th+0xe1/0x600
[ 1426.507247]  ? wait_for_completion_io+0x270/0x270
[ 1426.507679]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1426.508075]  ? vfs_write+0x354/0xb10
[ 1426.508394]  ? fput_many+0x2f/0x1a0
[ 1426.508706]  ? ksys_write+0x1a9/0x260
[ 1426.509032]  ? __ia32_sys_read+0xb0/0xb0
[ 1426.509383]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1426.509829]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1426.510270]  do_syscall_64+0x33/0x40
[ 1426.510588]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1426.511024] RIP: 0033:0x7f30cfeeeb19
[ 1426.511343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1426.512899] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1426.513551] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1426.514156] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1426.514758] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1426.515362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1426.515975] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:06:16 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x300}, 0x6)

21:06:16 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 7)

21:06:16 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYRESDEC])

21:06:16 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 9)

[ 1426.614603] FAULT_INJECTION: forcing a failure.
[ 1426.614603] name failslab, interval 1, probability 0, space 0, times 0
[ 1426.615685] CPU: 0 PID: 7939 Comm: syz-executor.5 Not tainted 5.10.223 #1
[ 1426.616252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1426.616941] Call Trace:
[ 1426.617170]  dump_stack+0x107/0x167
[ 1426.617480]  should_fail.cold+0x5/0xa
[ 1426.617811]  ? create_object.isra.0+0x3a/0xa20
[ 1426.618200]  should_failslab+0x5/0x20
[ 1426.618523]  kmem_cache_alloc+0x5b/0x310
[ 1426.618869]  create_object.isra.0+0x3a/0xa20
[ 1426.619245]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1426.619687]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 1426.620126]  __get_vm_area_node+0xd4/0x340
[ 1426.620487]  __vmalloc_node_range+0x13f/0x9e0
[ 1426.620863]  ? kernel_read_file+0x6b8/0x790
[ 1426.621229]  ? kernel_read_file+0x6b8/0x790
[ 1426.621592]  ? __get_vm_area_node+0x25d/0x340
[ 1426.621973]  ? lock_downgrade+0x6d0/0x6d0
[ 1426.622325]  ? do_raw_spin_lock+0x121/0x260
[ 1426.622689]  ? __vmalloc_node+0x110/0x110
[ 1426.623039]  ? rwlock_bug.part.0+0x90/0x90
[ 1426.623397]  ? kasan_unpoison_shadow+0x33/0x50
[ 1426.623797]  ? kernel_read_file+0x6b8/0x790
[ 1426.624160]  __vmalloc_node+0xb5/0x110
[ 1426.624487]  ? kernel_read_file+0x6b8/0x790
[ 1426.624852]  __vmalloc_node_range+0x2ab/0x9e0
[ 1426.625236]  ? __vmalloc_node+0x110/0x110
[ 1426.625589]  ? kernel_read_file+0x6b8/0x790
[ 1426.625952]  __vmalloc_node+0xb5/0x110
[ 1426.626279]  ? kernel_read_file+0x6b8/0x790
[ 1426.626642]  kernel_read_file+0x6b8/0x790
[ 1426.626996]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1426.627390]  kernel_read_file_from_fd+0xb8/0x110
[ 1426.627759] FAULT_INJECTION: forcing a failure.
[ 1426.627759] name failslab, interval 1, probability 0, space 0, times 0
[ 1426.627812]  __do_sys_finit_module+0xe8/0x180
[ 1426.629132]  ? __do_sys_init_module+0x230/0x230
[ 1426.629524]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1426.629942]  ? __ia32_sys_read+0xb0/0xb0
[ 1426.630288]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1426.630727]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1426.631161]  ? trace_hardirqs_on+0x5b/0x180
[ 1426.631525]  do_syscall_64+0x33/0x40
[ 1426.631861]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1426.632289] RIP: 0033:0x7fc4b42ecb19
[ 1426.632601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1426.634123] RSP: 002b:00007fc4b1862188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1426.634757] RAX: ffffffffffffffda RBX: 00007fc4b43fff60 RCX: 00007fc4b42ecb19
[ 1426.635351] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1426.635959] RBP: 00007fc4b18621d0 R08: 0000000000000000 R09: 0000000000000000
[ 1426.636553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1426.637147] R13: 00007fff29fed5ef R14: 00007fc4b1862300 R15: 0000000000022000
[ 1426.637760] CPU: 1 PID: 7941 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1426.638347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1426.639043] Call Trace:
[ 1426.639275]  dump_stack+0x107/0x167
[ 1426.639602]  should_fail.cold+0x5/0xa
[ 1426.639931]  ? create_object.isra.0+0x3a/0xa20
[ 1426.640321]  should_failslab+0x5/0x20
[ 1426.640648]  kmem_cache_alloc+0x5b/0x310
[ 1426.640993]  ? kernel_read_file+0x6b8/0x790
[ 1426.641356]  ? kernel_read_file_from_fd+0xb8/0x110
[ 1426.641772]  create_object.isra.0+0x3a/0xa20
[ 1426.642147]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1426.642596]  kmem_cache_alloc_node+0x169/0x330
[ 1426.643002]  alloc_vmap_area+0x148/0x1d10
[ 1426.643355]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 1426.643818]  ? lock_downgrade+0x6d0/0x6d0
[ 1426.644181]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 1426.644565]  ? kasan_unpoison_shadow+0x33/0x50
[ 1426.644954]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1426.645389]  __get_vm_area_node+0x127/0x340
[ 1426.645762]  __vmalloc_node_range+0x13f/0x9e0
[ 1426.646143]  ? kernel_read_file+0x6b8/0x790
[ 1426.646518]  ? kernel_read_file+0x6b8/0x790
[ 1426.646895]  ? __get_vm_area_node+0x25d/0x340
21:06:16 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x20000046)

[ 1426.647284]  ? lock_downgrade+0x6d0/0x6d0
[ 1426.647656]  ? do_raw_spin_lock+0x121/0x260
[ 1426.648022]  ? __vmalloc_node+0x110/0x110
[ 1426.648375]  ? rwlock_bug.part.0+0x90/0x90
[ 1426.648734]  ? kasan_unpoison_shadow+0x33/0x50
[ 1426.649122]  ? kernel_read_file+0x6b8/0x790
[ 1426.649487]  __vmalloc_node+0xb5/0x110
[ 1426.649816]  ? kernel_read_file+0x6b8/0x790
[ 1426.650399]  __vmalloc_node_range+0x2ab/0x9e0
[ 1426.650789]  ? __vmalloc_node+0x110/0x110
[ 1426.651150]  ? kernel_read_file+0x6b8/0x790
[ 1426.651514]  __vmalloc_node+0xb5/0x110
[ 1426.651875]  ? kernel_read_file+0x6b8/0x790
[ 1426.652246]  kernel_read_file+0x6b8/0x790
[ 1426.652601]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1426.652997]  kernel_read_file_from_fd+0xb8/0x110
[ 1426.653407]  __do_sys_finit_module+0xe8/0x180
[ 1426.653788]  ? __do_sys_init_module+0x230/0x230
[ 1426.654187]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1426.654607]  ? __ia32_sys_read+0xb0/0xb0
[ 1426.654956]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1426.655400]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1426.655852]  ? trace_hardirqs_on+0x5b/0x180
[ 1426.656219]  do_syscall_64+0x33/0x40
[ 1426.656537]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1426.656970] RIP: 0033:0x7f71c9c30b19
[ 1426.657291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1426.658827] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1426.659470] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1426.660084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1426.660685] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1426.661290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1426.661894] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:06:16 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:16 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB, @ANYRESDEC])

[ 1426.744988] syz-executor.6 (7924) used greatest stack depth: 23944 bytes left
[ 1426.764774] Module has invalid ELF structures
[ 1426.770299] Module has invalid ELF structures
21:06:30 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

21:06:30 executing program 4:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x10)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:06:30 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 10)

21:06:30 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:30 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 8)

21:06:30 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {0x0}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:06:30 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB, @ANYRESDEC])

21:06:30 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 9)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1440.070331] FAULT_INJECTION: forcing a failure.
[ 1440.070331] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.071363] CPU: 1 PID: 7955 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1440.071999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.072726] Call Trace:
[ 1440.072978]  dump_stack+0x107/0x167
[ 1440.073314]  should_fail.cold+0x5/0xa
[ 1440.073666]  ? kmemleak_scan_area+0xa6/0x360
[ 1440.074072]  should_failslab+0x5/0x20
[ 1440.074424]  kmem_cache_alloc+0x5b/0x310
[ 1440.074801]  kmemleak_scan_area+0xa6/0x360
[ 1440.075194]  alloc_vmap_area+0x171/0x1d10
[ 1440.075572]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 1440.076653]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.077619]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 1440.078645]  ? kasan_unpoison_shadow+0x33/0x50
[ 1440.079698]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1440.080892]  __get_vm_area_node+0x127/0x340
[ 1440.081922]  __vmalloc_node_range+0x13f/0x9e0
[ 1440.082995]  ? kernel_read_file+0x6b8/0x790
[ 1440.083996]  ? kernel_read_file+0x6b8/0x790
[ 1440.084828]  ? __get_vm_area_node+0x25d/0x340
[ 1440.085686]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.086488]  ? do_raw_spin_lock+0x121/0x260
[ 1440.087316]  ? __vmalloc_node+0x110/0x110
[ 1440.087892]  ? rwlock_bug.part.0+0x90/0x90
[ 1440.088294]  ? kasan_unpoison_shadow+0x33/0x50
[ 1440.088714]  ? kernel_read_file+0x6b8/0x790
[ 1440.089116]  __vmalloc_node+0xb5/0x110
[ 1440.089470]  ? kernel_read_file+0x6b8/0x790
[ 1440.089867]  __vmalloc_node_range+0x2ab/0x9e0
[ 1440.090292]  ? __vmalloc_node+0x110/0x110
[ 1440.090676]  ? kernel_read_file+0x6b8/0x790
[ 1440.091071]  __vmalloc_node+0xb5/0x110
[ 1440.091435]  ? kernel_read_file+0x6b8/0x790
[ 1440.092125]  kernel_read_file+0x6b8/0x790
[ 1440.092938]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1440.093786]  kernel_read_file_from_fd+0xb8/0x110
[ 1440.094730]  __do_sys_finit_module+0xe8/0x180
[ 1440.095596]  ? __do_sys_init_module+0x230/0x230
[ 1440.096724]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1440.097663]  ? __ia32_sys_read+0xb0/0xb0
[ 1440.098454]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.099465]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.100587]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.101351]  do_syscall_64+0x33/0x40
[ 1440.102005]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.102909] RIP: 0033:0x7f71c9c30b19
[ 1440.103547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.108109] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1440.109612] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1440.110969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1440.112007] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.112659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1440.113319] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1440.124264] FAULT_INJECTION: forcing a failure.
[ 1440.124264] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.125281] CPU: 1 PID: 7966 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1440.125883] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.126617] Call Trace:
[ 1440.126861]  dump_stack+0x107/0x167
[ 1440.127195]  should_fail.cold+0x5/0xa
[ 1440.127551]  ? io_wq_create+0x6ef/0xc00
[ 1440.128309]  should_failslab+0x5/0x20
[ 1440.128953]  kmem_cache_alloc_node_trace+0x59/0x340
[ 1440.129796]  io_wq_create+0x6ef/0xc00
[ 1440.130441]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 1440.131300]  ? io_import_iovec+0x1120/0x1120
[ 1440.132266]  ? io_apoll_task_func+0x2d0/0x2d0
[ 1440.133159]  ? __io_req_find_next+0x300/0x300
[ 1440.134021]  ? percpu_ref_tryget_many+0x166/0x2d0
[ 1440.134955]  __io_uring_add_tctx_node+0x2c6/0x520
[ 1440.135934]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1440.136936]  __do_sys_io_uring_enter+0x1489/0x18c0
[ 1440.137841]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.138603]  ? find_held_lock+0x2c/0x110
[ 1440.139362]  ? io_submit_sqes+0x8610/0x8610
[ 1440.140325]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1440.141258]  ? wait_for_completion_io+0x270/0x270
[ 1440.142176]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1440.143075]  ? vfs_write+0x354/0xb10
[ 1440.143752]  ? fput_many+0x2f/0x1a0
[ 1440.144092]  ? ksys_write+0x1a9/0x260
[ 1440.144439]  ? __ia32_sys_read+0xb0/0xb0
[ 1440.144826]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.145310]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.145786]  do_syscall_64+0x33/0x40
[ 1440.146137]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.146601] RIP: 0033:0x7f30cfeeeb19
[ 1440.146948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.148611] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1440.149301] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1440.149942] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1440.150591] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.151224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1440.151882] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:06:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
write$bt_hci(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="e91a0000"], 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1440.162815] FAULT_INJECTION: forcing a failure.
[ 1440.162815] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.163951] CPU: 0 PID: 7959 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1440.164568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.165312] Call Trace:
[ 1440.165561]  dump_stack+0x107/0x167
[ 1440.165899]  should_fail.cold+0x5/0xa
[ 1440.166249]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.166649]  ? __alloc_skb+0x6d/0x5b0
[ 1440.167004]  should_failslab+0x5/0x20
[ 1440.167367]  kmem_cache_alloc_node+0x55/0x330
[ 1440.167808]  __alloc_skb+0x6d/0x5b0
[ 1440.168152]  skb_segment+0x9d8/0x3aa0
[ 1440.168504]  ? lock_chain_count+0x20/0x20
[ 1440.168920]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1440.169384]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.169872]  __udp_gso_segment+0x11c6/0x1830
[ 1440.170277]  ? __sk_receive_skb+0x830/0x830
[ 1440.170687]  udp4_ufo_fragment+0x528/0x720
[ 1440.171081]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1440.171543]  inet_gso_segment+0x4fb/0x11a0
[ 1440.171962]  skb_mac_gso_segment+0x273/0x570
[ 1440.172369]  ? inet_sock_destruct+0x840/0x840
[ 1440.172781]  ? skb_network_protocol+0x650/0x650
[ 1440.173210]  ? skb_crc32c_csum_help+0x80/0x80
[ 1440.173622]  ? lock_acquire+0x197/0x470
[ 1440.173987]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1440.174403]  __skb_gso_segment+0x32d/0x6d0
[ 1440.174799]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1440.175283]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1440.175714]  __dev_queue_xmit+0x87b/0x2710
[ 1440.176121]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1440.176550]  ? mark_held_locks+0x9e/0xe0
[ 1440.177140]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1440.177622]  neigh_connected_output+0x382/0x4d0
[ 1440.178069]  ip_finish_output2+0x6f1/0x21f0
[ 1440.178469]  ? nf_hook_slow+0xfc/0x1e0
[ 1440.178825]  ? ip_frag_next+0x9e0/0x9e0
[ 1440.179343]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1440.180072]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1440.180534] Module has invalid ELF structures
[ 1440.180672]  ? ip_fragment.constprop.0+0x240/0x240
[ 1440.181465]  ? nf_hook+0x510/0x510
[ 1440.181777]  ip_output+0x2f7/0x600
[ 1440.182090]  ip_send_skb+0xdd/0x260
[ 1440.182407]  udp_send_skb+0x6da/0x11d0
[ 1440.182744]  udp_sendmsg+0x139a/0x2160
[ 1440.183079]  ? mark_lock+0xf5/0x2df0
[ 1440.183394]  ? ip_frag_init+0x350/0x350
[ 1440.187760]  ? lock_chain_count+0x20/0x20
[ 1440.188120]  ? udp_setsockopt+0xc0/0xc0
[ 1440.188451]  ? mark_lock+0xf5/0x2df0
[ 1440.188761]  ? lock_acquire+0x197/0x470
[ 1440.189105]  ? lock_chain_count+0x20/0x20
[ 1440.189452]  ? mark_lock+0xf5/0x2df0
[ 1440.189767]  ? mark_lock+0xf5/0x2df0
[ 1440.190087]  ? lock_chain_count+0x20/0x20
[ 1440.190433]  ? __lock_acquire+0xbb1/0x5b00
[ 1440.190786]  ? lock_chain_count+0x20/0x20
[ 1440.191152]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.191602]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1440.191977]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1440.192420]  ? mark_lock+0xf5/0x2df0
[ 1440.192738]  ? lock_acquire+0x197/0x470
[ 1440.193078]  ? find_held_lock+0x2c/0x110
[ 1440.193424]  ? __might_fault+0xd3/0x180
[ 1440.193756]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.194114]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.194463]  ? sock_has_perm+0x1ea/0x280
[ 1440.194803]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1440.195247]  ? _copy_from_user+0xfb/0x1b0
[ 1440.195603]  ? __import_iovec+0x458/0x590
[ 1440.195972]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1440.196413]  inet6_sendmsg+0x105/0x140
[ 1440.196739]  ? inet6_compat_ioctl+0x320/0x320
[ 1440.197121]  __sock_sendmsg+0xf2/0x190
[ 1440.197449]  ____sys_sendmsg+0x70d/0x870
[ 1440.197791]  ? sock_write_iter+0x3d0/0x3d0
[ 1440.198149]  ? do_recvmmsg+0x6d0/0x6d0
[ 1440.198481]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.198829]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.199280]  ___sys_sendmsg+0xf3/0x170
[ 1440.199609]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1440.200020]  ? __fget_files+0x2cf/0x520
[ 1440.200354]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.200703]  ? find_held_lock+0x2c/0x110
[ 1440.201059]  ? __fget_files+0x2f8/0x520
[ 1440.201401]  ? __fget_light+0xea/0x290
[ 1440.201733]  __sys_sendmsg+0xe5/0x1b0
[ 1440.202059]  ? __sys_sendmsg_sock+0x40/0x40
[ 1440.202420]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1440.202822]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.203267]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.203700]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.204076]  do_syscall_64+0x33/0x40
[ 1440.204388]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.204813] RIP: 0033:0x7f9e74c56b19
[ 1440.205132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.206645] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1440.207284] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1440.207887] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1440.208480] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.209074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1440.209660] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:06:30 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:06:30 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB, @ANYRESDEC])

