b6b882ebcb671f3c9a7cfd450dc4c18d187d56ce7d87a6ee1f981993dfaffbb20635b843d2d1ba5d1ccd05cc3a92d2b4fd933a48b768af7e3caa4f39c90661abff3ab2baab90d1a023be12f6b3c8f5ea717829ac970b94d93cff9e29f76376d1ff61b0cd35db66cfb32a4e5fa018444c5d10ab556bcaad8c2c9fce1bab39dc62ac014ac13d2e313ee0915c2476902aa2503583386f2886394200a458ce3684f9c528216d31365ed0e6abf84234e4f282d5cab7def7962342397742966fb50513200b2b06521cf2d7aeef5fd5f93d6cbf52e8bf619eadaed37b07d048c2e34bb3d1fba0aed6e8d8ad8849413b3560a8b86633cf703037f0dc2a97cd84c848f1659662e1192440e974cd4a37758d71fff7b65317311d710e1e998f6aa93acafaeee28a8425dbf0f4ceae06dc017e41491c4c74c322d9fc3df9b73344cc09253b0a93bd8f4833e85ea4151efd2c7cd452ad0d953478477b1b3132e6b6bdcfbfcd3c05596e20818c37cadfa25953944f8e39ca15a77447cd780e6a0073e1765d10da020db09fcf3bbf8017f2086e266cea5532d566b2ccbfa8ab21159465a57c63b6eac35560a6b257554e0d70fcacbf8ee71428b8c2ada9083e3a3e4982baa4968a17cbf98ec00de88b203fa4df810bc945c7df293dddddb92c5a82fd0ddb75552b208490cfcc4aa39f0d62d74aa30e8477d5f66814400b43e3560399552938a44057bdd67af68d9801b751dd14c855f0bb7468ce631b41e8e4d6f51d8d2678811608cc71cd06b28becc55a5dcb29511284f085441da4a0961f72721f4f9ca49567e715c6d3dfd8aec108debfe4d2d9bf24fb367e86e9112d250084ed0bc4647a09658f8000df67b7b6ae302cc381914de6b95c27eba8277b5662f83638038f02946e82597945012a95db70cdad7448110d6d3d5568077fbafb2b672bd2758818e98fe59011429d60cc69330b472d9b66d42e1470ed6b3b8b9354ec36675f22918d49c5f5ed9e1378bc69889ee99bfef1f49bc22165586e9a152bee5a4f195d6e764612a1676c0f1c99beb6a7749d0618a561a3bdfff85283e6a0b2bba581280749a0f764994b9edc298f4e45cd391bbb7a0b0f9bce101ad0d278fae84cc9ce6810c69f6e21800d1997d435cb17cb9237d3ffc72d0f7bb58507f496a21faf7404e37f91341a057c4e1e68b4ae54af455cfb9bb786f60acfb4d859d563872cc33e5587dd4fa2c6d385fa7038fa7a7dc45b315c7dc09d72ed85514518d9668e7c7f30703e8102dc9cf6295d3ffab5794cab4e0931a5327683fbe1c8203cd7d3af53a4cafd8689516523cf1a2893a8a6c835257ec45dd78d5ecf93b320f0da06fbd76c2e9d34f17aa3056a36ad40cab7ee5b5ba3f0393dba1721e3bddc691446abd9f4014b61f0a018efb207335c80bc03b2a04bacc46d2614ba3dae521b4df101bc0369b60463b14fa8d2f310ae6865100f1c7258b9114354dd1668d8d10072d0a6d245049d5cdbf8a6f0111cd96958921330f0f0dc4cfe393a731ad243a68d20be58588f97fa591e54936acbe0462d33ecd9dae8a574254960a4220209d78d5485b3b871317c84a3d06c2a37e92cdd1d7fb2be55416ae4afb85cf08ec620f2feda64fecd4ac750fed94baba2e403b7a00070b5b55b25a372bc699c7c8f96590eb49364cf05840b244503c087040fb092d44eda48836f9b7e8b24540734570c21d19bb4ffc43c3f44147dc3dfe4726b54e291c85589dd19f5f968636ce6435ab983cadefd6a7e3fe5acfd538b89de5d58b8463157b469705a131a193306d208d4ec4286dcbe070b87e12370b99949e857d5eb17daa46f9f3de3fdbe2a770e8bf69e58e167455825bb11469e06c16cff63c54195676af6cb750ed1df6b6cf2c6c6095a429157485b1ad2f829c146e0aca5c61ffb168e8f4ddd04f4462571626e357d8cd13e82f1120272eff368cf43f348ce90c3543f4197557649661283b3fa452e46512c76c178fd468c91bba592b32ad2d92c2bddc57dd605cde14dc29377bc848001eacf61a2f191241d4ad13fdcb609504aeac60f54c0fd9ed9240e31d3eee85b2c2aeb4a432078fc5c4f82b21b68522e18759d3729c49659969d4672eeeb8453cf4a5765790f1f56a85d215f9006078cfb832fe0023bc6741d90625c8db0fd8344b7e105cf932a2d43acdcad9a3ef96b06e3b44b65da1a95436194a045c0c404894ccb1e12a5a719abfff52efce75241491aa5006f479ece22081b0817d857c78df7580a0eba2715043cec28f67867550707fe7e5d1558804a440f38e169a930d6ff7a40dff5b0f804f48dd7727d51efe58b4fc545f018dbc7c4694114991b149560b11b3a3d468866407bdc450e761e362e7975fab270615ed56132b272822b68c32637e4d1696f99c294f0c763965f68a75ef5ab0296b32627215e93616ac2c17b674ab3242c27d5c350eb4e52a0a6b16d95cff9fb7c698b237074b0f6cc50fb633ced35031041fc7aa0fe13ee5c3a082b6ffbd83679bcd337f47b6d449a6b5c00083a04473e87fc229f12ee62ffd7ccc7277c835ab77f357803e8ce6bd9ad6acb20f3907958dd7527d300f427518c59122ae4140c0d0b86914250e780b1303eb499e5e51b44f259ace67860d01e891f4160c86521d540490a0ef5fce2baee31c60e0a063f39c93ae38ef790b754c10a7a6f197dc2f36f237c0318ce10d633572be375815636b7e2893068a5dadbb17bff577c91480e25f4d23342a34f69b9af8e77d490ccaa9923a5b50ed879917e41f7537315e9c6b0940a24022545ef679dea9871f71df28a1cf66b14a762f22d1601bdfea02a6e933a59764b317c98f2d2272e0dcd40880e2430b5249e83cff97cd929b9c43ad1f18fbe0e17ba986e5d24d78d12ed695b9606a576d0317794e55622105cfa02e618ab0a537201d6bd2b02b7116b9dfc5714ceb72a1f512199f12207024ab826d2ee7bbb9ac2ec787a21d7b178a4f43463b568a8f1d256ef0cadb46e949c20ac906282bc0874295d54624100472f5b904f19ed25b7a833f64ec1d1e51273e521d57c2acf84d3b854bbdd0dd69982be25dc9e6e18aa00ff2052204dfd2b53bc1f2559c0fd914840fda168a8d30a6637b95e1361e0fa29ba0aa470c0ae0dd5eae84df4de32dd977781aa677ebb383269c5e2cba522e197807734d5f3edafdd6110f9ba4e853880aec376888ec71cf73ce6b2d4d3b635bc59a89bcf204c9d29c03da1e7e38663689621af38bca3100d8b2ea96ab423afd67a50f7d70482cd3815831d81be28040a329c395661bd6dc4812729bbdbfbf6a1c5a27d6e9997870b671a65e2373f2bdb151e7195545ff5374dc868ce691bb9aeb048b3824c46ac50da6ef037ed5d245e17f05a69adbca999e45f338c8421cff7d62835202a697dca8a130f8491f00e86140da4b88df1d8a3ec3dfe4aa4fdcf78fb09e115f037bbad8ecc306330b0689280b05191d4e7e2116e00127f05a776f2185f86c0aa099b70880cf9a71e6fd5f70c75f8d537cfb9141523b187d86c2a6d4ecc42b4e1edd5b6f55c340547a83bafa857aa8c00d662303497c7db437feddd5a8975f288e544ae3f4a0ca6a606f8d80bc3614b5e98202df66ad7c58c99943ce1279ff02f0f1626f652de3e75d925d41b6ab895c19cf3c556070e3978293dab6d25c950581ebc0eeeefba64155147281e5e944f96c8a5544cef288913ec63ca5ee417ee6f7d19b9721fbaf78d773273461fa5d75ada5999ba3505f7dc642e55d6abd6b08bbe19a49bca77df97d794d0ce945438d83cd41bc6e227de3bbb1060a7adffc7c0903c91c9be2b79053fbfbbf1752bb8c668dbb0e2f282990b2183bf818d5d05ff698303bdff62943b0d1b9f4f6dc2c8c1f138f700d726e7cdd61808ed5a37cabb49429e35eaa0db565c40e2c20aa9508b7a7093dbd2fb", 0x1000}, {&(0x7f0000000840)="a83bcffb77f8892b291e5059f087d8d4c72edafbf21ec5934c7b679d5e6e87a130b3e3af3322fa6c6d0b16435fb5f76a300cbe8b8f1dac67427febd81d83615670a64c4f40ab83717a55d54fc15cbeb0a9ec6fe3ae58187515f8f4a1c38d1a4b0da1d0b92eb59c33f16592eed70c0f7754faeb0d1dd491808ba4e81c896e1a3c4eadc43ef7aa5a28126e1dd7b7c320e06f61f20f02376ef9839acbc58653db8e795a734b02edcf5f483c352cc55e1d6796257e19435426b6c88a59328d9595beed7003a4f877ff73b9b61ed2296ff72f809ab0dcf60bc2a9036762f18ce6b60a05f2c8858ded313fbbc30a0f5cb7d7db5d2c", 0xf2}, {&(0x7f0000000940)="c5bc94ec2edb343445d926d53beca31f998846", 0x13}, {&(0x7f0000000980)="0c352b53868428ec208c4cdf6c3c981f62d8f52e4fc7e08d61bc9d276103d48861457dde5c993c29dc846bf1b380832ec7cb382221d87fd80140710b811e38dc20de652b9c0619fdf6dc4082e6a1aeec9d2a05dcac8d0376e5d5363e5c235542", 0x60}, {&(0x7f0000000a00)="941324196432048c4ebc61e7cf69b364a6a4b336228bfe4ce4a8a682f6c65aff48401169187dd3b8464eee69762b112fed5d8cdc87bb5f5a552a07728a86299ba422b797b8079b99b575b4942c5eb6d94a8132f50a9607b2d13f703aa914291a0dc7323490a97b535258", 0x6a}], 0x5, &(0x7f0000000b00)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}], 0x18}}, {{&(0x7f0000000b40)=@phonet={0x23, 0x6, 0x2, 0x68}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000bc0)="82a531ed9773e83b04da1559d355f825b6ed07ae398499e1c6b1175be60264f60af1e2a6414dd64606b54a268cb5626ffa9882f714034aee164d502a7e8e605803abae481253f665869761a740b43451b56dcfa3229563039b8a", 0x5a}, {&(0x7f0000000c40)="eb7b15fa0ad7c3fc58d4d7d61475ef656bac04f208dd2403daa4db68ff68039bca8ad88af2a16fcf0cc5c607c89855fef9bbc8772a2f1faaced6b172c2b1a8abb42627925b1449bb55b8e75db95829562ac1a3c3b83888d0df9749fbbf351477cf6b22fc134e1444e7b2c38751e6bd37cda7db4783036ac6509f7b1e03276a99325de45856338344575b75f7728853d67b64c72a4ba2e7eae54387786648bdfb7b4d761964b82dacb237a54e20890a8dc572438faf6a8f0bff0a0dba1d1d697f8a1d827fe87b9c43f8720a", 0xcb}, {&(0x7f00000025c0)="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", 0x1000}, {&(0x7f0000000d40)="df77b88f016b5f85ead1c5b1cabc01f14c06e6de13d28df8888caba6d650932f0c2065011735ec29fe209aeb4feb4b3c4cb845965d7cd7b76014c5c7bbe7a40293a02e71f58befc16f17ed2a78cd8eaf3f6fc541b1df6cdcad77393594dee3c9c88ea0dba90ab6e3f53a8a42c4074e02793ed0034e66ec15cb62458669a8dc9ff08d93bf4a194392d5d26addfee0973d9d5e14b3fb458ef8eab9d453b110f7ebfc88d7d547bd6a9b7b12fc0da2b12478e5f78176281c14dc138c1297ddb37464585f36aa4ca7375fb36e37416b50dc70f50a39abf048ddeaf85bb5e632538a48ecc04827ce36a782ea4dd5c3d2ae1cf750efaf44653fbb3db0", 0xf9}, {&(0x7f00000035c0)="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", 0x1000}], 0x5, &(0x7f0000000ec0)=[@mark={{0x14, 0x1, 0x24, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffe}}, @mark={{0x14, 0x1, 0x24, 0x2}}], 0x48}}], 0x4, 0x4000090)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2097.468522] FAULT_INJECTION: forcing a failure.
[ 2097.468522] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2097.469989] CPU: 0 PID: 10321 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2097.470809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2097.471773] Call Trace:
[ 2097.472079]  dump_stack+0x107/0x167
[ 2097.472499]  should_fail.cold+0x5/0xa
[ 2097.472941]  __alloc_pages_nodemask+0x182/0x600
[ 2097.473473]  ? lock_acquire+0x197/0x470
[ 2097.473928]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2097.474614]  ? find_held_lock+0x2c/0x110
[ 2097.475095]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2097.475690]  ? lock_downgrade+0x6d0/0x6d0
[ 2097.476160]  ? mark_held_locks+0x9e/0xe0
[ 2097.476624]  alloc_pages_current+0x187/0x280
[ 2097.477128]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2097.477727]  ? replace_page_cache_page+0x1200/0x1200
[ 2097.478305]  pte_alloc_one+0x16/0x1a0
[ 2097.478787]  ? replace_page_cache_page+0x1200/0x1200
[ 2097.479368]  handle_mm_fault+0x2ab2/0x3500
[ 2097.479853]  ? __lock_acquire+0x1657/0x5b00
[ 2097.480350]  ? __pmd_alloc+0x630/0x630
[ 2097.480804]  ? vmacache_find+0x55/0x2a0
[ 2097.481266]  do_user_addr_fault+0x56e/0xc60
[ 2097.481769]  exc_page_fault+0xa2/0x1a0
[ 2097.482215]  asm_exc_page_fault+0x1e/0x30
[ 2097.482702] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2097.483320] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2097.485419] RSP: 0018:ffff888042d777b8 EFLAGS: 00050246
[ 2097.486026] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2097.486848] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888042d77888
[ 2097.487666] RBP: ffff888042d77888 R08: 0000000000000001 R09: ffff888042d77907
[ 2097.488481] R10: ffffed10085aef20 R11: 0000000000000001 R12: 0000000020000100
[ 2097.489298] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2097.490134]  _copy_from_user+0x172/0x1b0
[ 2097.490601]  move_addr_to_kernel.part.0+0x31/0x110
[ 2097.491206]  move_addr_to_kernel+0x4f/0x70
[ 2097.491690]  io_connect+0x47a/0x610
[ 2097.492110]  ? io_prep_rw+0x1050/0x1050
[ 2097.492577]  ? __lock_acquire+0xbb1/0x5b00
[ 2097.493064]  io_issue_sqe+0x1611/0x77d0
[ 2097.493525]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2097.494122]  ? lock_chain_count+0x20/0x20
[ 2097.494599]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2097.495205]  ? io_connect+0x610/0x610
[ 2097.495647]  ? lock_acquire+0x197/0x470
[ 2097.496101]  ? find_held_lock+0x2c/0x110
[ 2097.496567]  ? __fget_files+0x2cf/0x520
[ 2097.497022]  ? lock_downgrade+0x6d0/0x6d0
[ 2097.497500]  __io_queue_sqe+0x90/0x9d0
[ 2097.497946]  ? io_issue_sqe+0x77d0/0x77d0
[ 2097.498426]  ? __fget_files+0x2f8/0x520
[ 2097.498893]  io_submit_sqes+0x44a8/0x8610
[ 2097.499386]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2097.499954]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2097.500503]  ? find_held_lock+0x2c/0x110
[ 2097.500970]  ? io_submit_sqes+0x8610/0x8610
[ 2097.501465]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2097.502022]  ? wait_for_completion_io+0x270/0x270
[ 2097.502578]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2097.503115]  ? vfs_write+0x354/0xb10
[ 2097.503543]  ? fput_many+0x2f/0x1a0
[ 2097.503958]  ? ksys_write+0x1a9/0x260
[ 2097.504397]  ? __ia32_sys_read+0xb0/0xb0
[ 2097.504860]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2097.505473]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2097.506064]  do_syscall_64+0x33/0x40
[ 2097.506493]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2097.507085] RIP: 0033:0x7ff5992a9b19
[ 2097.507511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2097.509616] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2097.510484] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2097.511302] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2097.512119] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2097.512931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2097.513747] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:27 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:27 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
dup3(r0, r1, 0x80000)