21:06:30 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:06:30 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:30 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

[ 1440.353519] Module has invalid ELF structures
21:06:30 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 11)

21:06:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'xfrm0\x00', {0x2, 0x0, @private}})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x420000, 0x0)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f00000000c0)={0xffffffffffffffff, 0x47, "5ef727", 0x1f, 0xae})

[ 1440.421493] FAULT_INJECTION: forcing a failure.
[ 1440.421493] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.422585] CPU: 1 PID: 7990 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1440.423197] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.423954] Call Trace:
[ 1440.424207]  dump_stack+0x107/0x167
[ 1440.424543]  should_fail.cold+0x5/0xa
[ 1440.424896]  ? create_object.isra.0+0x3a/0xa20
[ 1440.425315]  should_failslab+0x5/0x20
[ 1440.425665]  kmem_cache_alloc+0x5b/0x310
[ 1440.426047]  ? mark_held_locks+0x9e/0xe0
[ 1440.426423]  create_object.isra.0+0x3a/0xa20
[ 1440.426825]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1440.427294]  kmem_cache_alloc_bulk+0x168/0x320
[ 1440.427733]  io_submit_sqes+0x6fe6/0x8610
[ 1440.428123]  ? percpu_ref_tryget_many+0x166/0x2d0
[ 1440.428584]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1440.429040]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1440.429486]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.429870]  ? find_held_lock+0x2c/0x110
[ 1440.430246]  ? io_submit_sqes+0x8610/0x8610
[ 1440.430648]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1440.431092]  ? wait_for_completion_io+0x270/0x270
[ 1440.431527]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1440.431959]  ? vfs_write+0x354/0xb10
[ 1440.432300]  ? fput_many+0x2f/0x1a0
[ 1440.432637]  ? ksys_write+0x1a9/0x260
[ 1440.432991]  ? __ia32_sys_read+0xb0/0xb0
[ 1440.433373]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.433851]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.434325]  do_syscall_64+0x33/0x40
[ 1440.434673]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.435138] RIP: 0033:0x7f30cfeeeb19
[ 1440.435482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.437133] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1440.437819] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1440.438461] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1440.439109] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.439769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1440.440410] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
[ 1440.450456] FAULT_INJECTION: forcing a failure.
[ 1440.450456] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.451595] CPU: 1 PID: 7988 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1440.452223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.452968] Call Trace:
[ 1440.453217]  dump_stack+0x107/0x167
[ 1440.453556]  should_fail.cold+0x5/0xa
21:06:30 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1440.453910]  ? __vmalloc_node_range+0x7a2/0x9e0
[ 1440.459827]  should_failslab+0x5/0x20
[ 1440.460206]  __kmalloc_node+0x76/0x420
[ 1440.460540]  __vmalloc_node_range+0x7a2/0x9e0
[ 1440.460917]  ? __get_vm_area_node+0x25d/0x340
[ 1440.461298]  ? do_raw_spin_lock+0x121/0x260
[ 1440.461662]  ? __vmalloc_node+0x110/0x110
[ 1440.462013]  ? rwlock_bug.part.0+0x90/0x90
[ 1440.462369]  ? kasan_unpoison_shadow+0x33/0x50
[ 1440.462755]  ? kernel_read_file+0x6b8/0x790
[ 1440.463116]  __vmalloc_node+0xb5/0x110
[ 1440.463441]  ? kernel_read_file+0x6b8/0x790
[ 1440.463879]  __vmalloc_node_range+0x2ab/0x9e0
[ 1440.464425]  ? __vmalloc_node+0x110/0x110
[ 1440.464932]  ? kernel_read_file+0x6b8/0x790
[ 1440.465470]  __vmalloc_node+0xb5/0x110
[ 1440.465947]  ? kernel_read_file+0x6b8/0x790
[ 1440.466495]  kernel_read_file+0x6b8/0x790
[ 1440.467017]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1440.467584]  kernel_read_file_from_fd+0xb8/0x110
[ 1440.468196]  __do_sys_finit_module+0xe8/0x180
[ 1440.468754]  ? __do_sys_init_module+0x230/0x230
[ 1440.469346]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1440.469950]  ? __ia32_sys_read+0xb0/0xb0
[ 1440.470460]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.471110]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.471745]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.472279]  do_syscall_64+0x33/0x40
[ 1440.472749]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.473380] RIP: 0033:0x7f71c9c30b19
[ 1440.473830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.476069] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1440.476985] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1440.477872] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1440.478735] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.479611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1440.480482] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:06:30 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:30 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 10)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:06:30 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508", @ANYRESDEC])

21:06:30 executing program 4:
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'tunl0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB='tunl0\x00'/16, @ANYRES32=<r0=>0x0, @ANYBLOB="000807000000006b000000084b08002c00660000042f9078ffffffffac1414aa019404fdff940401000044239de000010000000000070000"]})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'syztnl1\x00', &(0x7f00000001c0)={'sit0\x00', r0, 0x29, 0xf8, 0x7, 0xffff, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, @remote, 0x700, 0x700, 0x8}})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1440.580204] FAULT_INJECTION: forcing a failure.
[ 1440.580204] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.581668] CPU: 1 PID: 8003 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1440.582475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.583464] Call Trace:
[ 1440.583801]  dump_stack+0x107/0x167
[ 1440.584267]  should_fail.cold+0x5/0xa
[ 1440.584748]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1440.585371]  ? create_object.isra.0+0x3a/0xa20
[ 1440.585923]  should_failslab+0x5/0x20
[ 1440.586382]  kmem_cache_alloc+0x5b/0x310
[ 1440.586881]  ? mark_held_locks+0x9e/0xe0
[ 1440.587392]  create_object.isra.0+0x3a/0xa20
[ 1440.587941]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1440.588567]  kmem_cache_alloc_node+0x169/0x330
[ 1440.589139]  __alloc_skb+0x6d/0x5b0
[ 1440.589598]  skb_segment+0x9d8/0x3aa0
[ 1440.590075]  ? lock_chain_count+0x20/0x20
[ 1440.590611]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1440.591262]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.591919]  __udp_gso_segment+0x11c6/0x1830
[ 1440.592463]  ? __sk_receive_skb+0x830/0x830
[ 1440.593016]  udp4_ufo_fragment+0x528/0x720
[ 1440.593552]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1440.594146]  inet_gso_segment+0x4fb/0x11a0
[ 1440.594685]  skb_mac_gso_segment+0x273/0x570
[ 1440.595243]  ? inet_sock_destruct+0x840/0x840
[ 1440.595813]  ? skb_network_protocol+0x650/0x650
[ 1440.596403]  ? skb_crc32c_csum_help+0x80/0x80
[ 1440.596961]  ? lock_acquire+0x197/0x470
[ 1440.597450]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1440.597999]  __skb_gso_segment+0x32d/0x6d0
[ 1440.598539]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1440.599168]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1440.599731]  __dev_queue_xmit+0x87b/0x2710
[ 1440.600265]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1440.600830]  ? mark_held_locks+0x9e/0xe0
[ 1440.601341]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1440.601983]  neigh_connected_output+0x382/0x4d0
[ 1440.602571]  ip_finish_output2+0x6f1/0x21f0
[ 1440.603108]  ? nf_hook_slow+0xfc/0x1e0
[ 1440.603578]  ? ip_frag_next+0x9e0/0x9e0
[ 1440.604086]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1440.604687]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1440.605294]  ? ip_fragment.constprop.0+0x240/0x240
[ 1440.605895]  ? nf_hook+0x510/0x510
[ 1440.606331]  ip_output+0x2f7/0x600
[ 1440.606784]  ip_send_skb+0xdd/0x260
[ 1440.607238]  udp_send_skb+0x6da/0x11d0
[ 1440.607750]  udp_sendmsg+0x139a/0x2160
[ 1440.608241]  ? mark_lock+0xf5/0x2df0
[ 1440.608701]  ? ip_frag_init+0x350/0x350
[ 1440.609204]  ? lock_chain_count+0x20/0x20
[ 1440.609699]  ? udp_setsockopt+0xc0/0xc0
[ 1440.610160]  ? mark_lock+0xf5/0x2df0
[ 1440.610502]  ? lock_acquire+0x197/0x470
[ 1440.610867]  ? lock_chain_count+0x20/0x20
[ 1440.611251]  ? mark_lock+0xf5/0x2df0
[ 1440.611596]  ? mark_lock+0xf5/0x2df0
[ 1440.611947]  ? lock_chain_count+0x20/0x20
[ 1440.612325]  ? __lock_acquire+0xbb1/0x5b00
[ 1440.612717]  ? lock_chain_count+0x20/0x20
[ 1440.613116]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.613611]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1440.614006]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1440.614486]  ? mark_lock+0xf5/0x2df0
[ 1440.614842]  ? lock_acquire+0x197/0x470
[ 1440.615210]  ? find_held_lock+0x2c/0x110
[ 1440.615590]  ? __might_fault+0xd3/0x180
[ 1440.615969]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.616358]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.616743]  ? sock_has_perm+0x1ea/0x280
[ 1440.617099]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1440.617543]  ? _copy_from_user+0xfb/0x1b0
[ 1440.617929]  ? __import_iovec+0x458/0x590
[ 1440.618320]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1440.618800]  inet6_sendmsg+0x105/0x140
[ 1440.619165]  ? inet6_compat_ioctl+0x320/0x320
[ 1440.619578]  __sock_sendmsg+0xf2/0x190
[ 1440.620034]  ____sys_sendmsg+0x70d/0x870
[ 1440.620529]  ? sock_write_iter+0x3d0/0x3d0
[ 1440.621022]  ? do_recvmmsg+0x6d0/0x6d0
[ 1440.621526]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.622046]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1440.622692]  ___sys_sendmsg+0xf3/0x170
[ 1440.623192]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1440.623768]  ? __fget_files+0x2cf/0x520
[ 1440.624272]  ? lock_downgrade+0x6d0/0x6d0
[ 1440.624785]  ? find_held_lock+0x2c/0x110
[ 1440.625308]  ? __fget_files+0x2f8/0x520
[ 1440.625783]  ? __fget_light+0xea/0x290
[ 1440.626285]  __sys_sendmsg+0xe5/0x1b0
[ 1440.626745]  ? __sys_sendmsg_sock+0x40/0x40
[ 1440.627251]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1440.627869]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.628490]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.629129]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.629662]  do_syscall_64+0x33/0x40
[ 1440.630134]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.630766] RIP: 0033:0x7f9e74c56b19
[ 1440.631228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.633481] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1440.634413] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1440.635285] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1440.636176] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.637038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1440.637923] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:06:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000080)={0x1, @accept_phy_link={{0x436, 0x4b}, {0x190, 0x75, 0x1, "ed4c442e0022604842fc9ba5d4526f7db3c491d42c96f1bdace7d171a0e770a41114f2d6263a24b666ad65c761bbbab18e025f619947db44453e44d179d895297d025513ce6044c5"}}}, 0x4f)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @disconn_logical_link={{0x43a, 0x2}, {0xeff2}}}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:06:30 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x2)

21:06:30 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508", @ANYRESDEC])

21:06:30 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 12)

21:06:30 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1440.736348] Module has invalid ELF structures
[ 1440.762524] FAULT_INJECTION: forcing a failure.
[ 1440.762524] name failslab, interval 1, probability 0, space 0, times 0
[ 1440.764149] CPU: 1 PID: 8015 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1440.764975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1440.765996] Call Trace:
[ 1440.766341]  dump_stack+0x107/0x167
[ 1440.766789]  should_fail.cold+0x5/0xa
[ 1440.767271]  ? create_object.isra.0+0x3a/0xa20
[ 1440.767840]  should_failslab+0x5/0x20
[ 1440.768332]  kmem_cache_alloc+0x5b/0x310
[ 1440.768836]  create_object.isra.0+0x3a/0xa20
[ 1440.769372]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1440.769999]  __kmalloc_node+0x1ae/0x420
[ 1440.770471]  __vmalloc_node_range+0x7a2/0x9e0
[ 1440.771019]  ? __get_vm_area_node+0x25d/0x340
[ 1440.771574]  ? do_raw_spin_lock+0x121/0x260
[ 1440.772098]  ? __vmalloc_node+0x110/0x110
[ 1440.772618]  ? rwlock_bug.part.0+0x90/0x90
[ 1440.773144]  ? kasan_unpoison_shadow+0x33/0x50
[ 1440.773716]  ? kernel_read_file+0x6b8/0x790
[ 1440.774250]  __vmalloc_node+0xb5/0x110
[ 1440.774729]  ? kernel_read_file+0x6b8/0x790
[ 1440.775265]  __vmalloc_node_range+0x2ab/0x9e0
[ 1440.775835]  ? __vmalloc_node+0x110/0x110
[ 1440.776335]  ? kernel_read_file+0x6b8/0x790
[ 1440.776734]  __vmalloc_node+0xb5/0x110
[ 1440.777092]  ? kernel_read_file+0x6b8/0x790
[ 1440.777491]  kernel_read_file+0x6b8/0x790
[ 1440.777876]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1440.778311]  kernel_read_file_from_fd+0xb8/0x110
[ 1440.778755]  __do_sys_finit_module+0xe8/0x180
[ 1440.779166]  ? __do_sys_init_module+0x230/0x230
[ 1440.779594]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1440.780062]  ? __ia32_sys_read+0xb0/0xb0
[ 1440.780438]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1440.780910]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1440.781380]  ? trace_hardirqs_on+0x5b/0x180
[ 1440.781770]  do_syscall_64+0x33/0x40
[ 1440.782110]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1440.782579] RIP: 0033:0x7f71c9c30b19
[ 1440.782927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1440.784586] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1440.785283] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1440.785924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1440.786569] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1440.787206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1440.787911] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:06:31 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
r3 = openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r3, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r5}}, 0x7)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:06:31 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {0x0}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:31 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x3)

[ 1440.953758] Module has invalid ELF structures
[ 1440.968967] Module has invalid ELF structures
21:06:44 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

21:06:44 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 13)

21:06:44 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x4)

21:06:44 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 11)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:06:44 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508", @ANYRESDEC])

21:06:44 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:06:44 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0xfffffffffffffee2)

21:06:44 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {0x0}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1454.283742] FAULT_INJECTION: forcing a failure.
[ 1454.283742] name failslab, interval 1, probability 0, space 0, times 0
[ 1454.286923] CPU: 0 PID: 8039 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1454.288780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.291029] Call Trace:
[ 1454.291767]  dump_stack+0x107/0x167
[ 1454.292751]  should_fail.cold+0x5/0xa
[ 1454.293808]  should_failslab+0x5/0x20
[ 1454.294843]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1454.296174]  ? skb_segment+0x9d8/0x3aa0
[ 1454.297241]  __alloc_skb+0xb1/0x5b0
21:06:44 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {0x0}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1454.298248]  skb_segment+0x9d8/0x3aa0
[ 1454.299476]  ? lock_chain_count+0x20/0x20
[ 1454.300625]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1454.301984]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.302045] FAULT_INJECTION: forcing a failure.
[ 1454.302045] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1454.303415]  __udp_gso_segment+0x11c6/0x1830
[ 1454.303428]  ? __sk_receive_skb+0x830/0x830
[ 1454.303455]  udp4_ufo_fragment+0x528/0x720
[ 1454.303470]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1454.303487]  inet_gso_segment+0x4fb/0x11a0
[ 1454.311349]  skb_mac_gso_segment+0x273/0x570
[ 1454.312509]  ? inet_sock_destruct+0x840/0x840
[ 1454.313721]  ? skb_network_protocol+0x650/0x650
[ 1454.314969]  ? skb_crc32c_csum_help+0x80/0x80
[ 1454.316190]  ? lock_acquire+0x197/0x470
[ 1454.317257]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1454.318393]  __skb_gso_segment+0x32d/0x6d0
[ 1454.319528]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1454.324193]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1454.324581]  __dev_queue_xmit+0x87b/0x2710
[ 1454.325330]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1454.326405]  ? mark_held_locks+0x9e/0xe0
[ 1454.327389]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1454.328623]  neigh_connected_output+0x382/0x4d0
[ 1454.329763]  ip_finish_output2+0x6f1/0x21f0
[ 1454.330783]  ? nf_hook_slow+0xfc/0x1e0
[ 1454.331703]  ? ip_frag_next+0x9e0/0x9e0
[ 1454.332639]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1454.333858]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1454.334983]  ? ip_fragment.constprop.0+0x240/0x240
[ 1454.336112]  ? nf_hook+0x510/0x510
[ 1454.336923]  ip_output+0x2f7/0x600
[ 1454.337794]  ip_send_skb+0xdd/0x260
[ 1454.338632]  udp_send_skb+0x6da/0x11d0
[ 1454.339565]  udp_sendmsg+0x139a/0x2160
[ 1454.340491]  ? mark_lock+0xf5/0x2df0
[ 1454.341385]  ? ip_frag_init+0x350/0x350
[ 1454.342311]  ? lock_chain_count+0x20/0x20
[ 1454.343315]  ? udp_setsockopt+0xc0/0xc0
[ 1454.344259]  ? mark_lock+0xf5/0x2df0
[ 1454.345150]  ? lock_acquire+0x197/0x470
[ 1454.346085]  ? lock_chain_count+0x20/0x20
[ 1454.347078]  ? mark_lock+0xf5/0x2df0
[ 1454.347960]  ? mark_lock+0xf5/0x2df0
[ 1454.348849]  ? lock_chain_count+0x20/0x20
[ 1454.349807]  ? __lock_acquire+0xbb1/0x5b00
[ 1454.350823]  ? lock_chain_count+0x20/0x20
[ 1454.351820]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.353074]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1454.354043]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1454.355301]  ? mark_lock+0xf5/0x2df0
[ 1454.356189]  ? lock_acquire+0x197/0x470
[ 1454.357133]  ? find_held_lock+0x2c/0x110
[ 1454.358046]  ? __might_fault+0xd3/0x180
[ 1454.358999]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.359982]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.360978]  ? sock_has_perm+0x1ea/0x280
[ 1454.361950]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1454.363189]  ? _copy_from_user+0xfb/0x1b0
[ 1454.364188]  ? __import_iovec+0x458/0x590
[ 1454.365168]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1454.366356]  inet6_sendmsg+0x105/0x140
[ 1454.367294]  ? inet6_compat_ioctl+0x320/0x320
[ 1454.368353]  __sock_sendmsg+0xf2/0x190
[ 1454.369278]  ____sys_sendmsg+0x70d/0x870
[ 1454.370239]  ? sock_write_iter+0x3d0/0x3d0
[ 1454.371255]  ? do_recvmmsg+0x6d0/0x6d0
[ 1454.372179]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.373133]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.374308]  ___sys_sendmsg+0xf3/0x170
[ 1454.375231]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1454.376297]  ? __fget_files+0x2cf/0x520
[ 1454.377232]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.378190]  ? find_held_lock+0x2c/0x110
[ 1454.379144]  ? __fget_files+0x2f8/0x520
[ 1454.380071]  ? __fget_light+0xea/0x290
[ 1454.381005]  __sys_sendmsg+0xe5/0x1b0
[ 1454.381908]  ? __sys_sendmsg_sock+0x40/0x40
[ 1454.382948]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1454.384079]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.385342]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.386540]  ? trace_hardirqs_on+0x5b/0x180
[ 1454.387556]  do_syscall_64+0x33/0x40
[ 1454.388423]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.389633] RIP: 0033:0x7f9e74c56b19
[ 1454.390517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1454.394924] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1454.396677] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1454.398382] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1454.400052] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1454.401774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1454.403435] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1454.405173] CPU: 1 PID: 8046 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1454.405862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.406666] Call Trace:
[ 1454.406929]  dump_stack+0x107/0x167
[ 1454.407291]  should_fail.cold+0x5/0xa
[ 1454.407661]  __alloc_pages_nodemask+0x182/0x600
[ 1454.408116]  ? __kmalloc_node+0x1ae/0x420
[ 1454.408526]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.408913]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1454.409491]  ? trace_hardirqs_on+0x5b/0x180
[ 1454.409899]  alloc_pages_current+0x187/0x280
[ 1454.410406]  __vmalloc_node_range+0x60a/0x9e0
[ 1454.410843]  ? do_raw_spin_lock+0x121/0x260
[ 1454.411269]  ? __vmalloc_node+0x110/0x110
[ 1454.411683]  ? rwlock_bug.part.0+0x90/0x90
[ 1454.412108]  ? kasan_unpoison_shadow+0x33/0x50
[ 1454.412554]  ? kernel_read_file+0x6b8/0x790
[ 1454.412918]  __vmalloc_node+0xb5/0x110
[ 1454.413244]  ? kernel_read_file+0x6b8/0x790
[ 1454.413609]  __vmalloc_node_range+0x2ab/0x9e0
[ 1454.414027]  ? __vmalloc_node+0x110/0x110
[ 1454.414386]  ? kernel_read_file+0x6b8/0x790
[ 1454.414749]  __vmalloc_node+0xb5/0x110
[ 1454.415076]  ? kernel_read_file+0x6b8/0x790
[ 1454.415445]  kernel_read_file+0x6b8/0x790
[ 1454.415805]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1454.416201]  kernel_read_file_from_fd+0xb8/0x110
[ 1454.416606]  __do_sys_finit_module+0xe8/0x180
[ 1454.416997]  ? __do_sys_init_module+0x230/0x230
[ 1454.417399]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1454.417824]  ? __ia32_sys_read+0xb0/0xb0
[ 1454.418173]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.418619]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.419053]  ? trace_hardirqs_on+0x5b/0x180
[ 1454.419416]  do_syscall_64+0x33/0x40
[ 1454.419730]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.420165] RIP: 0033:0x7f71c9c30b19
[ 1454.420480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1454.422006] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1454.422643] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1454.423243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1454.423658] FAULT_INJECTION: forcing a failure.
[ 1454.423658] name failslab, interval 1, probability 0, space 0, times 0
[ 1454.423870] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1454.423884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1454.427748] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1454.428527] CPU: 0 PID: 8040 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1454.430214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.432379] Call Trace:
[ 1454.433026]  dump_stack+0x107/0x167
[ 1454.433896]  should_fail.cold+0x5/0xa
[ 1454.434775]  ? create_object.isra.0+0x3a/0xa20
[ 1454.435817]  should_failslab+0x5/0x20
[ 1454.436665]  kmem_cache_alloc+0x5b/0x310
[ 1454.437584]  ? mark_held_locks+0x9e/0xe0
[ 1454.438524]  create_object.isra.0+0x3a/0xa20
[ 1454.439521]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1454.440672]  kmem_cache_alloc_bulk+0x168/0x320
[ 1454.441740]  io_submit_sqes+0x6fe6/0x8610
[ 1454.442673]  ? percpu_ref_tryget_many+0x166/0x2d0
[ 1454.443813]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1454.444954]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1454.446056]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.447009]  ? find_held_lock+0x2c/0x110
[ 1454.447962]  ? io_submit_sqes+0x8610/0x8610
[ 1454.448965]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1454.450075]  ? wait_for_completion_io+0x270/0x270
[ 1454.451145]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1454.452198]  ? vfs_write+0x354/0xb10
[ 1454.453046]  ? fput_many+0x2f/0x1a0
[ 1454.453877]  ? ksys_write+0x1a9/0x260
[ 1454.454735]  ? __ia32_sys_read+0xb0/0xb0
[ 1454.455643]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.456868]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.458054]  do_syscall_64+0x33/0x40
[ 1454.458920]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.460121] RIP: 0033:0x7f30cfeeeb19
21:06:44 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 12)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1454.460960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1454.464445] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1454.465233] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1454.466005] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1454.466751] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1454.467490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1454.468236] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:06:44 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x10100, 0x116, 0xa}, 0x18)
finit_module(r1, &(0x7f00000001c0)='-^,-*&\x00', 0x1)
getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000080)=""/153, &(0x7f0000000000)=0x99)