10:33:27 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(r4, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
setreuid(r5, 0x0)

10:33:27 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
dup3(r0, r1, 0x80000)

10:33:39 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setreuid(r3, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
setreuid(r4, 0x0)

10:33:39 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x32e2, &(0x7f0000000240)={0x0, 0x4f22, 0x0, 0x3, 0x155, 0x0, r0}, &(0x7f00002cd000/0x4000)=nil, &(0x7f00007c0000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440)=<r5=>0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r8=>r7, @ANYBLOB="0100002e2f66696c6530000000000000"])
close_range(r7, r8, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100))
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r9 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r9, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000140)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f000099d000/0x2000)=nil, 0x2000, 0x9, 0xf04db0e523e46ac1}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x20010, r6, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 97)

10:33:39 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 5:
syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(0xffffffffffffffff, r0, 0x80000)

10:33:39 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

[ 2108.917812] FAULT_INJECTION: forcing a failure.
[ 2108.917812] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2108.919292] CPU: 0 PID: 10355 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2108.920102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2108.921065] Call Trace:
[ 2108.921380]  dump_stack+0x107/0x167
[ 2108.921806]  should_fail.cold+0x5/0xa
[ 2108.922261]  __alloc_pages_nodemask+0x182/0x600
[ 2108.922815]  ? lock_acquire+0x197/0x470
[ 2108.923281]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2108.923981]  ? find_held_lock+0x2c/0x110
[ 2108.924463]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2108.925070]  ? lock_downgrade+0x6d0/0x6d0
[ 2108.925555]  ? mark_held_locks+0x9e/0xe0
[ 2108.926029]  alloc_pages_current+0x187/0x280
[ 2108.926538]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2108.927154]  ? replace_page_cache_page+0x1200/0x1200
[ 2108.927750]  pte_alloc_one+0x16/0x1a0
[ 2108.928197]  ? replace_page_cache_page+0x1200/0x1200
[ 2108.928787]  handle_mm_fault+0x2ab2/0x3500
[ 2108.929279]  ? __lock_acquire+0x1657/0x5b00
[ 2108.929788]  ? __pmd_alloc+0x630/0x630
[ 2108.930248]  ? vmacache_find+0x55/0x2a0
[ 2108.930721]  do_user_addr_fault+0x56e/0xc60
[ 2108.931245]  exc_page_fault+0xa2/0x1a0
[ 2108.931699]  asm_exc_page_fault+0x1e/0x30
[ 2108.932193] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2108.932819] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2108.934970] RSP: 0018:ffff888016d7f7b8 EFLAGS: 00050246
[ 2108.935595] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2108.936435] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff888016d7f888
[ 2108.937263] RBP: ffff888016d7f888 R08: 0000000000000001 R09: ffff888016d7f907
[ 2108.938091] R10: ffffed1002daff20 R11: 0000000000000001 R12: 0000000020000100
[ 2108.938933] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2108.939789]  _copy_from_user+0x172/0x1b0
[ 2108.940263]  move_addr_to_kernel.part.0+0x31/0x110
[ 2108.940835]  move_addr_to_kernel+0x4f/0x70
[ 2108.941328]  io_connect+0x47a/0x610
[ 2108.941749]  ? io_prep_rw+0x1050/0x1050
[ 2108.942227]  ? __lock_acquire+0xbb1/0x5b00
[ 2108.942723]  io_issue_sqe+0x1611/0x77d0
[ 2108.943204]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2108.943818]  ? lock_chain_count+0x20/0x20
[ 2108.944308]  ? __is_insn_slot_addr+0x14c/0x290
[ 2108.944841]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2108.945463]  ? io_connect+0x610/0x610
[ 2108.945911]  ? lock_acquire+0x197/0x470
[ 2108.946376]  ? find_held_lock+0x2c/0x110
[ 2108.946854]  ? __fget_files+0x2cf/0x520
[ 2108.947324]  ? lock_downgrade+0x6d0/0x6d0
[ 2108.947808]  __io_queue_sqe+0x90/0x9d0
[ 2108.948265]  ? io_issue_sqe+0x77d0/0x77d0
[ 2108.948743]  ? __fget_files+0x2f8/0x520
[ 2108.949214]  io_submit_sqes+0x44a8/0x8610
[ 2108.949715]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2108.950301]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2108.950867]  ? find_held_lock+0x2c/0x110
[ 2108.951343]  ? io_submit_sqes+0x8610/0x8610
[ 2108.951844]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2108.952410]  ? wait_for_completion_io+0x270/0x270
[ 2108.952981]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2108.953519]  ? vfs_write+0x354/0xb10
[ 2108.953955]  ? fput_many+0x2f/0x1a0
[ 2108.954378]  ? ksys_write+0x1a9/0x260
[ 2108.954821]  ? __ia32_sys_read+0xb0/0xb0
[ 2108.955300]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2108.955904]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2108.956505]  do_syscall_64+0x33/0x40
[ 2108.956930]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2108.957526] RIP: 0033:0x7ff5992a9b19
[ 2108.957954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2108.960073] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2108.960942] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2108.961757] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2108.962579] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2108.963409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2108.964238] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:39 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 5:
syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(0xffffffffffffffff, r0, 0x80000)

10:33:39 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:33:39 executing program 0:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r2}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:39 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 98)

10:33:39 executing program 5:
syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(0xffffffffffffffff, r0, 0x80000)

[ 2109.153891] FAULT_INJECTION: forcing a failure.
[ 2109.153891] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2109.155349] CPU: 0 PID: 10376 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2109.156131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2109.157075] Call Trace:
[ 2109.157386]  dump_stack+0x107/0x167
[ 2109.157804]  should_fail.cold+0x5/0xa
[ 2109.158240]  __alloc_pages_nodemask+0x182/0x600
[ 2109.158771]  ? lock_acquire+0x197/0x470
[ 2109.159231]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2109.159916]  ? find_held_lock+0x2c/0x110
[ 2109.160385]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2109.160978]  ? lock_downgrade+0x6d0/0x6d0
[ 2109.161453]  ? mark_held_locks+0x9e/0xe0
[ 2109.161919]  alloc_pages_current+0x187/0x280
[ 2109.162418]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2109.163016]  ? replace_page_cache_page+0x1200/0x1200
[ 2109.163607]  pte_alloc_one+0x16/0x1a0
[ 2109.164036]  ? replace_page_cache_page+0x1200/0x1200
[ 2109.164614]  handle_mm_fault+0x2ab2/0x3500
[ 2109.165093]  ? __lock_acquire+0x1657/0x5b00
[ 2109.165589]  ? __pmd_alloc+0x630/0x630
[ 2109.166034]  ? vmacache_find+0x55/0x2a0
[ 2109.166496]  do_user_addr_fault+0x56e/0xc60
[ 2109.167004]  exc_page_fault+0xa2/0x1a0
[ 2109.167457]  asm_exc_page_fault+0x1e/0x30
[ 2109.167931] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2109.168544] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2109.170636] RSP: 0018:ffff88804295f7b8 EFLAGS: 00050246
[ 2109.171246] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2109.172057] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88804295f888
[ 2109.172872] RBP: ffff88804295f888 R08: 0000000000000001 R09: ffff88804295f907
[ 2109.173685] R10: ffffed100852bf20 R11: 0000000000000001 R12: 0000000020000100
[ 2109.174502] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2109.175337]  _copy_from_user+0x172/0x1b0
[ 2109.175802]  move_addr_to_kernel.part.0+0x31/0x110
10:33:39 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2109.176360]  move_addr_to_kernel+0x4f/0x70
[ 2109.176999]  io_connect+0x47a/0x610
[ 2109.177420]  ? io_prep_rw+0x1050/0x1050
[ 2109.177882]  ? __lock_acquire+0xbb1/0x5b00
[ 2109.178366]  io_issue_sqe+0x1611/0x77d0
[ 2109.178860]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2109.179460]  ? lock_chain_count+0x20/0x20
[ 2109.179935]  ? __is_insn_slot_addr+0x14c/0x290
[ 2109.180453]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2109.181047]  ? io_connect+0x610/0x610
[ 2109.181484]  ? lock_acquire+0x197/0x470
[ 2109.181936]  ? find_held_lock+0x2c/0x110
[ 2109.182401]  ? __fget_files+0x2cf/0x520
[ 2109.182865]  ? lock_downgrade+0x6d0/0x6d0
[ 2109.183340]  __io_queue_sqe+0x90/0x9d0
[ 2109.183790]  ? io_issue_sqe+0x77d0/0x77d0
[ 2109.184257]  ? __fget_files+0x2f8/0x520
[ 2109.184720]  io_submit_sqes+0x44a8/0x8610
[ 2109.185210]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2109.185780]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2109.186328]  ? find_held_lock+0x2c/0x110
[ 2109.186801]  ? io_submit_sqes+0x8610/0x8610
[ 2109.187298]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2109.187848]  ? wait_for_completion_io+0x270/0x270
[ 2109.188396]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2109.188923]  ? vfs_write+0x354/0xb10
[ 2109.189345]  ? fput_many+0x2f/0x1a0
[ 2109.189756]  ? ksys_write+0x1a9/0x260
[ 2109.190193]  ? __ia32_sys_read+0xb0/0xb0
[ 2109.190667]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2109.191269]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2109.191857]  do_syscall_64+0x33/0x40
[ 2109.192280]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2109.192861] RIP: 0033:0x7ff5992a9b19
[ 2109.193285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2109.195391] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2109.196259] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2109.197071] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2109.197884] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2109.198694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2109.199510] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:39 executing program 2:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:33:52 executing program 0:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r2}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 4:
rmdir(&(0x7f0000000440)='./file0\x00')
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000a5a000/0x2000)=nil, 0x2000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x6cb1, &(0x7f0000000580)={0x0, 0x76a, 0x8, 0x10002, 0x432e, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000540)=<r7=>0x0, &(0x7f0000000140))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x7)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x6000, @fd_index=0xa, 0x101, 0xa34, 0x1, 0x10, 0x0, {0x0, r8}}, 0xf6)
syz_io_uring_submit(r7, r2, &(0x7f00000003c0)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000340)={0x30100, 0x3a, 0x14}, &(0x7f0000000380)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r8}}, 0x401)
getsockopt$bt_BT_POWER(r6, 0x112, 0x9, 0xfffffffffffffffc, &(0x7f0000000400))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(r0, 0xffffffffffffffff, 0x80000)

10:33:52 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

10:33:52 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:33:52 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 99)

10:33:52 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000004307, 0x44860, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000002, 0x10010, r0, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r6, r9, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0xd82)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(r0, 0xffffffffffffffff, 0x80000)

[ 2122.037415] FAULT_INJECTION: forcing a failure.
[ 2122.037415] name failslab, interval 1, probability 0, space 0, times 0
[ 2122.040401] CPU: 1 PID: 10401 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2122.041849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2122.043611] Call Trace:
[ 2122.044171]  dump_stack+0x107/0x167
[ 2122.044941]  should_fail.cold+0x5/0xa
[ 2122.045753]  ? create_object.isra.0+0x3a/0xa30
[ 2122.046712]  should_failslab+0x5/0x20
[ 2122.047523]  kmem_cache_alloc+0x5b/0x310
[ 2122.048381]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2122.049645]  create_object.isra.0+0x3a/0xa30
[ 2122.050574]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2122.051656]  kmem_cache_alloc+0x159/0x310
[ 2122.052539]  ptlock_alloc+0x1d/0x70
[ 2122.053312]  pte_alloc_one+0x68/0x1a0
[ 2122.054115]  ? replace_page_cache_page+0x1200/0x1200
[ 2122.055200]  handle_mm_fault+0x2ab2/0x3500
[ 2122.056109]  ? __pmd_alloc+0x630/0x630
[ 2122.056925]  ? trace_hardirqs_on+0x5b/0x180
[ 2122.057862]  do_user_addr_fault+0x56e/0xc60
[ 2122.058781]  exc_page_fault+0xa2/0x1a0
[ 2122.059620]  asm_exc_page_fault+0x1e/0x30
[ 2122.060500] RIP: 0010:copy_user_generic_string+0x2c/0x40
[ 2122.061656] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 <f3> 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01
[ 2122.065551] RSP: 0018:ffff88801cc777b8 EFLAGS: 00050246
[ 2122.066675] RAX: 0000000000000001 RBX: 0000000000000080 RCX: 0000000000000010
[ 2122.068192] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffff88801cc77888
[ 2122.069699] RBP: ffff88801cc77888 R08: 0000000000000001 R09: ffff88801cc77907
[ 2122.071227] R10: ffffed100398ef20 R11: 0000000000000001 R12: 0000000020000100
[ 2122.072732] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2122.074270]  _copy_from_user+0x172/0x1b0
[ 2122.075150]  move_addr_to_kernel.part.0+0x31/0x110
[ 2122.076187]  move_addr_to_kernel+0x4f/0x70
[ 2122.077079]  io_connect+0x47a/0x610
[ 2122.077852]  ? io_prep_rw+0x1050/0x1050
[ 2122.078714]  ? __lock_acquire+0xbb1/0x5b00
[ 2122.079646]  io_issue_sqe+0x1611/0x77d0
[ 2122.080497]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2122.081610]  ? lock_chain_count+0x20/0x20
[ 2122.082488]  ? __is_insn_slot_addr+0x14c/0x290
[ 2122.083463]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2122.084570]  ? io_connect+0x610/0x610
[ 2122.085382]  ? lock_acquire+0x197/0x470
[ 2122.086221]  ? find_held_lock+0x2c/0x110
[ 2122.087097]  ? __fget_files+0x2cf/0x520
[ 2122.087943]  ? lock_downgrade+0x6d0/0x6d0
[ 2122.088819]  __io_queue_sqe+0x90/0x9d0
[ 2122.089646]  ? io_issue_sqe+0x77d0/0x77d0
[ 2122.090520]  ? __fget_files+0x2f8/0x520
[ 2122.091387]  io_submit_sqes+0x44a8/0x8610
[ 2122.092290]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2122.093338]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2122.094351]  ? find_held_lock+0x2c/0x110
[ 2122.095218]  ? io_submit_sqes+0x8610/0x8610
[ 2122.096129]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2122.097157]  ? wait_for_completion_io+0x270/0x270
[ 2122.098172]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2122.099169]  ? vfs_write+0x354/0xb10
[ 2122.099955]  ? fput_many+0x2f/0x1a0
[ 2122.100720]  ? ksys_write+0x1a9/0x260
[ 2122.101522]  ? __ia32_sys_read+0xb0/0xb0
[ 2122.102379]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2122.103496]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2122.104579]  do_syscall_64+0x33/0x40
[ 2122.105366]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2122.106442] RIP: 0033:0x7ff5992a9b19
[ 2122.107242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2122.111144] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2122.113013] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2122.114630] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2122.116147] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2122.117650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2122.119163] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:33:52 executing program 2:
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:33:52 executing program 0:
syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r2}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(r0, 0xffffffffffffffff, 0x80000)

10:33:52 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 100)