21:06:44 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x5)

[ 1454.535658] FAULT_INJECTION: forcing a failure.
[ 1454.535658] name failslab, interval 1, probability 0, space 0, times 0
[ 1454.537472] CPU: 1 PID: 8054 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1454.538155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.538987] Call Trace:
[ 1454.539274]  dump_stack+0x107/0x167
[ 1454.539659]  should_fail.cold+0x5/0xa
[ 1454.540062]  ? create_object.isra.0+0x3a/0xa20
[ 1454.540549]  should_failslab+0x5/0x20
[ 1454.540949]  kmem_cache_alloc+0x5b/0x310
[ 1454.541368]  create_object.isra.0+0x3a/0xa20
[ 1454.541808]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1454.542949]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1454.544086]  ? skb_segment+0x9d8/0x3aa0
[ 1454.544969]  __alloc_skb+0xb1/0x5b0
[ 1454.545777]  skb_segment+0x9d8/0x3aa0
[ 1454.546623]  ? lock_chain_count+0x20/0x20
[ 1454.547558]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1454.548665]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.549816]  __udp_gso_segment+0x11c6/0x1830
[ 1454.550776]  ? __sk_receive_skb+0x830/0x830
[ 1454.551724]  udp4_ufo_fragment+0x528/0x720
[ 1454.552669]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1454.553771]  inet_gso_segment+0x4fb/0x11a0
[ 1454.554722]  skb_mac_gso_segment+0x273/0x570
[ 1454.555678]  ? inet_sock_destruct+0x840/0x840
[ 1454.556670]  ? skb_network_protocol+0x650/0x650
[ 1454.557687]  ? skb_crc32c_csum_help+0x80/0x80
[ 1454.558664]  ? lock_acquire+0x197/0x470
[ 1454.559535]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1454.560522]  __skb_gso_segment+0x32d/0x6d0
[ 1454.561455]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1454.562608]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1454.563608]  __dev_queue_xmit+0x87b/0x2710
[ 1454.564554]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1454.565566]  ? mark_held_locks+0x9e/0xe0
[ 1454.566464]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1454.567616]  neigh_connected_output+0x382/0x4d0
[ 1454.568657]  ip_finish_output2+0x6f1/0x21f0
[ 1454.569603]  ? nf_hook_slow+0xfc/0x1e0
[ 1454.570454]  ? ip_frag_next+0x9e0/0x9e0
[ 1454.571335]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1454.572455]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1454.573524]  ? ip_fragment.constprop.0+0x240/0x240
[ 1454.574590]  ? nf_hook+0x510/0x510
[ 1454.575377]  ip_output+0x2f7/0x600
[ 1454.576175]  ip_send_skb+0xdd/0x260
[ 1454.576987]  udp_send_skb+0x6da/0x11d0
[ 1454.577841]  udp_sendmsg+0x139a/0x2160
[ 1454.578686]  ? mark_lock+0xf5/0x2df0
[ 1454.579499]  ? ip_frag_init+0x350/0x350
[ 1454.580377]  ? lock_chain_count+0x20/0x20
[ 1454.581289]  ? udp_setsockopt+0xc0/0xc0
[ 1454.582156]  ? mark_lock+0xf5/0x2df0
[ 1454.582965]  ? lock_acquire+0x197/0x470
[ 1454.583843]  ? lock_chain_count+0x20/0x20
[ 1454.584949]  ? mark_lock+0xf5/0x2df0
[ 1454.585894]  ? mark_lock+0xf5/0x2df0
[ 1454.586712]  ? lock_chain_count+0x20/0x20
[ 1454.587626]  ? __lock_acquire+0xbb1/0x5b00
[ 1454.588563]  ? lock_chain_count+0x20/0x20
[ 1454.589491]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.590663]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1454.591567]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1454.592714]  ? mark_lock+0xf5/0x2df0
[ 1454.593536]  ? lock_acquire+0x197/0x470
[ 1454.594451]  ? find_held_lock+0x2c/0x110
[ 1454.594883]  ? __might_fault+0xd3/0x180
[ 1454.595765]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.596692]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.597597]  ? sock_has_perm+0x1ea/0x280
[ 1454.598482]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1454.599618]  ? _copy_from_user+0xfb/0x1b0
[ 1454.600544]  ? __import_iovec+0x458/0x590
[ 1454.601449]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1454.602578]  inet6_sendmsg+0x105/0x140
[ 1454.603438]  ? inet6_compat_ioctl+0x320/0x320
[ 1454.604429]  __sock_sendmsg+0xf2/0x190
[ 1454.605286]  ____sys_sendmsg+0x70d/0x870
[ 1454.606187]  ? sock_write_iter+0x3d0/0x3d0
[ 1454.607123]  ? do_recvmmsg+0x6d0/0x6d0
[ 1454.607984]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.608893]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.610035]  ___sys_sendmsg+0xf3/0x170
[ 1454.610896]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1454.611907]  ? __fget_files+0x2cf/0x520
[ 1454.612773]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.613686]  ? find_held_lock+0x2c/0x110
[ 1454.614576]  ? __fget_files+0x2f8/0x520
[ 1454.615445]  ? __fget_light+0xea/0x290
[ 1454.616313]  __sys_sendmsg+0xe5/0x1b0
[ 1454.617145]  ? __sys_sendmsg_sock+0x40/0x40
[ 1454.618097]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1454.619130]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.620306]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.621450]  ? trace_hardirqs_on+0x5b/0x180
[ 1454.622398]  do_syscall_64+0x33/0x40
[ 1454.623208]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.624341] RIP: 0033:0x7f9e74c56b19
[ 1454.625155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1454.628340] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1454.628986] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1454.629591] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1454.630195] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1454.630797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1454.631403] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:06:44 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d6", @ANYRESDEC])

21:06:44 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:44 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
sendfile(r0, r1, &(0x7f0000000100)=0x22643812, 0x1)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x600, 0xf0bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x7a}, @void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x20008000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:06:44 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1467.419852] FAULT_INJECTION: forcing a failure.
[ 1467.419852] name failslab, interval 1, probability 0, space 0, times 0
[ 1467.421233] CPU: 0 PID: 8084 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1467.421934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1467.422749] Call Trace:
[ 1467.423041]  dump_stack+0x107/0x167
[ 1467.423418]  should_fail.cold+0x5/0xa
[ 1467.423843]  ? trace_hardirqs_on+0x5b/0x180
[ 1467.424303]  ? __alloc_skb+0x6d/0x5b0
[ 1467.424722]  should_failslab+0x5/0x20
[ 1467.425130]  kmem_cache_alloc_node+0x55/0x330
[ 1467.425598]  __alloc_skb+0x6d/0x5b0
[ 1467.426011]  skb_segment+0x9d8/0x3aa0
[ 1467.426409]  ? lock_chain_count+0x20/0x20
[ 1467.426896]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1467.427420]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1467.428005]  __udp_gso_segment+0x11c6/0x1830
[ 1467.428466]  ? __sk_receive_skb+0x830/0x830
[ 1467.428956]  udp4_ufo_fragment+0x528/0x720
[ 1467.429405]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1467.429953]  inet_gso_segment+0x4fb/0x11a0
[ 1467.430407]  skb_mac_gso_segment+0x273/0x570
[ 1467.430893]  ? inet_sock_destruct+0x840/0x840
[ 1467.431361]  ? skb_network_protocol+0x650/0x650
[ 1467.431872]  ? skb_crc32c_csum_help+0x80/0x80
[ 1467.432308]  ? lock_acquire+0x197/0x470
[ 1467.432698]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1467.433148]  __skb_gso_segment+0x32d/0x6d0
[ 1467.433590]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1467.434132]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1467.434614]  __dev_queue_xmit+0x87b/0x2710
[ 1467.435065]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1467.435541]  ? mark_held_locks+0x9e/0xe0
[ 1467.435983]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1467.436526]  neigh_connected_output+0x382/0x4d0
[ 1467.437026]  ip_finish_output2+0x6f1/0x21f0
[ 1467.437510]  ? nf_hook_slow+0xfc/0x1e0
[ 1467.437949]  ? ip_frag_next+0x9e0/0x9e0
[ 1467.438397]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1467.447166]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1467.447724]  ? ip_fragment.constprop.0+0x240/0x240
[ 1467.448257]  ? nf_hook+0x510/0x510
[ 1467.448673]  ip_output+0x2f7/0x600
[ 1467.449094]  ip_send_skb+0xdd/0x260
[ 1467.449513]  udp_send_skb+0x6da/0x11d0
[ 1467.449979]  udp_sendmsg+0x139a/0x2160
[ 1467.450444]  ? mark_lock+0xf5/0x2df0
[ 1467.450903]  ? ip_frag_init+0x350/0x350
[ 1467.451367]  ? lock_chain_count+0x20/0x20
[ 1467.451851]  ? udp_setsockopt+0xc0/0xc0
[ 1467.452283]  ? mark_lock+0xf5/0x2df0
[ 1467.452672]  ? lock_acquire+0x197/0x470
[ 1467.453087]  ? lock_chain_count+0x20/0x20
[ 1467.453547]  ? mark_lock+0xf5/0x2df0
[ 1467.453997]  ? mark_lock+0xf5/0x2df0
[ 1467.454416]  ? lock_chain_count+0x20/0x20
[ 1467.454895]  ? __lock_acquire+0xbb1/0x5b00
[ 1467.455370]  ? lock_chain_count+0x20/0x20
[ 1467.455864]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1467.456438]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1467.456873]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1467.457413]  ? mark_lock+0xf5/0x2df0
[ 1467.472070]  ? lock_acquire+0x197/0x470
[ 1467.472455]  ? find_held_lock+0x2c/0x110
[ 1467.472841]  ? __might_fault+0xd3/0x180
[ 1467.473216]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.473619]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.474047]  ? sock_has_perm+0x1ea/0x280
[ 1467.474434]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1467.474922]  ? _copy_from_user+0xfb/0x1b0
[ 1467.475324]  ? __import_iovec+0x458/0x590
[ 1467.475712]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1467.476234]  inet6_sendmsg+0x105/0x140
[ 1467.476603]  ? inet6_compat_ioctl+0x320/0x320
[ 1467.477028]  __sock_sendmsg+0xf2/0x190
[ 1467.477393]  ____sys_sendmsg+0x70d/0x870
[ 1467.477810]  ? sock_write_iter+0x3d0/0x3d0
[ 1467.478207]  ? do_recvmmsg+0x6d0/0x6d0
[ 1467.478577]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.478972]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1467.479495]  ___sys_sendmsg+0xf3/0x170
[ 1467.479866]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1467.480339]  ? __fget_files+0x2cf/0x520
[ 1467.480737]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.481153]  ? find_held_lock+0x2c/0x110
[ 1467.481600]  ? __fget_files+0x2f8/0x520
[ 1467.482011]  ? __fget_light+0xea/0x290
[ 1467.482405]  __sys_sendmsg+0xe5/0x1b0
[ 1467.482767]  ? __sys_sendmsg_sock+0x40/0x40
[ 1467.483176]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1467.483628]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1467.484133]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1467.484609]  ? trace_hardirqs_on+0x5b/0x180
[ 1467.485015]  do_syscall_64+0x33/0x40
[ 1467.485364]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1467.489595] FAULT_INJECTION: forcing a failure.
[ 1467.489595] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1467.500099] RIP: 0033:0x7f9e74c56b19
[ 1467.500120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1467.503115] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1467.508010] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1467.508616] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1467.509225] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1467.509834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1467.510443] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1467.511072] CPU: 1 PID: 8092 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1467.516453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1467.517216] Call Trace:
[ 1467.517476]  dump_stack+0x107/0x167
[ 1467.517815]  should_fail.cold+0x5/0xa
[ 1467.518177]  __alloc_pages_nodemask+0x182/0x600
[ 1467.518613]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.518998]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1467.524194]  ? trace_hardirqs_on+0x5b/0x180
[ 1467.528147]  alloc_pages_current+0x187/0x280
[ 1467.528558]  __vmalloc_node_range+0x60a/0x9e0
[ 1467.528979]  ? do_raw_spin_lock+0x121/0x260
[ 1467.529378]  ? __vmalloc_node+0x110/0x110
[ 1467.529760]  ? rwlock_bug.part.0+0x90/0x90
[ 1467.530153]  ? kasan_unpoison_shadow+0x33/0x50
[ 1467.530576]  ? kernel_read_file+0x6b8/0x790
[ 1467.530985]  __vmalloc_node+0xb5/0x110
[ 1467.531343]  ? kernel_read_file+0x6b8/0x790
21:06:57 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x6)