10:33:52 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:33:52 executing program 2:
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:33:52 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xc85b, 0x0, 0x0, 0x193}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = gettid()
process_vm_readv(r4, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
waitid(0x0, r4, &(0x7f0000000180), 0xc0000002, &(0x7f0000000340))
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = fsmount(0xffffffffffffffff, 0x1, 0x7d)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r7, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2122.361620] FAULT_INJECTION: forcing a failure.
[ 2122.361620] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2122.364475] CPU: 1 PID: 10416 Comm: syz-executor.3 Not tainted 5.10.246 #1
[ 2122.365936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2122.367688] Call Trace:
[ 2122.368246]  dump_stack+0x107/0x167
[ 2122.369017]  should_fail.cold+0x5/0xa
[ 2122.369826]  __alloc_pages_nodemask+0x182/0x600
[ 2122.370799]  ? lock_acquire+0x197/0x470
[ 2122.371657]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2122.372917]  ? find_held_lock+0x2c/0x110
[ 2122.373781]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2122.374888]  ? lock_downgrade+0x6d0/0x6d0
[ 2122.375763]  ? mark_held_locks+0x9e/0xe0
[ 2122.376619]  alloc_pages_current+0x187/0x280
[ 2122.377541]  ? count_memcg_event_mm.part.0+0x2df/0x2f0
[ 2122.378634]  ? replace_page_cache_page+0x1200/0x1200
[ 2122.379716]  pte_alloc_one+0x16/0x1a0
[ 2122.380515]  ? replace_page_cache_page+0x1200/0x1200
[ 2122.381583]  handle_mm_fault+0x2ab2/0x3500
[ 2122.382473]  ? __lock_acquire+0x1657/0x5b00
[ 2122.383384]  ? find_held_lock+0x2c/0x110
[ 2122.384231]  ? pgtable_bad+0x90/0x90
[ 2122.385011]  ? __pmd_alloc+0x630/0x630
[ 2122.385838]  ? vmacache_find+0x55/0x2a0
[ 2122.386681]  do_user_addr_fault+0x56e/0xc60
[ 2122.387616]  exc_page_fault+0xa2/0x1a0
[ 2122.388433]  asm_exc_page_fault+0x1e/0x30
[ 2122.389311] RIP: 0010:copy_user_enhanced_fast_string+0x27/0x40
[ 2122.390547] Code: 0f 1f 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 f3 a4 31 c0 0f 01 ca e9 26 30 1d 02 66 0f 1f 44 00 00 89 d1 83 f8 12 74 0c <f3> a4 89 c8 0f 01 ca e9 0d 30 1d 02 31 c0 0f 01 ca e9 03 30 1d 02
[ 2122.394397] RSP: 0018:ffff88803eed77b8 EFLAGS: 00050287
[ 2122.395528] RAX: 000000000000000e RBX: 0000000000000080 RCX: 0000000000000080
[ 2122.397023] RDX: 0000000000000080 RSI: 0000000020000080 RDI: ffff88803eed7888
[ 2122.398507] RBP: ffff88803eed7888 R08: 0000000000000001 R09: ffff88803eed7907
[ 2122.400008] R10: ffffed1007ddaf20 R11: 0000000000000001 R12: 0000000020000100
[ 2122.401494] R13: 0000000020000080 R14: 00007ffffffff000 R15: 0000000000000000
[ 2122.403033]  _copy_from_user+0x172/0x1b0
[ 2122.403897]  move_addr_to_kernel.part.0+0x31/0x110
[ 2122.404928]  move_addr_to_kernel+0x4f/0x70
[ 2122.405811]  io_connect+0x47a/0x610
[ 2122.406572]  ? io_prep_rw+0x1050/0x1050
[ 2122.407432]  ? __lock_acquire+0xbb1/0x5b00
[ 2122.408319]  io_issue_sqe+0x1611/0x77d0
[ 2122.409161]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2122.410258]  ? lock_chain_count+0x20/0x20
[ 2122.411136]  ? __is_insn_slot_addr+0x14c/0x290
[ 2122.412099]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2122.413208]  ? io_connect+0x610/0x610
[ 2122.414011]  ? lock_acquire+0x197/0x470
[ 2122.414847]  ? find_held_lock+0x2c/0x110
[ 2122.415717]  ? __fget_files+0x2cf/0x520
[ 2122.416555]  ? lock_downgrade+0x6d0/0x6d0
[ 2122.417435]  __io_queue_sqe+0x90/0x9d0
[ 2122.418255]  ? io_issue_sqe+0x77d0/0x77d0
[ 2122.419133]  ? __fget_files+0x2f8/0x520
[ 2122.419982]  io_submit_sqes+0x44a8/0x8610
[ 2122.420882]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2122.421920]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2122.422931]  ? find_held_lock+0x2c/0x110
[ 2122.423799]  ? io_submit_sqes+0x8610/0x8610
[ 2122.424701]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2122.425716]  ? wait_for_completion_io+0x270/0x270
[ 2122.426723]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2122.427698]  ? vfs_write+0x354/0xb10
[ 2122.428483]  ? fput_many+0x2f/0x1a0
[ 2122.429238]  ? ksys_write+0x1a9/0x260
[ 2122.430031]  ? __ia32_sys_read+0xb0/0xb0
[ 2122.430886]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2122.432010]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2122.433087]  do_syscall_64+0x33/0x40
[ 2122.433871]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2122.434940] RIP: 0033:0x7ff5992a9b19
[ 2122.435739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2122.439593] RSP: 002b:00007ff59681f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2122.441194] RAX: ffffffffffffffda RBX: 00007ff5993bcf60 RCX: 00007ff5992a9b19
[ 2122.442687] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2122.444183] RBP: 00007ff59681f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2122.445682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 2122.447175] R13: 00007ffe527483bf R14: 00007ff59681f300 R15: 0000000000022000
10:34:07 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffffffff0700)

10:34:07 executing program 5:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x2000)
dup3(r0, r1, 0x0)

10:34:07 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 2:
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:34:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fallocate(r5, 0xe, 0x10001, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
process_vm_writev(0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/4082, 0xff2}], 0x1, &(0x7f0000000140)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x80079a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x308}, &(0x7f00000a0000)=nil, &(0x7f000039d000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x4000010, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000140)=<r6=>0x0)
r7 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x9, 0xd6, 0x0, 0x80, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x401, 0x1, @perf_config_ext={0x3, 0xffffffffffff0001}, 0x1, 0x1, 0x7, 0x9, 0x7fff, 0x3, 0x5, 0x0, 0x6}, r6, 0xf, r7, 0x4)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000b2e000/0x4000)=nil, 0x4000, 0x0, 0x13, 0xffffffffffffffff, 0x1bf1c000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r10, 0x0)
io_uring_enter(r10, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r8, &(0x7f0000000140)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2, 0x4000, @fd=r10, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}, 0x1f)

10:34:07 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0xe, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:07 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x114, &(0x7f0000000140), 0x0, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:07 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:08 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:08 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:19 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
memfd_create(&(0x7f0000000140)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x4)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 6:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd, 0x0, r0}, &(0x7f000039f000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r1, 0x4004f50d, &(0x7f0000000140)=0x1)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(0x0, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0x0, &(0x7f0000000580)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1, 0x8}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r7, 0x80047210, &(0x7f0000000480))
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000380)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2007, @fd_index=0x1, 0x7ff, 0x3, 0x9, 0x4, 0x1, {0x2}}, 0x6)
r10 = gettid()
process_vm_readv(r10, &(0x7f0000001a40)=[{&(0x7f0000000440)=""/38, 0x26}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x6e}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r11=>r6, @ANYBLOB="00000000000000002e2f66696c653000febfdce901c63a406c502ec38a23b0a567b951010ff0f1290d899e6dbbcea20a4f29f49a076a2ad574fa2e665aadf7ec7e3e33771b8a83de4fcb1c4d32542a8a710c50d5da340fc4686ddc6b2c3ffa0c7c6c525092c5b7364920ed5ebeb39e615be821f266888f2cd5bbf45ad8605124b5bb683cd99798c80a7d64745e4052a1"])
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x8, 0x3, 0x3f, 0x3, 0x0, 0xfff, 0x46000, 0xa, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000001c0)}, 0x1810, 0x0, 0x4, 0x5, 0x1, 0x6, 0x8, 0x0, 0x3ca9, 0x0, 0x6}, r10, 0xe, r11, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00))
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:19 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

10:34:19 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x114, &(0x7f0000000140), 0x0, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00))
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:19 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0xf, 0x0, 0x0, 0x0)

10:34:19 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00))
setreuid(0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setreuid(r0, 0x0)

10:34:19 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:34:19 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0xf00, 0x0, 0x0, 0x0)

10:34:19 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
lsetxattr$trusted_overlay_redirect(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x8, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f0000000340)=""/8, &(0x7f0000000380)=0x8)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000000400)={0x0, @nl=@kern={0x10, 0x0, 0x0, 0x8000000}, @nl=@unspec, @ax25={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x7}, 0x3, 0x0, 0x0, 0x0, 0x4, &(0x7f00000003c0)='veth1_to_batadv\x00', 0x3f, 0x5, 0x1})

10:34:19 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:34:19 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:19 executing program 0:
r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd, 0x0, r0}, &(0x7f000039f000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r1, 0x4004f50d, &(0x7f0000000140)=0x1)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(0x0, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0x0, &(0x7f0000000580)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1, 0x8}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r7, 0x80047210, &(0x7f0000000480))
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000380)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2007, @fd_index=0x1, 0x7ff, 0x3, 0x9, 0x4, 0x1, {0x2}}, 0x6)
r10 = gettid()
process_vm_readv(r10, &(0x7f0000001a40)=[{&(0x7f0000000440)=""/38, 0x26}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x6e}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r11=>r6, @ANYBLOB="00000000000000002e2f66696c653000febfdce901c63a406c502ec38a23b0a567b951010ff0f1290d899e6dbbcea20a4f29f49a076a2ad574fa2e665aadf7ec7e3e33771b8a83de4fcb1c4d32542a8a710c50d5da340fc4686ddc6b2c3ffa0c7c6c525092c5b7364920ed5ebeb39e615be821f266888f2cd5bbf45ad8605124b5bb683cd99798c80a7d64745e4052a1"])
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x8, 0x3, 0x3f, 0x3, 0x0, 0xfff, 0x46000, 0xa, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000001c0)}, 0x1810, 0x0, 0x4, 0x5, 0x1, 0x6, 0x8, 0x0, 0x3ca9, 0x0, 0x6}, r10, 0xe, r11, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x800}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f00000fa000/0x3000)=nil, 0x3000, 0x2000006, 0x11, r3, 0x8000000)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

10:34:32 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(r1, 0x0)

10:34:32 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x114, &(0x7f0000000140), 0x0, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000739000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r9 = dup3(r3, r0, 0x80000)
sendmsg$nl_generic(r9, &(0x7f0000002a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002a00)={&(0x7f00000009c0)={0x2020, 0x33, 0x400, 0x70bd2a, 0x25dfdbff, {0x11}, [@nested={0x200c, 0x62, 0x0, 0x1, [@generic="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", @typed={0x8, 0x29, 0x0, 0x0, @uid=0xee00}, @generic="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"]}]}, 0x2020}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
clock_gettime(0x0, &(0x7f00000001c0)={<r10=>0x0, <r11=>0x0})
syz_io_uring_submit(r8, r2, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000240)={r10, r11+60000000}, 0x1, 0x0, 0x1}, 0x8)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r12 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r12, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0xffffffffffffffff, &(0x7f0000000140), 0x0, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000340)=""/146, 0x92}], 0x2, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fallocate(r5, 0xe, 0x10001, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
process_vm_writev(0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/4082, 0xff2}], 0x1, &(0x7f0000000140)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:34:32 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

10:34:32 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000119000/0x4000)=nil, 0x4000, 0xc, 0x10, r6, 0xdcaba000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:32 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:34:33 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(0x0, 0x0)

10:34:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{&(0x7f00000015c0)=""/108, 0x6c}, {&(0x7f0000000500)=""/1, 0x1}], 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000540)=""/4096, 0x1000)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

10:34:33 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(r1, 0x0)

10:34:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x40904, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000500)='\x00#\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1dH6\xdd\xda\xac3B\xa7\x05\xb7\xb0\xb6(\x80\x04\x81V\vw\x01Q\xc6=\xb5\xc7\xa08:\xb0\xf9\xef\xc7Rw\xf2\xba1\x0fG/\xf9\nu6\xd04\x86\xae\x83\xd3\x95\xca\x9c0\xe8\xb8HeBZ\xa6P\xc7\r\xb1S|\xb3\n\xab6g\xd4\x18OH\xdd26\x95@\xc7\xdb\xe1\xe73\xed\xcbi\n~\x1b\xb6\xb3NE\x98\xd6\xb7?=\xa3Nm?\x03X\xec\x17AL\xb6\x06\xe1.\xc9\xafE\x9b\xd9\x05\xc0E\xfe\xb2\x8a\x13\xf0\x05\xe2\xa8\xa0\xfcD)\xfa.\xb7.\x8d\x84\x14\x9a\xc0\xef\x04\x1d\xbfX3e\x9bwHJ\xc4\x97\x116&\x1aJ&\b:\xb3\x8c \xd6\xfbG*!\xc6\"\xe8\xd3;\xf7\xa4L1\x04\xf8\\\xc6E', 0x5)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f00008ce000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0x8000000)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, r10, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4004, @fd_index=0xa, 0xfffffffffffff801, 0x0, 0x0, 0x0, 0x1}, 0x7)
sendmsg$nl_generic(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="270119802c887da139f3eb2b514e3e4e8e4c1d8cdf92b1a986b963797c573a7587a95402b1ae040027231e1decc9576dfb234ade2f79b7ba32a2ac6e07be346f410aaed3eaa9eeef52250a1cf073fde36bf851471381246efae064929628b52a5d3ce33bf0884d72641d7766d03ddc4bb64d384a818784582fc5585d750c86f6590bfdf57af1efc6633d4741ee7b5031f4165d92c846270066901c787eb5e9eaf6d454ac2d94ba0a58be8791ac5ff2691572034a0e92e265b36b640bb9b53a17a80e75240455f7eabb95ae3223cbc6036c1a5da6e202423aa4539578f9935f0400860008009400", @ANYRES32=0x0, @ANYBLOB="08003300ffffffffb97c52b1c9590e68c606edace15b8ab6ac1269ed87d62264159bedf01de209dc7d549ca12f24617e53225b393579b38c1f38d0d300db7e9f23d802891a0525070972cf02ae1f72e59695bc578e4596e15236e2f8b6e42eac03d5de991d2057021722901c31b768a02e7d004ac1e29cb43bc990576cf868d57df8deab5544559f14a64c9b5dca03d140e9f3ec0a72c89a4241cddae89b2c39765aabb2c7e46e2f2aa22754b763de57b735f9dee27974e6a42880ad2f7c511631614e54fb43a27385a03fa2d5f450826175cb5473b4801b015a733b0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x20008000}, 0x4)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(r1, 0x0)

10:34:33 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0xf000000, 0x0, 0x0, 0x0)

10:34:33 executing program 6:
r0 = syz_io_uring_setup(0x79a6, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r5, @out_args}, './file0\x00'})
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x40904, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000500)='\x00#\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1dH6\xdd\xda\xac3B\xa7\x05\xb7\xb0\xb6(\x80\x04\x81V\vw\x01Q\xc6=\xb5\xc7\xa08:\xb0\xf9\xef\xc7Rw\xf2\xba1\x0fG/\xf9\nu6\xd04\x86\xae\x83\xd3\x95\xca\x9c0\xe8\xb8HeBZ\xa6P\xc7\r\xb1S|\xb3\n\xab6g\xd4\x18OH\xdd26\x95@\xc7\xdb\xe1\xe73\xed\xcbi\n~\x1b\xb6\xb3NE\x98\xd6\xb7?=\xa3Nm?\x03X\xec\x17AL\xb6\x06\xe1.\xc9\xafE\x9b\xd9\x05\xc0E\xfe\xb2\x8a\x13\xf0\x05\xe2\xa8\xa0\xfcD)\xfa.\xb7.\x8d\x84\x14\x9a\xc0\xef\x04\x1d\xbfX3e\x9bwHJ\xc4\x97\x116&\x1aJ&\b:\xb3\x8c \xd6\xfbG*!\xc6\"\xe8\xd3;\xf7\xa4L1\x04\xf8\\\xc6E', 0x5)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f00008ce000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0x8000000)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, r10, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4004, @fd_index=0xa, 0xfffffffffffff801, 0x0, 0x0, 0x0, 0x1}, 0x7)
sendmsg$nl_generic(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="cc0200001c00200026bd7000fbdbdf2512000000d2e1fe56df8fb13c06ec444ea8d669d79b01eda34bd0701f99ee11d0adf2e5a0bbc0df546cb252f6337ec33d8a6deee26c1a4ae6020fc97f0364b9657ef262cc645e200c980fbbe2572ba5e371620a25c84e24feb1356522ae7e1e26081670a2117bf5c5fac8e5b4ebea4c0013c07a3f1cc6f7f464a907bb3d4afe0358e7ded76e1bd70ff1e46804cee9513079dbc86ce179a8f8a6646b0aa495b136c6dbd57c44c8c8656b691d8867f52ccc4d53bd39b56a62241b7c3a5dfef85de5dd1b1ea2f1ec5cd335fb930d37aba17dba1f031bf00affc6293f166646a5f17a7b9f7cdae0ba3c8e0e015f08000600", @ANYRES32=0x0, @ANYBLOB="270119802c887da139f3eb2b514e3e4e8e4c1d8cdf92b1a986b963797c573a7587a95402b1ae040027231e1decc9576dfb234ade2f79b7ba32a2ac6e07be346f410aaed3eaa9eeef52250a1cf073fde36bf851471381246efae064929628b52a5d3ce33bf0884d72641d7766d03ddc4bb64d384a818784582fc5585d750c86f6590bfdf57af1efc6633d4741ee7b5031f4165d92c846270066901c787eb5e9eaf6d454ac2d94ba0a58be8791ac5ff2691572034a0e92e265b36b640bb9b53a17a80e75240455f7eabb95ae3223cbc6036c1a5da6e202423aa4539578f9935f0400860008009400", @ANYRES32=0x0, @ANYBLOB="08003300ffffffffb97c52b1c9590e68c606edace15b8ab6ac1269ed87d62264159bedf01de209dc7d549ca12f24617e53225b393579b38c1f38d0d300db7e9f23d802891a0525070972cf02ae1f72e59695bc578e4596e15236e2f8b6e42eac03d5de991d2057021722901c31b768a02e7d004ac1e29cb43bc990576cf868d57df8deab5544559f14a64c9b5dca03d140e9f3ec0a72c89a4241cddae89b2c39765aabb2c7e46e2f2aa22754b763de57b735f9dee27974e6a42880ad2f7c511631614e54fb43a27385a03fa2d5f450826175cb5473b4801b015a733b0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x20008000}, 0x4)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x40904, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000500)='\x00#\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1dH6\xdd\xda\xac3B\xa7\x05\xb7\xb0\xb6(\x80\x04\x81V\vw\x01Q\xc6=\xb5\xc7\xa08:\xb0\xf9\xef\xc7Rw\xf2\xba1\x0fG/\xf9\nu6\xd04\x86\xae\x83\xd3\x95\xca\x9c0\xe8\xb8HeBZ\xa6P\xc7\r\xb1S|\xb3\n\xab6g\xd4\x18OH\xdd26\x95@\xc7\xdb\xe1\xe73\xed\xcbi\n~\x1b\xb6\xb3NE\x98\xd6\xb7?=\xa3Nm?\x03X\xec\x17AL\xb6\x06\xe1.\xc9\xafE\x9b\xd9\x05\xc0E\xfe\xb2\x8a\x13\xf0\x05\xe2\xa8\xa0\xfcD)\xfa.\xb7.\x8d\x84\x14\x9a\xc0\xef\x04\x1d\xbfX3e\x9bwHJ\xc4\x97\x116&\x1aJ&\b:\xb3\x8c \xd6\xfbG*!\xc6\"\xe8\xd3;\xf7\xa4L1\x04\xf8\\\xc6E', 0x5)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r6, &(0x7f0000000000)=""/59, 0x3b, 0x8)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f00008ce000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0x8000000)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r7, r10, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4004, @fd_index=0xa, 0xfffffffffffff801, 0x0, 0x0, 0x0, 0x1}, 0x7)
sendmsg$nl_generic(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="270119802c887da139f3eb2b514e3e4e8e4c1d8cdf92b1a986b963797c573a7587a95402b1ae040027231e1decc9576dfb234ade2f79b7ba32a2ac6e07be346f410aaed3eaa9eeef52250a1cf073fde36bf851471381246efae064929628b52a5d3ce33bf0884d72641d7766d03ddc4bb64d384a818784582fc5585d750c86f6590bfdf57af1efc6633d4741ee7b5031f4165d92c846270066901c787eb5e9eaf6d454ac2d94ba0a58be8791ac5ff2691572034a0e92e265b36b640bb9b53a17a80e75240455f7eabb95ae3223cbc6036c1a5da6e202423aa4539578f9935f0400860008009400", @ANYRES32=0x0, @ANYBLOB="08003300ffffffffb97c52b1c9590e68c606edace15b8ab6ac1269ed87d62264159bedf01de209dc7d549ca12f24617e53225b393579b38c1f38d0d300db7e9f23d802891a0525070972cf02ae1f72e59695bc578e4596e15236e2f8b6e42eac03d5de991d2057021722901c31b768a02e7d004ac1e29cb43bc990576cf868d57df8deab5544559f14a64c9b5dca03d140e9f3ec0a72c89a4241cddae89b2c39765aabb2c7e46e2f2aa22754b763de57b735f9dee27974e6a42880ad2f7c511631614e54fb43a27385a03fa2d5f450826175cb5473b4801b015a733b0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x20008000}, 0x4)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:33 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, 0x0, 0x0)
setreuid(r1, 0x0)