21:06:57 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

21:06:57 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 13)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:06:57 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:06:57 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d6", @ANYRESDEC])

21:06:57 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:06:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000000)={'bond_slave_0\x00', {0x2, 0x0, @broadcast}})

21:06:57 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 14)

[ 1467.531742]  __vmalloc_node_range+0x2ab/0x9e0
[ 1467.536191]  ? __vmalloc_node+0x110/0x110
[ 1467.536580]  ? kernel_read_file+0x6b8/0x790
[ 1467.536981]  __vmalloc_node+0xb5/0x110
[ 1467.537335]  ? kernel_read_file+0x6b8/0x790
[ 1467.537735]  kernel_read_file+0x6b8/0x790
[ 1467.538157]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1467.538628]  kernel_read_file_from_fd+0xb8/0x110
[ 1467.539115]  __do_sys_finit_module+0xe8/0x180
[ 1467.539572]  ? __do_sys_init_module+0x230/0x230
[ 1467.540052]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1467.544321]  ? __ia32_sys_read+0xb0/0xb0
[ 1467.544737]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1467.545275]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1467.545789]  ? trace_hardirqs_on+0x5b/0x180
[ 1467.546232]  do_syscall_64+0x33/0x40
[ 1467.546612]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1467.547049] RIP: 0033:0x7f71c9c30b19
[ 1467.547358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1467.553021] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1467.553787] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1467.554507] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1467.555226] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1467.555960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1467.556555] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
21:06:57 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d6", @ANYRESDEC])

[ 1467.577995] FAULT_INJECTION: forcing a failure.
[ 1467.577995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1467.580509] CPU: 1 PID: 8088 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1467.581766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1467.583266] Call Trace:
[ 1467.583750]  dump_stack+0x107/0x167
[ 1467.584496]  should_fail.cold+0x5/0xa
[ 1467.585225]  _copy_from_user+0x2e/0x1b0
[ 1467.585953]  __copy_msghdr_from_user+0x91/0x4b0
[ 1467.586821]  ? __ia32_sys_shutdown+0x80/0x80
[ 1467.587622]  sendmsg_copy_msghdr+0xa1/0x160
[ 1467.588176]  ? do_recvmmsg+0x6d0/0x6d0
[ 1467.588538]  ? lock_chain_count+0x20/0x20
[ 1467.588919]  ? __is_insn_slot_addr+0x123/0x290
[ 1467.589333]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.589713]  ? unwind_next_frame+0x13ef/0x1a90
[ 1467.590158]  io_sendmsg+0x62c/0x830
[ 1467.590496]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1467.590934]  ? mark_lock+0xf5/0x2df0
[ 1467.591282]  ? lock_chain_count+0x20/0x20
[ 1467.591660]  ? lock_chain_count+0x20/0x20
[ 1467.592129]  ? stack_trace_save+0x8c/0xc0
[ 1467.592482]  ? stack_trace_consume_entry+0x160/0x160
[ 1467.592972]  ? lock_acquire+0x197/0x470
[ 1467.593339]  ? __lock_acquire+0xbb1/0x5b00
[ 1467.593728]  io_issue_sqe+0x3b3/0x77b0
[ 1467.594119]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1467.594588]  ? lock_chain_count+0x20/0x20
[ 1467.594994]  ? __is_insn_slot_addr+0x14c/0x290
[ 1467.595408]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1467.595904]  ? io_connect+0x610/0x610
[ 1467.596272]  ? lock_acquire+0x197/0x470
[ 1467.596610]  ? find_held_lock+0x2c/0x110
[ 1467.596964]  ? __fget_files+0x2cf/0x520
[ 1467.597301]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.597656]  __io_queue_sqe+0x90/0x9d0
[ 1467.598047]  ? io_issue_sqe+0x77b0/0x77b0
[ 1467.598417]  ? __fget_files+0x2f8/0x520
[ 1467.598766]  io_submit_sqes+0x44aa/0x8610
[ 1467.599195]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1467.599640]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1467.600077]  ? lock_downgrade+0x6d0/0x6d0
[ 1467.600430]  ? find_held_lock+0x2c/0x110
[ 1467.600804]  ? io_submit_sqes+0x8610/0x8610
[ 1467.601193]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1467.601631]  ? wait_for_completion_io+0x270/0x270
[ 1467.602060]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1467.602481]  ? vfs_write+0x354/0xb10
[ 1467.602816]  ? fput_many+0x2f/0x1a0
[ 1467.603127]  ? ksys_write+0x1a9/0x260
[ 1467.603454]  ? __ia32_sys_read+0xb0/0xb0
[ 1467.603829]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1467.604890]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1467.605843]  do_syscall_64+0x33/0x40
[ 1467.606502]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1467.607477] RIP: 0033:0x7f30cfeeeb19
[ 1467.608274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1467.611670] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1467.612450] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1467.613093] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1467.613711] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1467.614334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1467.614950] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:07:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

21:07:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x7)

21:07:10 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:10 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff", @ANYRESDEC])

21:07:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @read_local_amp_assoc={{0x140a, 0x5}, {0xc9, 0x5, 0x3}}}, 0x9)

21:07:10 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 15)

21:07:10 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 14)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1480.300331] FAULT_INJECTION: forcing a failure.
[ 1480.300331] name failslab, interval 1, probability 0, space 0, times 0
[ 1480.301389] CPU: 1 PID: 8112 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1480.301961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1480.302651] Call Trace:
[ 1480.302882]  dump_stack+0x107/0x167
[ 1480.303193]  should_fail.cold+0x5/0xa
[ 1480.303521]  ? sock_kmalloc+0xae/0x100
[ 1480.303855]  should_failslab+0x5/0x20
[ 1480.304193]  __kmalloc+0x72/0x390
[ 1480.304494]  ? __import_iovec+0x458/0x590
[ 1480.304852]  sock_kmalloc+0xae/0x100
[ 1480.305176]  ____sys_sendmsg+0x665/0x870
[ 1480.305525]  ? sock_write_iter+0x3d0/0x3d0
[ 1480.305887]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1480.306272]  ? do_recvmmsg+0x6d0/0x6d0
[ 1480.306606]  ? lock_chain_count+0x20/0x20
[ 1480.306962]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.307324]  __sys_sendmsg_sock+0x26/0x40
[ 1480.307681]  io_sendmsg+0x1e6/0x830
[ 1480.307996]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1480.308394]  ? mark_lock+0xf5/0x2df0
[ 1480.308727]  ? stack_trace_consume_entry+0x160/0x160
[ 1480.309173]  ? lock_acquire+0x197/0x470
[ 1480.309568]  ? __lock_acquire+0xbb1/0x5b00
[ 1480.309975]  io_issue_sqe+0x3b3/0x77b0
[ 1480.310354]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1480.310858]  ? lock_chain_count+0x20/0x20
[ 1480.311257]  ? __is_insn_slot_addr+0x14c/0x290
[ 1480.311699]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1480.312664]  ? io_connect+0x610/0x610
[ 1480.313101]  ? lock_acquire+0x197/0x470
[ 1480.313961]  ? find_held_lock+0x2c/0x110
[ 1480.314842]  ? __fget_files+0x2cf/0x520
[ 1480.315713]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.316633]  __io_queue_sqe+0x90/0x9d0
[ 1480.317480]  ? io_issue_sqe+0x77b0/0x77b0
[ 1480.318373]  ? __fget_files+0x2f8/0x520
[ 1480.319251]  io_submit_sqes+0x44aa/0x8610
[ 1480.320232]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1480.321320]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1480.322366]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.323259]  ? find_held_lock+0x2c/0x110
[ 1480.324163]  ? io_submit_sqes+0x8610/0x8610
[ 1480.325126]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1480.326207]  ? wait_for_completion_io+0x270/0x270
[ 1480.327241]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1480.328260]  ? vfs_write+0x354/0xb10
[ 1480.329054]  ? fput_many+0x2f/0x1a0
[ 1480.329838]  ? ksys_write+0x1a9/0x260
[ 1480.330651]  ? __ia32_sys_read+0xb0/0xb0
[ 1480.331532]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1480.332677]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1480.333796]  do_syscall_64+0x33/0x40
[ 1480.334595]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1480.335705] RIP: 0033:0x7f30cfeeeb19
[ 1480.336522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.340560] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1480.342212] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1480.343761] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1480.345338] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1480.346885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1480.348442] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
[ 1480.348705] FAULT_INJECTION: forcing a failure.
[ 1480.348705] name failslab, interval 1, probability 0, space 0, times 0
[ 1480.351218] CPU: 0 PID: 8119 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1480.351909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1480.352758] Call Trace:
[ 1480.353003]  dump_stack+0x107/0x167
[ 1480.353364]  should_fail.cold+0x5/0xa
[ 1480.353777]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.354181]  ? __alloc_skb+0x6d/0x5b0
[ 1480.354554]  should_failslab+0x5/0x20
[ 1480.354952]  kmem_cache_alloc_node+0x55/0x330
[ 1480.355396]  __alloc_skb+0x6d/0x5b0
[ 1480.355790]  skb_segment+0x9d8/0x3aa0
[ 1480.356145]  ? lock_chain_count+0x20/0x20
[ 1480.356578]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1480.357118]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1480.357634]  __udp_gso_segment+0x11c6/0x1830
[ 1480.358095]  ? __sk_receive_skb+0x830/0x830
[ 1480.358524]  udp4_ufo_fragment+0x528/0x720
[ 1480.358967]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1480.359440]  inet_gso_segment+0x4fb/0x11a0
[ 1480.359907]  skb_mac_gso_segment+0x273/0x570
[ 1480.360321]  ? inet_sock_destruct+0x840/0x840
[ 1480.360821]  ? skb_network_protocol+0x650/0x650
[ 1480.361252]  ? skb_crc32c_csum_help+0x80/0x80
[ 1480.361733]  ? lock_acquire+0x197/0x470
[ 1480.362097]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1480.362509]  __skb_gso_segment+0x32d/0x6d0
[ 1480.362975]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1480.363468]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1480.363957]  __dev_queue_xmit+0x87b/0x2710
[ 1480.364363]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1480.364882]  ? mark_held_locks+0x9e/0xe0
[ 1480.365267]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1480.365813]  neigh_connected_output+0x382/0x4d0
[ 1480.366273]  ip_finish_output2+0x6f1/0x21f0
[ 1480.366725]  ? nf_hook_slow+0xfc/0x1e0
[ 1480.367106]  ? ip_frag_next+0x9e0/0x9e0
[ 1480.367479]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1480.368012]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1480.368486]  ? ip_fragment.constprop.0+0x240/0x240
[ 1480.369009]  ? nf_hook+0x510/0x510
[ 1480.369366]  ip_output+0x2f7/0x600
[ 1480.369749]  ip_send_skb+0xdd/0x260
[ 1480.370092]  udp_send_skb+0x6da/0x11d0
[ 1480.370474]  udp_sendmsg+0x139a/0x2160
[ 1480.370850]  ? mark_lock+0xf5/0x2df0
[ 1480.371174]  ? ip_frag_init+0x350/0x350
[ 1480.371566]  ? lock_chain_count+0x20/0x20
[ 1480.372011]  ? udp_setsockopt+0xc0/0xc0
[ 1480.372432]  ? mark_lock+0xf5/0x2df0
[ 1480.372877]  ? lock_acquire+0x197/0x470
[ 1480.373267]  ? lock_chain_count+0x20/0x20
[ 1480.373741]  ? mark_lock+0xf5/0x2df0
[ 1480.374106]  ? mark_lock+0xf5/0x2df0
[ 1480.374496]  ? lock_chain_count+0x20/0x20
[ 1480.374942]  ? __lock_acquire+0xbb1/0x5b00
[ 1480.375354]  ? lock_chain_count+0x20/0x20
[ 1480.375836]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1480.376360]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1480.376847]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1480.377335]  ? mark_lock+0xf5/0x2df0
21:07:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x1000008}}, '\x00'})
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x3]}, 0x8, 0x100000)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1480.377775]  ? lock_acquire+0x197/0x470
[ 1480.378287]  ? find_held_lock+0x2c/0x110
[ 1480.378743]  ? __might_fault+0xd3/0x180
[ 1480.379120]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.379515]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.379967]  ? sock_has_perm+0x1ea/0x280
[ 1480.380363]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1480.383397]  ? _copy_from_user+0xfb/0x1b0
[ 1480.383860]  ? __import_iovec+0x458/0x590
[ 1480.384273]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1480.384838]  inet6_sendmsg+0x105/0x140
[ 1480.385220]  ? inet6_compat_ioctl+0x320/0x320
[ 1480.385711]  __sock_sendmsg+0xf2/0x190
[ 1480.386108]  ____sys_sendmsg+0x70d/0x870
[ 1480.386497]  ? sock_write_iter+0x3d0/0x3d0
[ 1480.387437]  ? do_recvmmsg+0x6d0/0x6d0
[ 1480.387874]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.388289]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1480.388840]  ___sys_sendmsg+0xf3/0x170
[ 1480.389218]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1480.389724]  ? __fget_files+0x2cf/0x520
[ 1480.390108]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.390514]  ? find_held_lock+0x2c/0x110
[ 1480.390958]  ? __fget_files+0x2f8/0x520
[ 1480.391354]  ? __fget_light+0xea/0x290
[ 1480.391782]  __sys_sendmsg+0xe5/0x1b0
[ 1480.392149]  ? __sys_sendmsg_sock+0x40/0x40
[ 1480.392575]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1480.393070]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1480.393585]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1480.394135]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.394560]  do_syscall_64+0x33/0x40
[ 1480.394961]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1480.395440] RIP: 0033:0x7f9e74c56b19
[ 1480.395863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.397719] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1480.398448] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1480.399191] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1480.399946] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1480.400628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1480.401363] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1480.413104] FAULT_INJECTION: forcing a failure.
[ 1480.413104] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1480.414326] CPU: 0 PID: 8122 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1480.415017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1480.415877] Call Trace:
[ 1480.416132]  dump_stack+0x107/0x167
[ 1480.416479]  should_fail.cold+0x5/0xa
[ 1480.416914]  __alloc_pages_nodemask+0x182/0x600
[ 1480.417349]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.417828]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1480.418400]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.418878]  alloc_pages_current+0x187/0x280
[ 1480.419300]  __vmalloc_node_range+0x60a/0x9e0
[ 1480.419787]  ? do_raw_spin_lock+0x121/0x260
[ 1480.420219]  ? __vmalloc_node+0x110/0x110
[ 1480.420608]  ? rwlock_bug.part.0+0x90/0x90
[ 1480.421070]  ? kasan_unpoison_shadow+0x33/0x50
[ 1480.421506]  ? kernel_read_file+0x6b8/0x790
[ 1480.421989]  __vmalloc_node+0xb5/0x110
[ 1480.422382]  ? kernel_read_file+0x6b8/0x790
[ 1480.422851]  __vmalloc_node_range+0x2ab/0x9e0
[ 1480.423292]  ? __vmalloc_node+0x110/0x110
[ 1480.423740]  ? kernel_read_file+0x6b8/0x790
[ 1480.424168]  __vmalloc_node+0xb5/0x110
[ 1480.424534]  ? kernel_read_file+0x6b8/0x790
[ 1480.424993]  kernel_read_file+0x6b8/0x790
[ 1480.425404]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1480.425911]  kernel_read_file_from_fd+0xb8/0x110
[ 1480.426375]  __do_sys_finit_module+0xe8/0x180
[ 1480.426850]  ? __do_sys_init_module+0x230/0x230
[ 1480.427290]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1480.427828]  ? __ia32_sys_read+0xb0/0xb0
[ 1480.428222]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1480.428777]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1480.429275]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.429781]  do_syscall_64+0x33/0x40
[ 1480.430130]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1480.430626] RIP: 0033:0x7f71c9c30b19
[ 1480.431025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.432886] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1480.433598] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1480.434341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1480.435086] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1480.435825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1480.436506] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:07:10 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {0x0}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x27)