10:34:33 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r0, &(0x7f0000000000)=""/59, 0x3b, 0x80000a)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in6={{0xa, 0x4e22, 0x0, @remote, 0x7}}, 0x0, 0x0, 0x4a, 0x0, "72f18075cc42577d5c0071d8c87aec1b81656bb4d8ef0a5d2d6ca8dc064b3861b57a1992489982aaec6067f8cbde121f228f50510ccd9de68ba3a82d2050da79127c0b1b6dcbdbe61cbd118e54d11f71"}, 0xd8)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000580)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r1=>r0}}, './file0\x00'})
r2 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0xa78a, 0x10, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r6, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r7, &(0x7f0000000000)=""/59, 0x3b, 0x8)
setsockopt$inet6_tcp_int(r7, 0x6, 0x2, &(0x7f0000000140)=0x9, 0x4)
r8 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x480002, 0x0)
syz_io_uring_setup(0x4ede, &(0x7f0000000500)={0x0, 0xa8c3, 0x1, 0x3, 0x6d, 0x0, r8}, &(0x7f00001e1000/0x4000)=nil, &(0x7f0000672000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000440))
r9 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r9, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:48 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(0x0, 0x0)

10:34:48 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

10:34:48 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x203}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x4b8f, 0xd220, 0x2, 0x0, 0x0)

10:34:48 executing program 0:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
io_uring_enter(r4, 0x6cba, 0x7c4d, 0x2, &(0x7f00000001c0)={[0x7]}, 0x8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4308, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, @perf_config_ext, 0x800, 0x8001, 0x3, 0x0, 0x0, 0x401, 0x3f, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0B\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x4)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = gettid()
r8 = syz_io_uring_setup(0x7d84, &(0x7f00000002c0)={0x0, 0x0, 0x8, 0x3, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
io_uring_enter(r8, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r8, 0x0, 0x0, 0x5c, 0x8, 0x0, {0x0, 0x0, r6}}, 0x58e)
process_vm_readv(r7, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
waitid(0x2, r7, &(0x7f0000000240), 0x2, &(0x7f0000000340))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:48 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:48 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r5 = syz_io_uring_setup(0x53a0, &(0x7f00000002c0)={0x0, 0x1688, 0x2, 0x0, 0x353}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r6=>r5, {0x401}}, './file0\x00'})
close_range(r5, r6, 0x2)
syz_io_uring_setup(0x52dd, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, r5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(r7, r8, 0x0, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r9}}, 0x101)
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x800)
r10 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r10, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:48 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8004)
r5 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x4, 0x2402)
waitid(0x2, 0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000340))
mmap$IORING_OFF_SQ_RING(&(0x7f0000333000/0x1000)=nil, 0x1000, 0x6, 0x4010, r5, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(r7, &(0x7f0000000140)='./file0\x00', 0x1100, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:34:48 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(0x0, 0x0)

10:35:01 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

10:35:01 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000240)=@nfc_llcp={0x27, 0x0, 0x0, 0x4, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x40003, 0xf0, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x8ad, 0x51, 0x3, &(0x7f00000001c0)={[0x5]}, 0x8)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f00000000c0)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd=r7, 0x0, 0x0, 0x400000, 0x3, 0x0, {0x0, 0x0, r3}}, 0x4)
r8 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
r9 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
io_uring_enter(r9, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5c33, &(0x7f0000000400)={0x0, 0xc2b0, 0x0, 0x2, 0x187, 0x0, r9}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000987000/0x7000)=nil, &(0x7f0000000500), &(0x7f0000000540))
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r8, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000861000/0x4000)=nil, 0x4000, 0x300000b, 0x4010, r0, 0x8000000)
syz_io_uring_submit(r3, r2, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r0, 0xffffffffffffffe1, 0x0, 0xf2fb, 0x0, 0x1}, 0x2b)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r6, 0x4004f50d, &(0x7f00000001c0)=0x1)
r7 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r7, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:01 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r6, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000380)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r3, &(0x7f0000000340), 0x0, 0x0, 0x800}, 0x1)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x12c4, &(0x7f0000000240)={0x0, 0xa17d, 0x2, 0x3, 0xa0, 0x0, r0}, &(0x7f0000bc5000/0x2000)=nil, &(0x7f000031d000/0x2000)=nil, &(0x7f0000000140), &(0x7f00000001c0))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000006, 0x80010, r7, 0x8000000)

10:35:01 executing program 2:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setreuid(r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
setreuid(0x0, 0x0)

10:35:15 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x20, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = io_uring_setup(0x41ff, &(0x7f0000000240)={0x0, 0xb04d, 0x1, 0x3, 0x246, 0x0, r0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000400)={0x10000001})
r5 = syz_io_uring_setup(0x402a, &(0x7f0000000340)={0x0, 0x2226, 0x0, 0x0, 0x129, 0x0, r4}, &(0x7f00002a9000/0x4000)=nil, &(0x7f00009c4000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000740)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r7 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r7, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x6d6e, &(0x7f0000000600)={0x0, 0xb09c, 0x1, 0x0, 0x9c, 0x0, r5}, &(0x7f0000236000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000680), &(0x7f00000006c0)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r8, &(0x7f0000000700)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000742000/0x3000)=nil, 0x3000, 0x4, 0x0, {0x0, r9}}, 0xffffffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0xa4, r10, 0x400, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x56}}}}, [@NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0x3, 0x5}, {0xcd, 0x3}, {0x8}, {0x80, 0x2}, {0x81, 0x2}, {0x7, 0x2}, {0x0, 0x4}, {0x6, 0x4}, {0x40, 0x3}, {0xea, 0x1}, {0x0, 0x2}, {0x6, 0x3}, {}, {0x9, 0x2}, {0x8b, 0x6}, {0x7f, 0x2}], "1885ad0036216ab1"}}, @NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0x2, 0x6}, {0x8, 0x1}, {0x0, 0x1}, {0x5, 0x2}, {0x7f, 0x5}, {0xd6, 0x4}, {0x1, 0x2}, {0x9, 0x3}, {0x6}, {0x0, 0x1}, {0xdc}, {0x2, 0x2}, {0x0, 0x1}, {0x96, 0x2}, {0x7, 0x3}], "30612394402ee835"}}, @NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0x5, 0x5}, {0x0, 0x4}, {0x80}, {0xff}, {0x55, 0x2}, {0x8, 0x4}, {0x2}, {0x7, 0x5}, {0x4a, 0x6}, {0xfe, 0x6}, {0x9, 0x4}, {0x4, 0x4}, {0x6, 0x1}, {0x0, 0x1}, {0x1f, 0x5}], "138cc60a1cededee"}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000010}, 0x0)

10:35:15 executing program 0:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf, 0x0, 0x0)

10:35:15 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
waitid(0x0, 0x0, &(0x7f0000000240), 0x8, &(0x7f0000000340))
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
clock_gettime(0x0, &(0x7f0000000140)={<r8=>0x0, <r9=>0x0})
syz_io_uring_submit(r7, r2, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x7, &(0x7f00000001c0)={r8, r9+60000000}, 0x1, 0x1, 0x1}, 0x7fffffff)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r11, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f000046f000/0x2000)=nil, 0x2000, 0x1000000, 0x10, r0, 0x8000000)
getdents(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 2:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:15 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf00, 0x0, 0x0)

10:35:15 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000b6e000/0x4000)=nil, 0x4000, 0x2, 0x11, r0, 0x3000)
r5 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r6 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xf0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fstatfs(r6, &(0x7f0000000240)=""/18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
getpeername$unix(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000280)=0x6e)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r5, 0x4008f50a, &(0x7f00000001c0)={0x6, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:16 executing program 1:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
r6 = eventfd(0xcdb3)
pread64(r6, &(0x7f0000000000)=""/36, 0x24, 0xa)
process_madvise(r5, &(0x7f0000000140)=[{&(0x7f0000000340)="64c806e43fa2e9f03591f61ccd7bb4d2a3e1bf18edca60c1b4e6d6d2d478b8e418babf2e04c8cee67090226ac14c905ae23189b9bb2b2e4bef56a85810033e16f6d668263f8dec2b5c94bc008692edebd7af369d46d9c849ab326c570c524d3e96f4995511c60a795a1dd8b6204f869b11cfd33badaac9db7ef32f4fee65dbd816d66818d856acf0d072ed43b8de91572b76eee0451bad6d7b18d9", 0x9b}], 0x1, 0xf, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x5, 0x4000010, r7, 0x0)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xef}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r11, r2, &(0x7f00000001c0)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd_index=0x4, 0x7, 0x0, 0x5, 0x0, 0x1}, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:16 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)

10:35:16 executing program 4:
ptrace$setsig(0x4203, 0xffffffffffffffff, 0x0, &(0x7f0000001540))
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
syz_io_uring_setup(0x550, &(0x7f0000000240)={0x0, 0x3908, 0x2, 0x1, 0x21a, 0x0, r0}, &(0x7f0000ae6000/0x1000)=nil, &(0x7f00000aa000/0x4000)=nil, &(0x7f0000000140)=<r4=>0x0, &(0x7f00000001c0))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000380)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x1, 0x1, 0x1, {0x0, r5}}, 0x401)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
syz_io_uring_setup(0x6119, &(0x7f00000003c0)={0x0, 0x514c, 0x4, 0x2, 0x96, 0x0, r0}, &(0x7f00001c8000/0x14000)=nil, &(0x7f000079a000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000500))
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r7, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:16 executing program 5:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:35:16 executing program 3:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

10:35:16 executing program 7:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp6\x00')
pread64(r5, &(0x7f0000000000)=""/59, 0x3b, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r5, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r6, 0x0)
splice(r5, &(0x7f0000000140)=0xe8, r5, &(0x7f00000001c0)=0x7000, 0x1, 0xb)
process_vm_writev(0x0, &(0x7f0000000340), 0x0, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)