21:07:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x6, 'ip6gre0\x00', {0xfffffffb}, 0x9})

21:07:10 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff", @ANYRESDEC])

21:07:10 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {0x0}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 16)

[ 1480.595088] FAULT_INJECTION: forcing a failure.
[ 1480.595088] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1480.596336] CPU: 0 PID: 8145 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1480.596973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1480.597725] Call Trace:
[ 1480.597959]  dump_stack+0x107/0x167
[ 1480.598268]  should_fail.cold+0x5/0xa
[ 1480.598596]  __alloc_pages_nodemask+0x182/0x600
[ 1480.599050]  ? lock_downgrade+0x6d0/0x6d0
[ 1480.599402]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1480.599991]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.600380]  alloc_pages_current+0x187/0x280
[ 1480.600810]  __vmalloc_node_range+0x60a/0x9e0
[ 1480.601209]  ? do_raw_spin_lock+0x121/0x260
[ 1480.601572]  ? __vmalloc_node+0x110/0x110
[ 1480.601982]  ? rwlock_bug.part.0+0x90/0x90
[ 1480.602344]  ? kasan_unpoison_shadow+0x33/0x50
[ 1480.602778]  ? kernel_read_file+0x6b8/0x790
[ 1480.603156]  __vmalloc_node+0xb5/0x110
[ 1480.603483]  ? kernel_read_file+0x6b8/0x790
[ 1480.603918]  __vmalloc_node_range+0x2ab/0x9e0
[ 1480.604331]  ? __vmalloc_node+0x110/0x110
[ 1480.604736]  ? kernel_read_file+0x6b8/0x790
[ 1480.605113]  __vmalloc_node+0xb5/0x110
[ 1480.605441]  ? kernel_read_file+0x6b8/0x790
[ 1480.605852]  kernel_read_file+0x6b8/0x790
[ 1480.606217]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1480.606607]  kernel_read_file_from_fd+0xb8/0x110
[ 1480.607084]  __do_sys_finit_module+0xe8/0x180
[ 1480.607477]  ? __do_sys_init_module+0x230/0x230
[ 1480.607937]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1480.608388]  ? __ia32_sys_read+0xb0/0xb0
[ 1480.608838]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1480.609290]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1480.610106]  ? trace_hardirqs_on+0x5b/0x180
[ 1480.610487]  do_syscall_64+0x33/0x40
[ 1480.610845]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1480.611274] RIP: 0033:0x7f71c9c30b19
[ 1480.611602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.613268] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1480.614054] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1480.614850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1480.615556] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1480.616293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1480.616977] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:07:23 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

21:07:23 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:23 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 15)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:07:23 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {0x0}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:24 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = dup(r0)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2, {0xb5}}, './file0\x00'})
write$bt_hci(r3, &(0x7f00000000c0)={0x1, @change_conn_link_key={{0x415, 0x2}, {0xc9}}}, 0x6)

21:07:24 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x70)

21:07:24 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff", @ANYRESDEC])

21:07:24 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 17)

[ 1493.789354] FAULT_INJECTION: forcing a failure.
[ 1493.789354] name failslab, interval 1, probability 0, space 0, times 0
[ 1493.791566] CPU: 0 PID: 8160 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1493.792462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1493.793164] Call Trace:
[ 1493.793399]  dump_stack+0x107/0x167
[ 1493.793715]  should_fail.cold+0x5/0xa
[ 1493.794051]  should_failslab+0x5/0x20
[ 1493.794381]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1493.794807]  ? skb_segment+0x9d8/0x3aa0
[ 1493.795157]  __alloc_skb+0xb1/0x5b0
[ 1493.795472]  skb_segment+0x9d8/0x3aa0
[ 1493.795802]  ? lock_chain_count+0x20/0x20
[ 1493.796215]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1493.797300]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1493.798197]  __udp_gso_segment+0x11c6/0x1830
[ 1493.798947]  ? __sk_receive_skb+0x830/0x830
[ 1493.799683]  udp4_ufo_fragment+0x528/0x720
[ 1493.800486]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1493.801350]  inet_gso_segment+0x4fb/0x11a0
[ 1493.802088]  skb_mac_gso_segment+0x273/0x570
[ 1493.802849]  ? inet_sock_destruct+0x840/0x840
[ 1493.803624]  ? skb_network_protocol+0x650/0x650
[ 1493.804497]  ? skb_crc32c_csum_help+0x80/0x80
[ 1493.805259]  ? lock_acquire+0x197/0x470
[ 1493.805928]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1493.806674]  __skb_gso_segment+0x32d/0x6d0
[ 1493.807390]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1493.808245]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1493.808635]  __dev_queue_xmit+0x87b/0x2710
[ 1493.809002]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1493.809398]  ? mark_held_locks+0x9e/0xe0
[ 1493.809747]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1493.810197]  neigh_connected_output+0x382/0x4d0
[ 1493.810604]  ip_finish_output2+0x6f1/0x21f0
[ 1493.810976]  ? nf_hook_slow+0xfc/0x1e0
[ 1493.811315]  ? ip_frag_next+0x9e0/0x9e0
[ 1493.811653]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1493.812087]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1493.813058]  ? ip_fragment.constprop.0+0x240/0x240
[ 1493.813881]  ? nf_hook+0x510/0x510
[ 1493.814485]  ip_output+0x2f7/0x600
[ 1493.815087]  ip_send_skb+0xdd/0x260
[ 1493.815706]  udp_send_skb+0x6da/0x11d0
[ 1493.816437]  udp_sendmsg+0x139a/0x2160
[ 1493.817107]  ? mark_lock+0xf5/0x2df0
[ 1493.817750]  ? ip_frag_init+0x350/0x350
[ 1493.818439]  ? lock_chain_count+0x20/0x20
21:07:24 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {0x0}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1493.819154]  ? udp_setsockopt+0xc0/0xc0
[ 1493.820065]  ? mark_lock+0xf5/0x2df0
[ 1493.820452]  ? lock_acquire+0x197/0x470
[ 1493.820794]  ? lock_chain_count+0x20/0x20
[ 1493.821149]  ? mark_lock+0xf5/0x2df0
[ 1493.821469]  ? mark_lock+0xf5/0x2df0
[ 1493.821787]  ? lock_chain_count+0x20/0x20
[ 1493.822139]  ? __lock_acquire+0xbb1/0x5b00
[ 1493.822503]  ? lock_chain_count+0x20/0x20
[ 1493.822865]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1493.823322]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1493.823680]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1493.824125]  ? mark_lock+0xf5/0x2df0
[ 1493.824522]  ? lock_acquire+0x197/0x470
[ 1493.824860]  ? find_held_lock+0x2c/0x110
[ 1493.825208]  ? __might_fault+0xd3/0x180
[ 1493.825548]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.825904]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.826262]  ? sock_has_perm+0x1ea/0x280
[ 1493.826609]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1493.827051]  ? _copy_from_user+0xfb/0x1b0
[ 1493.827419]  ? __import_iovec+0x458/0x590
[ 1493.827773]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1493.828384]  inet6_sendmsg+0x105/0x140
[ 1493.829233]  ? inet6_compat_ioctl+0x320/0x320
[ 1493.830202]  __sock_sendmsg+0xf2/0x190
[ 1493.831055]  ____sys_sendmsg+0x70d/0x870
[ 1493.831936]  ? sock_write_iter+0x3d0/0x3d0
[ 1493.832883]  ? do_recvmmsg+0x6d0/0x6d0
[ 1493.833717]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.834599]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1493.835729]  ___sys_sendmsg+0xf3/0x170
[ 1493.836596]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1493.837574]  ? __fget_files+0x2cf/0x520
[ 1493.838422]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.839310]  ? find_held_lock+0x2c/0x110
[ 1493.840202]  ? __fget_files+0x2f8/0x520
[ 1493.841081]  ? __fget_light+0xea/0x290
[ 1493.841914]  __sys_sendmsg+0xe5/0x1b0
[ 1493.842728]  ? __sys_sendmsg_sock+0x40/0x40
[ 1493.843645]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1493.844681]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1493.845813]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1493.846911]  ? trace_hardirqs_on+0x5b/0x180
[ 1493.847841]  do_syscall_64+0x33/0x40
[ 1493.848667]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1493.849767] RIP: 0033:0x7f9e74c56b19
[ 1493.850557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1493.854586] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1493.856261] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1493.857800] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
21:07:24 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x300)

[ 1493.859333] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1493.860474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1493.861071] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1493.876264] FAULT_INJECTION: forcing a failure.
[ 1493.876264] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1493.877543] CPU: 1 PID: 8168 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1493.878234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1493.879091] Call Trace:
[ 1493.879380]  dump_stack+0x107/0x167
[ 1493.879756]  should_fail.cold+0x5/0xa
[ 1493.880156]  __alloc_pages_nodemask+0x182/0x600
[ 1493.880638]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.881058]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1493.881667]  ? trace_hardirqs_on+0x5b/0x180
[ 1493.882108]  alloc_pages_current+0x187/0x280
[ 1493.882560]  __vmalloc_node_range+0x60a/0x9e0
[ 1493.883016]  ? do_raw_spin_lock+0x121/0x260
[ 1493.883462]  ? __vmalloc_node+0x110/0x110
[ 1493.883879]  ? rwlock_bug.part.0+0x90/0x90
[ 1493.884303]  ? kasan_unpoison_shadow+0x33/0x50
[ 1493.884696]  ? kernel_read_file+0x6b8/0x790
[ 1493.885065]  __vmalloc_node+0xb5/0x110
[ 1493.885395]  ? kernel_read_file+0x6b8/0x790
[ 1493.885765]  __vmalloc_node_range+0x2ab/0x9e0
[ 1493.886154]  ? __vmalloc_node+0x110/0x110
[ 1493.886512]  ? kernel_read_file+0x6b8/0x790
[ 1493.886879]  __vmalloc_node+0xb5/0x110
[ 1493.887210]  ? kernel_read_file+0x6b8/0x790
[ 1493.887578]  kernel_read_file+0x6b8/0x790
[ 1493.887934]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1493.888357]  kernel_read_file_from_fd+0xb8/0x110
[ 1493.888850]  __do_sys_finit_module+0xe8/0x180
[ 1493.889297]  ? __do_sys_init_module+0x230/0x230
[ 1493.889774]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1493.890276]  ? __ia32_sys_read+0xb0/0xb0
[ 1493.890690]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1493.891223]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1493.891726]  ? trace_hardirqs_on+0x5b/0x180
[ 1493.892179]  do_syscall_64+0x33/0x40
[ 1493.892563]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1493.893114] RIP: 0033:0x7f71c9c30b19
[ 1493.893498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1493.895399] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1493.896193] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1493.896926] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1493.897653] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1493.898387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1493.899130] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1493.904301] FAULT_INJECTION: forcing a failure.
[ 1493.904301] name failslab, interval 1, probability 0, space 0, times 0
[ 1493.905523] CPU: 1 PID: 8156 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1493.906221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1493.907094] Call Trace:
[ 1493.907404]  dump_stack+0x107/0x167
[ 1493.907820]  should_fail.cold+0x5/0xa
[ 1493.908258]  ? create_object.isra.0+0x3a/0xa20
[ 1493.908782]  should_failslab+0x5/0x20
[ 1493.909189]  kmem_cache_alloc+0x5b/0x310
[ 1493.909614]  create_object.isra.0+0x3a/0xa20
[ 1493.910069]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1493.910595]  __kmalloc+0x16e/0x390
[ 1493.910964]  ? __import_iovec+0x458/0x590
[ 1493.911400]  sock_kmalloc+0xae/0x100
[ 1493.912232]  ____sys_sendmsg+0x665/0x870
[ 1493.913102]  ? sock_write_iter+0x3d0/0x3d0
[ 1493.913817]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1493.914575]  ? do_recvmmsg+0x6d0/0x6d0
[ 1493.915232]  ? lock_chain_count+0x20/0x20
[ 1493.915932]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.916777]  __sys_sendmsg_sock+0x26/0x40
[ 1493.917497]  io_sendmsg+0x1e6/0x830
[ 1493.918137]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1493.918912]  ? mark_lock+0xf5/0x2df0
[ 1493.919567]  ? stack_trace_consume_entry+0x160/0x160
[ 1493.920521]  ? lock_acquire+0x197/0x470
[ 1493.921196]  ? __lock_acquire+0xbb1/0x5b00
[ 1493.921912]  io_issue_sqe+0x3b3/0x77b0
[ 1493.922572]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1493.923469]  ? lock_chain_count+0x20/0x20
[ 1493.924173]  ? __is_insn_slot_addr+0x14c/0x290
[ 1493.925184]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1493.926097]  ? io_connect+0x610/0x610
[ 1493.926754]  ? lock_acquire+0x197/0x470
[ 1493.927437]  ? find_held_lock+0x2c/0x110
[ 1493.928139]  ? __fget_files+0x2cf/0x520
[ 1493.928995]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.929695]  __io_queue_sqe+0x90/0x9d0
[ 1493.930351]  ? io_issue_sqe+0x77b0/0x77b0
[ 1493.931052]  ? __fget_files+0x2f8/0x520
[ 1493.931729]  io_submit_sqes+0x44aa/0x8610
[ 1493.932533]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1493.933391]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1493.934232]  ? lock_downgrade+0x6d0/0x6d0
[ 1493.934950]  ? find_held_lock+0x2c/0x110
[ 1493.935650]  ? io_submit_sqes+0x8610/0x8610
[ 1493.936311]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1493.936723]  ? wait_for_completion_io+0x270/0x270
[ 1493.937133]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1493.937526]  ? vfs_write+0x354/0xb10
[ 1493.937842]  ? fput_many+0x2f/0x1a0
[ 1493.938153]  ? ksys_write+0x1a9/0x260
[ 1493.938476]  ? __ia32_sys_read+0xb0/0xb0
[ 1493.938822]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1493.939265]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1493.939705]  do_syscall_64+0x33/0x40
[ 1493.940022]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1493.940951] RIP: 0033:0x7f30cfeeeb19
[ 1493.941596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1493.944511] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1493.945157] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1493.945764] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1493.946366] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1493.946967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1493.947569] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:07:24 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5c", @ANYRESDEC])

21:07:24 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x500)

21:07:24 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 16)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:07:24 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @read_clock_offset={{0x41f, 0x2}}}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = syz_mount_image$nfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x10001, 0x5, &(0x7f00000003c0)=[{&(0x7f0000000140)="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", 0xff}, {&(0x7f0000000240)="9238f7ffb87b1a443595de7733159d7835de80262af25fc35492e1", 0xfffffffffffffe14, 0x70}, {&(0x7f0000000280)="14a6417acbbce93a3495edbeb589185362c2c64f537445bc99cd94ff1aa959ed16c1b48a1d3d952b2e49abb0df03bf61d440f31e15201438ed86bdb7874b57b4b357c82110a21b5de5b01371573ffc18ecfcc78fb1c48cc47f4efc2bb2fa5908000a549b11", 0x65, 0x2}, {&(0x7f0000000300)="7863ab77668971be4f5d21afc217211cab93c03c1cc232e69ee1236da48215505aa45c368579e02c4eb3d0688e0274bf03abc22c57d994d67f068b8b63d2b2f9ae42b5888ebd2e65e7aa47dba40f3bb300a09b61e3d5c63af225e97fb7438d", 0x5f, 0x3}, {&(0x7f0000000380)="fee465a37de7ccb7b4f1887be6c2318dfe2a6b162cbacbd8ae4a99f42c7e2d862315a304943ddb8ecf47cd10e34f2b7384af69", 0x33, 0x2b36b1e7}], 0x406, &(0x7f00000005c0)=ANY=[@ANYBLOB="2c2d5011582f2c242c25252a2c2c2c657569643e", @ANYRESDEC=0xee00, @ANYBLOB=',euid>', @ANYRESDEC, @ANYBLOB="2c6f626a5f75735c8b00000000006e65723e00"/33, @ANYRESDEC=0x0, @ANYBLOB=',euid=', @ANYRESDEC=0x0, @ANYBLOB=',mask=^MAY_READ,smackfsfloor=+%^,fscontext=root,\x00'])
r2 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

21:07:24 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:24 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x600)

[ 1494.047306] FAULT_INJECTION: forcing a failure.
[ 1494.047306] name failslab, interval 1, probability 0, space 0, times 0
[ 1494.048455] CPU: 0 PID: 8188 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1494.049037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1494.049737] Call Trace:
[ 1494.049974]  dump_stack+0x107/0x167
[ 1494.050288]  should_fail.cold+0x5/0xa
[ 1494.050621]  ? create_object.isra.0+0x3a/0xa20
[ 1494.051016]  should_failslab+0x5/0x20
[ 1494.051344]  kmem_cache_alloc+0x5b/0x310
[ 1494.051697]  create_object.isra.0+0x3a/0xa20
[ 1494.052076]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1494.052576]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1494.053092]  ? skb_segment+0x9d8/0x3aa0
[ 1494.053491]  __alloc_skb+0xb1/0x5b0
[ 1494.053862]  skb_segment+0x9d8/0x3aa0
[ 1494.054247]  ? lock_chain_count+0x20/0x20
[ 1494.054685]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1494.055184]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1494.055714]  __udp_gso_segment+0x11c6/0x1830
[ 1494.056140]  ? __sk_receive_skb+0x830/0x830
[ 1494.056549]  udp4_ufo_fragment+0x528/0x720
[ 1494.056912]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1494.057332]  inet_gso_segment+0x4fb/0x11a0
[ 1494.057700]  skb_mac_gso_segment+0x273/0x570
[ 1494.058071]  ? inet_sock_destruct+0x840/0x840
[ 1494.058451]  ? skb_network_protocol+0x650/0x650
[ 1494.058842]  ? skb_crc32c_csum_help+0x80/0x80
[ 1494.059222]  ? lock_acquire+0x197/0x470
[ 1494.059555]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1494.059929]  __skb_gso_segment+0x32d/0x6d0
[ 1494.060332]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1494.060867]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1494.061335]  __dev_queue_xmit+0x87b/0x2710
[ 1494.061773]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1494.062245]  ? mark_held_locks+0x9e/0xe0
[ 1494.062642]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1494.063166]  neigh_connected_output+0x382/0x4d0
[ 1494.063650]  ip_finish_output2+0x6f1/0x21f0
[ 1494.064079]  ? nf_hook_slow+0xfc/0x1e0
[ 1494.064486]  ? ip_frag_next+0x9e0/0x9e0
[ 1494.064882]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1494.065380]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1494.065864]  ? ip_fragment.constprop.0+0x240/0x240
[ 1494.066351]  ? nf_hook+0x510/0x510
[ 1494.066712]  ip_output+0x2f7/0x600
[ 1494.067057]  ip_send_skb+0xdd/0x260
[ 1494.067422]  udp_send_skb+0x6da/0x11d0
[ 1494.067827]  udp_sendmsg+0x139a/0x2160
[ 1494.068231]  ? mark_lock+0xf5/0x2df0
[ 1494.068602]  ? ip_frag_init+0x350/0x350
[ 1494.068994]  ? lock_chain_count+0x20/0x20
[ 1494.069412]  ? udp_setsockopt+0xc0/0xc0
[ 1494.069805]  ? mark_lock+0xf5/0x2df0
[ 1494.070183]  ? lock_acquire+0x197/0x470
[ 1494.070576]  ? lock_chain_count+0x20/0x20
[ 1494.070985]  ? mark_lock+0xf5/0x2df0
[ 1494.071363]  ? mark_lock+0xf5/0x2df0
[ 1494.071738]  ? lock_chain_count+0x20/0x20
[ 1494.072150]  ? __lock_acquire+0xbb1/0x5b00
[ 1494.072595]  ? lock_chain_count+0x20/0x20
[ 1494.073010]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1494.073460]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1494.073815]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1494.074252]  ? mark_lock+0xf5/0x2df0
[ 1494.074570]  ? lock_acquire+0x197/0x470
[ 1494.074907]  ? find_held_lock+0x2c/0x110
[ 1494.075255]  ? __might_fault+0xd3/0x180
[ 1494.075591]  ? lock_downgrade+0x6d0/0x6d0
[ 1494.075944]  ? lock_downgrade+0x6d0/0x6d0
[ 1494.076328]  ? sock_has_perm+0x1ea/0x280
[ 1494.076674]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1494.077157]  ? _copy_from_user+0xfb/0x1b0
[ 1494.077540]  ? __import_iovec+0x458/0x590
[ 1494.078248]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1494.079359]  inet6_sendmsg+0x105/0x140
[ 1494.080229]  ? inet6_compat_ioctl+0x320/0x320
[ 1494.080610]  __sock_sendmsg+0xf2/0x190
[ 1494.080939]  ____sys_sendmsg+0x70d/0x870
[ 1494.081284]  ? sock_write_iter+0x3d0/0x3d0
[ 1494.081638]  ? do_recvmmsg+0x6d0/0x6d0
[ 1494.081969]  ? lock_downgrade+0x6d0/0x6d0
[ 1494.082322]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1494.082765]  ___sys_sendmsg+0xf3/0x170
[ 1494.083096]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1494.083485]  ? __fget_files+0x2cf/0x520
[ 1494.083820]  ? lock_downgrade+0x6d0/0x6d0
[ 1494.084183]  ? find_held_lock+0x2c/0x110
[ 1494.084562]  ? __fget_files+0x2f8/0x520
[ 1494.084904]  ? __fget_light+0xea/0x290
[ 1494.085238]  __sys_sendmsg+0xe5/0x1b0
[ 1494.085559]  ? __sys_sendmsg_sock+0x40/0x40
[ 1494.085923]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1494.086325]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1494.086768]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1494.087202]  ? trace_hardirqs_on+0x5b/0x180
[ 1494.087567]  do_syscall_64+0x33/0x40
[ 1494.087880]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1494.088319] RIP: 0033:0x7f9e74c56b19
[ 1494.088635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1494.090170] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1494.090812] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1494.091410] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1494.092008] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1494.092622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1494.093221] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1494.329666] nfs: Unknown parameter '-PX/'
21:07:38 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

21:07:38 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x3}, 0xfffffffffffffe03)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x10, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
write$bt_hci(r1, &(0x7f0000000000)={0x1, @write_def_link_policy={{0x80f, 0x2}, {0x1000}}}, 0x6)

21:07:38 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 18)

21:07:38 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5c", @ANYRESDEC])

21:07:38 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 17)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:07:38 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x700)

21:07:38 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:38 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1508.524399] FAULT_INJECTION: forcing a failure.
[ 1508.524399] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1508.525445] CPU: 1 PID: 8218 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1508.526031] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1508.526736] Call Trace:
[ 1508.526970]  dump_stack+0x107/0x167
[ 1508.527285]  should_fail.cold+0x5/0xa
[ 1508.527617]  __alloc_pages_nodemask+0x182/0x600
[ 1508.528019]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.528385]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1508.528901]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.529274]  alloc_pages_current+0x187/0x280
[ 1508.529655]  __vmalloc_node_range+0x60a/0x9e0
[ 1508.530044]  ? do_raw_spin_lock+0x121/0x260
[ 1508.530412]  ? __vmalloc_node+0x110/0x110
[ 1508.530765]  ? rwlock_bug.part.0+0x90/0x90
[ 1508.531130]  ? kasan_unpoison_shadow+0x33/0x50
[ 1508.531522]  ? kernel_read_file+0x6b8/0x790
[ 1508.531890]  __vmalloc_node+0xb5/0x110
[ 1508.532221]  ? kernel_read_file+0x6b8/0x790
[ 1508.532611]  __vmalloc_node_range+0x2ab/0x9e0
[ 1508.532999]  ? __vmalloc_node+0x110/0x110
[ 1508.533353]  ? kernel_read_file+0x6b8/0x790
[ 1508.533724]  __vmalloc_node+0xb5/0x110
[ 1508.534060]  ? kernel_read_file+0x6b8/0x790
[ 1508.534425]  kernel_read_file+0x6b8/0x790
[ 1508.534776]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1508.535168]  kernel_read_file_from_fd+0xb8/0x110
[ 1508.535572]  __do_sys_finit_module+0xe8/0x180
[ 1508.535959]  ? __do_sys_init_module+0x230/0x230
[ 1508.536372]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1508.536795]  ? __ia32_sys_read+0xb0/0xb0
[ 1508.537142]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1508.537584]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1508.538016]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.538381]  do_syscall_64+0x33/0x40
[ 1508.538695]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1508.539128] RIP: 0033:0x7f71c9c30b19
[ 1508.539443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.541052] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1508.541699] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1508.542300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1508.542902] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1508.543504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:07:38 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
openat(r0, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r0)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x0, 0x3}, 0xffffffffffffffed)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r1)
openat(r1, &(0x7f0000000000)='./file0\x00', 0xc1, 0x0)