10:35:16 executing program 6:
r0 = syz_io_uring_setup(0x79a8, &(0x7f00000002c0)={0x0, 0x0, 0x10, 0x0, 0x2cd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0x6967, 0x0, &(0x7f0000000340)="a0ed6e8ed768ed6e16ebc7fa091bbaca9daca0c6825778088431d65f8da60b7828a5a90e3e3f52e498547488d4e3180758ffdc5572792141d3bec3716283e22e7945793a6df5bf3c16c13e1ac5d548b394b7b2e4f291005d11717cf7b569d478a34fc6956754ff677f5735b8132f9a670ecdd5bb27710803663d29f4f14db66545ffd32c60c11f53dafc6e1476effdb6abdc4b05ed313305f2cd38fd5d9864899dc0b195943166ebc458e04515fa04e0b529005e7594c394a37a3b0718088846eada90c50960cf36d9e419ecac5f9c669dac", 0x2, 0x0, 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1)
r4 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r4, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_STATX={0x15, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x8, 0x6000, 0x1, {0x0, r5}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2232.408127] syz-fuzzer invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2232.410445] CPU: 0 PID: 254 Comm: syz-fuzzer Not tainted 5.10.246 #1
[ 2232.411732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2232.413403] Call Trace:
[ 2232.413941]  dump_stack+0x107/0x167
[ 2232.414678]  dump_header+0x107/0x689
[ 2232.415429]  oom_kill_process.cold+0x10/0x15
[ 2232.416323]  out_of_memory+0x1149/0x1440
[ 2232.417155]  ? oom_killer_disable+0x280/0x280
[ 2232.418056]  ? mutex_trylock+0x237/0x2b0
[ 2232.418868]  ? __alloc_pages_slowpath.constprop.0+0xa8b/0x2310
[ 2232.420059]  __alloc_pages_slowpath.constprop.0+0x1c57/0x2310
[ 2232.421262]  ? lock_acquire+0x147/0x470
[ 2232.422062]  ? warn_alloc+0x190/0x190
[ 2232.422851]  __alloc_pages_nodemask+0x51d/0x600
[ 2232.423789]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2232.425036]  ? find_get_entry+0x2c8/0x740
[ 2232.425875]  alloc_pages_current+0x187/0x280
[ 2232.426745]  __page_cache_alloc+0x2d2/0x360
[ 2232.427606]  pagecache_get_page+0x2c7/0xc80
[ 2232.428462]  filemap_fault+0x177d/0x2210
[ 2232.429287]  ? read_cache_page_gfp+0x30/0x30
[ 2232.430165]  ? replace_page_cache_page+0x1200/0x1200
[ 2232.431161]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2232.432204]  ext4_filemap_fault+0x87/0xc0
[ 2232.433033]  __do_fault+0x113/0x410
[ 2232.433760]  handle_mm_fault+0x1e53/0x3500
[ 2232.434602]  ? _copy_from_user+0xfb/0x1b0
[ 2232.435428]  ? __pmd_alloc+0x630/0x630
[ 2232.436213]  ? vmacache_find+0x55/0x2a0
[ 2232.437022]  do_user_addr_fault+0x56e/0xc60
[ 2232.437889]  exc_page_fault+0xa2/0x1a0
[ 2232.438660]  ? asm_exc_page_fault+0x8/0x30
[ 2232.439494]  asm_exc_page_fault+0x1e/0x30
[ 2232.440306] RIP: 0033:0x466533
[ 2232.440954] Code: Unable to access opcode bytes at RIP 0x466509.
[ 2232.442161] RSP: 002b:000000c00003fe80 EFLAGS: 00010202
[ 2232.443217] RAX: ffffffffffffff92 RBX: 00000000098d92f7 RCX: 0000000000466533
[ 2232.444643] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000001f20e78
[ 2232.446057] RBP: 000000c00003fec8 R08: 0000000000000000 R09: 0000000000000000
[ 2232.447479] R10: 000000c00003feb8 R11: 0000000000000202 R12: 0000000000438880
[ 2232.448895] R13: 0000000000000009 R14: 000080c00235a000 R15: 000080c002361fff
[ 2232.450396] Mem-Info:
[ 2232.450924] active_anon:9635 inactive_anon:36573 isolated_anon:0
[ 2232.450924]  active_file:4 inactive_file:0 isolated_file:0
[ 2232.450924]  unevictable:0 dirty:0 writeback:0
[ 2232.450924]  slab_reclaimable:8400 slab_unreclaimable:283892
[ 2232.450924]  mapped:69634 shmem:115 pagetables:825 bounce:0
[ 2232.450924]  free:2748 free_pcp:31 free_cma:0
[ 2232.457119] Node 0 active_anon:38540kB inactive_anon:146292kB active_file:16kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:460kB writeback_tmp:0kB kernel_stack:3520kB all_unreclaimable? yes
[ 2232.461668] Node 0 DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2232.466845] lowmem_reserve[]: 0 1616 1616 1616
[ 2232.467820] Node 0 DMA32 free:4504kB min:11260kB low:12912kB high:14564kB reserved_highatomic:0KB active_anon:38540kB inactive_anon:146292kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1660444kB mlocked:0kB pagetables:3300kB bounce:0kB free_pcp:124kB local_pcp:0kB free_cma:0kB
[ 2232.473417] lowmem_reserve[]: 0 0 0 0
[ 2232.474232] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6488kB
[ 2232.476964] Node 0 DMA32: 932*4kB (UM) 97*8kB (UM) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4504kB
[ 2232.479481] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2232.481190] 134 total pagecache pages
[ 2232.481928] 0 pages in swap cache
[ 2232.482632] Swap cache stats: add 0, delete 0, find 0/0
[ 2232.483702] Free swap  = 0kB
[ 2232.484321] Total swap = 0kB
[ 2232.484918] 524158 pages RAM
[ 2232.485537] 0 pages HighMem/MovableOnly
[ 2232.486345] 105070 pages reserved
[ 2232.487082] Unreclaimable slab info:
[ 2232.488163] Name                      Used          Total
[ 2232.489332] pid_2                     60KB         60KB
[ 2232.490410] IEEE-802.15.4-MAC         63KB         63KB
[ 2232.491491] fib6_nodes                24KB         24KB
[ 2232.492573] ip6_dst_cache             52KB         52KB
[ 2232.493642] PINGv6                    30KB         30KB
[ 2232.494711] RAWv6                    123KB        123KB
[ 2232.495799] UDPLITEv6                 31KB         31KB
[ 2232.496879] UDPv6                     62KB         62KB
[ 2232.497960] TCPv6                     62KB         62KB
[ 2232.499036] scsi_sense_cache           8KB          8KB
[ 2232.500105] sd_ext_cdb                 3KB          3KB
[ 2232.501181] virtio_scsi_cmd           16KB         16KB
[ 2232.502267] sgpool-128                59KB         59KB
[ 2232.503336] sgpool-64                 63KB         63KB
[ 2232.504398] sgpool-32                 94KB         94KB
[ 2232.505462] sgpool-16                 75KB         75KB
[ 2232.506524] sgpool-8                  26KB         33KB
[ 2232.507581] io_kiocb                 281KB        296KB
[ 2232.508662] mqueue_inode_cache         62KB         62KB
[ 2232.509735] nfs_commit_data           15KB         15KB
[ 2232.510793] nfs_write_data            47KB         47KB
[ 2232.511851] jbd2_inode                11KB         11KB
[ 2232.512918] ext4_system_zone           7KB          7KB
[ 2232.513987] ext4_io_end_vec            7KB          7KB
[ 2232.515050] ext4_bio_post_read_ctx         15KB         15KB
[ 2232.516196] bio-2                      4KB          4KB
[ 2232.517267] pid_namespace              7KB          7KB
[ 2232.518326] posix_timers_cache          7KB          7KB
[ 2232.519397] rpc_buffers               31KB         31KB
[ 2232.520456] rpc_tasks                  3KB          3KB
[ 2232.521524] UNIX                     214KB        288KB
[ 2232.522587] UDP-Lite                  63KB         63KB
[ 2232.523662] tcp_bind_bucket            8KB          8KB
[ 2232.524747] xfrm_state                16KB         16KB
[ 2232.525804] ip_fib_trie                8KB          8KB
[ 2232.526870] ip_fib_alias              15KB         15KB
[ 2232.527928] ip_dst_cache               8KB          8KB
[ 2232.529004] PING                      62KB         62KB
[ 2232.530067] RAW                       61KB         61KB
[ 2232.531165] UDP                      220KB        252KB
[ 2232.532232] request_sock_TCP          15KB         15KB
[ 2232.533308] TCP                       60KB         60KB
[ 2232.534370] hugetlbfs_inode_cache         30KB         30KB
[ 2232.535488] bio-1                     11KB         11KB
[ 2232.536552] eventpoll_pwq             23KB         23KB
[ 2232.537600] eventpoll_epi             43KB         43KB
[ 2232.538656] inotify_inode_mark         70KB         70KB
[ 2232.539723] request_queue             60KB         60KB
[ 2232.540783] blkdev_ioc                15KB         15KB
[ 2232.541836] bio-0                     92KB         92KB
[ 2232.542887] biovec-max               535KB        595KB
[ 2232.543942] biovec-64                252KB        252KB
[ 2232.545029] biovec-16                 45KB         45KB
[ 2232.546097] uid_cache                  8KB          8KB
[ 2232.547153] dmaengine-unmap-2          4KB          4KB
[ 2232.548198] audit_buffer               7KB          7KB
[ 2232.549263] skbuff_fclone_cache        127KB        127KB
[ 2232.550351] skbuff_head_cache       2392KB       2392KB
[ 2232.551400] file_lock_cache           51KB         55KB
[ 2232.552450] file_lock_ctx              7KB          7KB
[ 2232.553518] fsnotify_mark_connector         24KB         24KB
[ 2232.554668] net_namespace             57KB         57KB
[ 2232.555717] task_delay_info           75KB         88KB
[ 2232.556779] taskstats                 46KB         46KB
[ 2232.557824] proc_dir_entry           333KB        333KB
[ 2232.558868] pde_opener                27KB         27KB
[ 2232.559918] seq_file                  56KB         56KB
[ 2232.560983] sigqueue                  59KB         78KB
[ 2232.562019] shmem_inode_cache       1294KB       1320KB
[ 2232.563092] kernfs_iattrs_cache        231KB        231KB
[ 2232.564171] kernfs_node_cache       5218KB       5218KB
[ 2232.565227] mnt_cache                133KB        133KB
[ 2232.566283] filp                     638KB       1237KB
[ 2232.567330] names_cache             1653KB       2023KB
[ 2232.568371] hashtab_node             278KB        278KB
[ 2232.569427] ebitmap_node            1149KB       1149KB
[ 2232.570467] avtab_node              4976KB       4976KB
[ 2232.571510] avc_node                  31KB         31KB
[ 2232.572574] lsm_inode_cache         3217KB       3257KB
[ 2232.573630] lsm_file_cache           149KB        208KB
[ 2232.573834] syz-executor.6: page allocation failure: order:0, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[ 2232.574675] key_jar                   31KB         31KB
[ 2232.574680] ,cpuset=
[ 2232.576454] uts_namespace             15KB         15KB
[ 2232.577247] syz6
[ 2232.577629] nsproxy                   23KB         23KB
[ 2232.577668] vm_area_struct           691KB       1012KB
[ 2232.578302] ,mems_allowed=0
[ 2232.578324] CPU: 1 PID: 10693 Comm: syz-executor.6 Not tainted 5.10.246 #1
[ 2232.578698] fs_cache                  44KB         44KB
[ 2232.579289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2232.579293] Call Trace:
[ 2232.579313]  dump_stack+0x107/0x167
[ 2232.579331]  warn_alloc.cold+0x95/0x18a
[ 2232.580383] files_cache              223KB        223KB
[ 2232.580717]  ? zone_watermark_ok_safe+0x260/0x260
[ 2232.582047] signal_cache             364KB        432KB
[ 2232.582624]  ? schedule_timeout+0x1ce/0x380
[ 2232.582634]  ? usleep_range+0x170/0x170
[ 2232.582651]  ? __next_timer_interrupt+0x2c0/0x2c0
[ 2232.584293] sighand_cache            330KB        330KB
[ 2232.584578]  ? 0xffffffff81000000
[ 2232.585308] task_struct              853KB       1102KB
[ 2232.585741]  __alloc_pages_slowpath.constprop.0+0x1db0/0x2310
[ 2232.586788] cred_jar                  85KB        148KB
[ 2232.587325]  ? lock_acquire+0x147/0x470
[ 2232.587339]  ? warn_alloc+0x190/0x190
[ 2232.588385] anon_vma_chain           207KB        232KB
[ 2232.588870]  __alloc_pages_nodemask+0x51d/0x600
[ 2232.589650] anon_vma                 172KB        203KB
[ 2232.590181]  ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310
[ 2232.590204]  alloc_pages_current+0x187/0x280
[ 2232.591250] pid                       60KB         93KB
[ 2232.591635]  allocate_slab+0x29b/0x380
[ 2232.592691] Acpi-Operand             177KB        213KB
[ 2232.593346]  ___slab_alloc+0x470/0x700
[ 2232.593361]  ? io_issue_sqe+0x2492/0x77d0
[ 2232.593377]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2232.594419] Acpi-ParseExt             31KB         31KB
[ 2232.594860]  ? trace_hardirqs_on+0x5b/0x180
[ 2232.595609] Acpi-Parse               205KB        221KB
[ 2232.596194]  ? io_issue_sqe+0x2492/0x77d0
[ 2232.596207]  ? kmem_cache_alloc_trace+0x305/0x320
[ 2232.596223]  kmem_cache_alloc_trace+0x305/0x320
[ 2232.597142] Acpi-State               102KB        118KB
[ 2232.597740]  io_issue_sqe+0x2492/0x77d0
[ 2232.598916] Acpi-Namespace            24KB         24KB
[ 2232.599417]  ? io_connect+0x610/0x610
[ 2232.599433]  ? mark_lock+0xf5/0x2df0
[ 2232.600486] numa_policy                3KB          3KB
[ 2232.600911]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2232.601957] trace_event_file         176KB        176KB
[ 2232.602376]  ? lock_chain_count+0x20/0x20
[ 2232.602387]  ? io_dismantle_req+0xdf/0x180
[ 2232.602404]  __io_queue_sqe+0x90/0x9d0
[ 2232.603213] ftrace_event_field        280KB        280KB
[ 2232.603798]  ? io_issue_sqe+0x77d0/0x77d0
[ 2232.604847] pool_workqueue            32KB         32KB
[ 2232.605320]  ? mark_held_locks+0x9e/0xe0
[ 2232.605330]  ? rwlock_bug.part.0+0x90/0x90
[ 2232.605346]  io_req_task_submit+0xbf/0x1b0
[ 2232.606392] task_group                16KB         16KB
[ 2232.606854]  tctx_task_work+0x21a/0x8a0
[ 2232.607816] mm_struct                196KB        315KB
[ 2232.608302]  ? io_fallback_req_func+0x430/0x430
[ 2232.608311]  ? rwlock_bug.part.0+0x90/0x90
[ 2232.608327]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2232.609369] vmap_area                205KB        220KB
[ 2232.609814]  task_work_run+0xe2/0x1a0
[ 2232.610848] page->ptl                196KB        311KB
[ 2232.611259]  exit_to_user_mode_prepare+0x1c2/0x1e0
[ 2232.611273]  syscall_exit_to_user_mode+0x38/0x1d0
[ 2232.611290]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2232.611991] kmemleak_scan_area        155KB        171KB
[ 2232.612608] RIP: 0033:0x7feaf290db19
[ 2232.612622] Code: Unable to access opcode bytes at RIP 0x7feaf290daef.
[ 2232.612627] RSP: 002b:00007feaefe83188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2232.613658] kmemleak_object       881668KB     881668KB
[ 2232.614253] RAX: 000000000000030e RBX: 00007feaf2a20f60 RCX: 00007feaf290db19
[ 2232.614260] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2232.614266] RBP: 00007feaf2967f6d R08: 0000000000000000 R09: 0000000000000000
[ 2232.614278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2232.615110] kmalloc-8k              4544KB       4672KB
[ 2232.615548] R13: 00007ffddf37efef R14: 00007feaefe83300 R15: 0000000000022000
[ 2232.615588] Mem-Info:
[ 2232.616341] kmalloc-4k              5584KB       7264KB
[ 2232.616956] active_anon:9635 inactive_anon:36573 isolated_anon:0
[ 2232.616956]  active_file:4 inactive_file:10 isolated_file:0
[ 2232.616956]  unevictable:0 dirty:0 writeback:0
[ 2232.616956]  slab_reclaimable:8400 slab_unreclaimable:283913
[ 2232.616956]  mapped:69634 shmem:115 pagetables:825 bounce:0
[ 2232.616956]  free:2748 free_pcp:9 free_cma:0
[ 2232.617763] kmalloc-2k              3732KB       4224KB
[ 2232.618380] Node 0 active_anon:38540kB inactive_anon:146292kB active_file:16kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:460kB writeback_tmp:0kB kernel_stack:3520kB all_unreclaimable? yes
[ 2232.618389] Node 0 
[ 2232.619199] kmalloc-1k              2130KB       3200KB
[ 2232.619676] DMA free:6488kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2232.619685] lowmem_reserve[]:
[ 2232.620520] kmalloc-512            36008KB      36008KB
[ 2232.621140]  0 1616 1616 1616
[ 2232.621918] kmalloc-256             1119KB       1152KB
[ 2232.623745] 
[ 2232.624290] kmalloc-192              490KB        496KB
[ 2232.624321] kmalloc-128              455KB        648KB
[ 2232.624332] kmalloc-96               736KB        736KB
[ 2232.624343] kmalloc-64              1636KB       1636KB
[ 2232.624354] kmalloc-32            108476KB     108476KB
[ 2232.624366] kmalloc-16               352KB        356KB
[ 2232.624377] kmalloc-8                330KB        330KB
[ 2232.624390] kmem_cache_node           47KB         47KB
[ 2232.625009] Node 0 DMA32 free:4252kB min:11260kB low:12912kB high:14564kB reserved_highatomic:0KB active_anon:38540kB inactive_anon:146292kB active_file:16kB inactive_file:40kB unevictable:0kB writepending:0kB present:2080640kB managed:1660444kB mlocked:0kB pagetables:3300kB bounce:0kB free_pcp:224kB local_pcp:224kB free_cma:0kB
[ 2232.626088] kmem_cache                75KB         75KB
[ 2232.626503] lowmem_reserve[]:
[ 2232.627543] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null)
[ 2232.628109]  0 0 0 0
[ 2232.629070] ,cpuset=
[ 2232.629656] 
[ 2232.629661] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 
[ 2232.630907] /
[ 2232.631244] 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 
[ 2232.632612] ,mems_allowed=0
[ 2232.633496] 1*2048kB (M) 1*4096kB 
[ 2232.634530] ,global_oom
[ 2232.635370] (M) = 6488kB
[ 2232.635379] Node 0 DMA32: 
[ 2232.636775] ,task_memcg=
[ 2232.637613] 869*4kB (UM) 97*8kB (UM) 
[ 2232.639032] /system.slice/ssh.service
[ 2232.639625] 0*16kB 
[ 2232.641014] ,task=syz-fuzzer,pid=254,uid=0
[ 2232.641285] 0*32kB 0*64kB 0*128kB 
[ 2232.643374] Out of memory (oom_kill_allocating_task): Killed process 253 (syz-fuzzer) total-vm:1101780kB, anon-rss:151644kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:656kB oom_score_adj:0
[ 2232.645911] 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4252kB
[ 2232.645950] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2232.645954] 134 total pagecache pages
[ 2232.645966] 0 pages in swap cache
[ 2232.645972] Swap cache stats: add 0, delete 0, find 0/0
[ 2232.645976] Free swap  = 0kB
[ 2232.645980] Total swap = 0kB
[ 2232.645984] 524158 pages RAM
[ 2232.645988] 0 pages HighMem/MovableOnly
[ 2232.645993] 105070 pages reserved
[ 2232.646070] SLUB: Unable to allocate memory on node -1, gfp=0x400cc0(GFP_KERNEL_ACCOUNT)
[ 2232.679316]   cache: kmalloc-32, object size: 32, buffer size: 64, default order: 0, min order: 0
[ 2232.680352]   node 0: slabs: 27119, objs: 1735616, free: 0
[ 2232.867632] oom_reaper: reaped process 10693 (syz-executor.6), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB

VM DIAGNOSIS:
10:35:43  Registers:
info registers vcpu 0
RAX=0000000000000011 RBX=1ffff11008219e8d RCX=1ffff110080c1475 RDX=0000000000000040
RSI=0000000000000008 RDI=ffffffff86871728 RBP=0000000000000006 RSP=ffff8880410cf430
R8 =0000000000000000 R9 =ffffffff868716bf R10=fffffbfff0d0e2d7 R11=0000000000000001
R12=ffff88804060a388 R13=0000000000000463 R14=ffff88804060a3a8 R15=0000000000000040
RIP=ffffffff8126b4d0 RFL=00000017 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005628cf6df3e0 CR3=00000000268be000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffff000000000000ffff000000ff0000
XMM02=ffffffffffffff00ffffffffffffffff XMM03=0000000000003d5354504f5f44485353
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000210000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000007 RBX=1ffff1100824de8a RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000008 RDI=ffff8880410d0944 RBP=0000000000000000 RSP=ffff88804126f440
R8 =0000000000000000 R9 =ffffffff8567accf R10=0000000000000046 R11=0000000000000001
R12=0000000000000002 R13=0000000000000000 R14=ffffffff84ff9c60 R15=0000000000000000
RIP=ffffffff81275518 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007feaefe83700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555aa9519320 CR3=0000000017d48000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffff0000000000000000000000000000
XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973
XMM04=00000000000000000000000000000000 XMM05=000055631543086000005563154384c0
XMM06=00005563154414f000000000ffffffff XMM07=00000002000000010000556315450600
XMM08=7269762f736563697665642f7379732f XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000