[ 1508.544106] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
[ 1508.579729] FAULT_INJECTION: forcing a failure.
[ 1508.579729] name failslab, interval 1, probability 0, space 0, times 0
[ 1508.582445] CPU: 0 PID: 8219 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1508.583170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1508.583875] Call Trace:
[ 1508.584265]  dump_stack+0x107/0x167
[ 1508.589837]  should_fail.cold+0x5/0xa
[ 1508.590297]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.590674]  ? __alloc_skb+0x6d/0x5b0
[ 1508.591145]  should_failslab+0x5/0x20
[ 1508.591489]  kmem_cache_alloc_node+0x55/0x330
[ 1508.591882]  __alloc_skb+0x6d/0x5b0
[ 1508.593553]  skb_segment+0x9d8/0x3aa0
[ 1508.593970]  ? lock_chain_count+0x20/0x20
[ 1508.594456]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1508.594892]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1508.595465]  __udp_gso_segment+0x11c6/0x1830
[ 1508.595850]  ? __sk_receive_skb+0x830/0x830
[ 1508.597601]  udp4_ufo_fragment+0x528/0x720
[ 1508.597982]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1508.598521]  inet_gso_segment+0x4fb/0x11a0
[ 1508.598902]  skb_mac_gso_segment+0x273/0x570
[ 1508.599402]  ? inet_sock_destruct+0x840/0x840
[ 1508.599793]  ? skb_network_protocol+0x650/0x650
[ 1508.600337]  ? skb_crc32c_csum_help+0x80/0x80
[ 1508.601975]  ? lock_acquire+0x197/0x470
[ 1508.602426]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1508.602816]  __skb_gso_segment+0x32d/0x6d0
[ 1508.603301]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1508.603758]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1508.604290]  __dev_queue_xmit+0x87b/0x2710
[ 1508.605927]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1508.606436]  ? mark_held_locks+0x9e/0xe0
[ 1508.606797]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1508.607366]  neigh_connected_output+0x382/0x4d0
[ 1508.607784]  ip_finish_output2+0x6f1/0x21f0
[ 1508.612216]  ? nf_hook_slow+0xfc/0x1e0
[ 1508.614122]  ? ip_frag_next+0x9e0/0x9e0
[ 1508.614470]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1508.614915]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1508.615499]  ? ip_fragment.constprop.0+0x240/0x240
[ 1508.615923]  ? nf_hook+0x510/0x510
[ 1508.617784]  ip_output+0x2f7/0x600
[ 1508.618215]  ip_send_skb+0xdd/0x260
[ 1508.618537]  udp_send_skb+0x6da/0x11d0
[ 1508.618887]  udp_sendmsg+0x139a/0x2160
[ 1508.619333]  ? mark_lock+0xf5/0x2df0
[ 1508.619660]  ? ip_frag_init+0x350/0x350
[ 1508.620113]  ? lock_chain_count+0x20/0x20
[ 1508.621769]  ? udp_setsockopt+0xc0/0xc0
[ 1508.622215]  ? mark_lock+0xf5/0x2df0
[ 1508.622542]  ? lock_acquire+0x197/0x470
[ 1508.622895]  ? lock_chain_count+0x20/0x20
[ 1508.623382]  ? mark_lock+0xf5/0x2df0
[ 1508.623717]  ? mark_lock+0xf5/0x2df0
[ 1508.624182]  ? lock_chain_count+0x20/0x20
[ 1508.625767]  ? __lock_acquire+0xbb1/0x5b00
[ 1508.626241]  ? lock_chain_count+0x20/0x20
[ 1508.626613]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1508.627205]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1508.627574]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1508.628166]  ? mark_lock+0xf5/0x2df0
[ 1508.629716]  ? lock_acquire+0x197/0x470
[ 1508.630162]  ? find_held_lock+0x2c/0x110
[ 1508.630525]  ? __might_fault+0xd3/0x180
[ 1508.630872]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.631354]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.631718]  ? sock_has_perm+0x1ea/0x280
[ 1508.632208]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1508.633922]  ? _copy_from_user+0xfb/0x1b0
[ 1508.634405]  ? __import_iovec+0x458/0x590
[ 1508.634777]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1508.635345]  inet6_sendmsg+0x105/0x140
[ 1508.635666] FAULT_INJECTION: forcing a failure.
[ 1508.635666] name failslab, interval 1, probability 0, space 0, times 0
[ 1508.641947]  ? inet6_compat_ioctl+0x320/0x320
[ 1508.641962]  __sock_sendmsg+0xf2/0x190
[ 1508.641978]  ____sys_sendmsg+0x70d/0x870
[ 1508.642097]  ? sock_write_iter+0x3d0/0x3d0
[ 1508.644265]  ? do_recvmmsg+0x6d0/0x6d0
[ 1508.645860]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.646307]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1508.646767]  ___sys_sendmsg+0xf3/0x170
[ 1508.647229]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1508.647632]  ? __fget_files+0x2cf/0x520
[ 1508.647979]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.649636]  ? find_held_lock+0x2c/0x110
[ 1508.650091]  ? __fget_files+0x2f8/0x520
[ 1508.650462]  ? __fget_light+0xea/0x290
[ 1508.650808]  __sys_sendmsg+0xe5/0x1b0
[ 1508.651257]  ? __sys_sendmsg_sock+0x40/0x40
[ 1508.651634]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1508.652190]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1508.653852]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1508.654398]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.654777]  do_syscall_64+0x33/0x40
[ 1508.655220]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1508.655663] RIP: 0033:0x7f9e74c56b19
[ 1508.656115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.658414] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1508.659180] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1508.659790] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1508.661990] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1508.662677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1508.663398] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1508.664162] CPU: 1 PID: 8223 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1508.664761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1508.665499] Call Trace:
[ 1508.665730]  dump_stack+0x107/0x167
[ 1508.666042]  should_fail.cold+0x5/0xa
[ 1508.666436]  ? xas_alloc+0x336/0x440
[ 1508.666754]  should_failslab+0x5/0x20
[ 1508.667115]  kmem_cache_alloc+0x5b/0x310
[ 1508.667469]  xas_alloc+0x336/0x440
[ 1508.667769]  xas_create+0x34a/0x10d0
[ 1508.668131]  ? kernel_text_address+0xf2/0x120
[ 1508.668536]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1508.668976]  xas_store+0x8c/0x1c40
[ 1508.669336]  __xa_store+0x164/0x2d0
[ 1508.669644]  ? xa_delete_node+0x280/0x280
[ 1508.669996]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.670430]  xa_store+0x31/0x50
[ 1508.670714]  __io_uring_add_tctx_node+0x1cf/0x520
[ 1508.671166]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 1508.671615]  __do_sys_io_uring_enter+0x1489/0x18c0
[ 1508.672028]  ? lock_downgrade+0x6d0/0x6d0
[ 1508.672953]  ? find_held_lock+0x2c/0x110
[ 1508.673360]  ? io_submit_sqes+0x8610/0x8610
[ 1508.673736]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1508.674217]  ? wait_for_completion_io+0x270/0x270
[ 1508.674623]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1508.675012]  ? vfs_write+0x354/0xb10
[ 1508.675373]  ? fput_many+0x2f/0x1a0
[ 1508.675680]  ? ksys_write+0x1a9/0x260
[ 1508.676000]  ? __ia32_sys_read+0xb0/0xb0
[ 1508.676410]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1508.676847]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1508.677330]  do_syscall_64+0x33/0x40
[ 1508.677643]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1508.678069] RIP: 0033:0x7f30cfeeeb19
[ 1508.678452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.680013] RSP: 002b:00007f30cd443188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1508.680709] RAX: ffffffffffffffda RBX: 00007f30d0002020 RCX: 00007f30cfeeeb19
[ 1508.681355] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1508.681943] RBP: 00007f30cd4431d0 R08: 0000000000000000 R09: 0000000000000000
[ 1508.682600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1508.683237] R13: 00007ffc62bfb71f R14: 00007f30cd443300 R15: 0000000000022000
21:07:38 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 19)

[ 1508.753599] FAULT_INJECTION: forcing a failure.
[ 1508.753599] name failslab, interval 1, probability 0, space 0, times 0
[ 1508.754835] CPU: 0 PID: 8229 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1508.755426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1508.756134] Call Trace:
[ 1508.756851]  dump_stack+0x107/0x167
[ 1508.757267]  should_fail.cold+0x5/0xa
[ 1508.757645]  ? create_object.isra.0+0x3a/0xa20
[ 1508.758145]  should_failslab+0x5/0x20
[ 1508.758515]  kmem_cache_alloc+0x5b/0x310
[ 1508.758914]  create_object.isra.0+0x3a/0xa20
[ 1508.759393]  kmemleak_vmalloc+0x49/0x120
[ 1508.759791]  __vmalloc_node_range+0x574/0x9e0
[ 1508.760291]  ? do_raw_spin_lock+0x121/0x260
[ 1508.760812]  ? __vmalloc_node+0x110/0x110
[ 1508.761272]  ? rwlock_bug.part.0+0x90/0x90
[ 1508.761684]  ? kasan_unpoison_shadow+0x33/0x50
[ 1508.762184]  ? kernel_read_file+0x6b8/0x790
[ 1508.762599]  __vmalloc_node+0xb5/0x110
[ 1508.762974]  ? kernel_read_file+0x6b8/0x790
[ 1508.763464]  __vmalloc_node_range+0x2ab/0x9e0
[ 1508.763907]  ? __vmalloc_node+0x110/0x110
[ 1508.764683]  ? kernel_read_file+0x6b8/0x790
[ 1508.765116]  __vmalloc_node+0xb5/0x110
[ 1508.765453]  ? kernel_read_file+0x6b8/0x790
[ 1508.765828]  kernel_read_file+0x6b8/0x790
[ 1508.766243]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1508.766646]  kernel_read_file_from_fd+0xb8/0x110
[ 1508.767114]  __do_sys_finit_module+0xe8/0x180
[ 1508.767505]  ? __do_sys_init_module+0x230/0x230
[ 1508.767905]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1508.768447]  ? __ia32_sys_read+0xb0/0xb0
[ 1508.768940]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1508.769509]  ? syscall_enter_from_user_mode+0x1d/0x50
21:07:39 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1508.770054]  ? trace_hardirqs_on+0x5b/0x180
[ 1508.770830]  do_syscall_64+0x33/0x40
[ 1508.771301]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1508.771859] RIP: 0033:0x7f71c9c30b19
[ 1508.772644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.774462] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1508.775172] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1508.775792] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1508.776487] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1508.777249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1508.777858] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:07:39 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xc4f)

[ 1508.801846] Module has invalid ELF structures
21:07:52 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

21:07:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r3, 0x8000000)
openat(r3, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r3, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r3)
write$P9_RWSTAT(r3, &(0x7f00000000c0)={0x7, 0x7f, 0x1}, 0x7)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
write$bt_hci(r1, &(0x7f0000000080)={0x1, @le_create_conn={{0x200d, 0x19}, {0x4, 0x1, 0xe3, 0x6, @any, 0x0, 0x86, 0x8, 0x9e9, 0x3, 0xf60e, 0x8000}}}, 0x1d)

21:07:52 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:52 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 20)

21:07:52 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:52 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5c", @ANYRESDEC])

21:07:52 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 18)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:07:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x2000)

[ 1522.151238] FAULT_INJECTION: forcing a failure.
[ 1522.151238] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1522.152356] CPU: 1 PID: 8246 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1522.152942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.153675] Call Trace:
[ 1522.153906]  dump_stack+0x107/0x167
[ 1522.154362]  should_fail.cold+0x5/0xa
[ 1522.154690]  __alloc_pages_nodemask+0x182/0x600
[ 1522.155154]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1522.155662]  ? do_raw_spin_lock+0x121/0x260
[ 1522.156027]  ? kasan_unpoison_shadow+0x33/0x50
[ 1522.156547]  alloc_pages_current+0x187/0x280
[ 1522.156926]  __vmalloc_node_range+0x60a/0x9e0
[ 1522.157309]  ? __vmalloc_node+0x110/0x110
[ 1522.157661]  ? kernel_read_file+0x6b8/0x790
[ 1522.158117]  __vmalloc_node+0xb5/0x110
[ 1522.158444]  ? kernel_read_file+0x6b8/0x790
[ 1522.158811]  kernel_read_file+0x6b8/0x790
[ 1522.159169]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1522.159562]  kernel_read_file_from_fd+0xb8/0x110
[ 1522.159972]  __do_sys_finit_module+0xe8/0x180
[ 1522.160355]  ? __do_sys_init_module+0x230/0x230
[ 1522.160869]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1522.161294]  ? __ia32_sys_read+0xb0/0xb0
[ 1522.161643]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.162090]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.162525]  ? trace_hardirqs_on+0x5b/0x180
[ 1522.162891]  do_syscall_64+0x33/0x40
[ 1522.163267]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.163713] RIP: 0033:0x7f71c9c30b19
[ 1522.164033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.165574] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1522.166214] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1522.166807] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1522.167403] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.168005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.168707] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1522.174853] FAULT_INJECTION: forcing a failure.
[ 1522.174853] name failslab, interval 1, probability 0, space 0, times 0
[ 1522.175832] CPU: 1 PID: 8254 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1522.176406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.177204] Call Trace:
[ 1522.177429]  dump_stack+0x107/0x167
[ 1522.177737]  should_fail.cold+0x5/0xa
[ 1522.178059]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1522.178498]  ? create_object.isra.0+0x3a/0xa20
[ 1522.178888]  should_failslab+0x5/0x20
[ 1522.179209]  kmem_cache_alloc+0x5b/0x310
[ 1522.179550]  ? mark_held_locks+0x9e/0xe0
[ 1522.179900]  create_object.isra.0+0x3a/0xa20
[ 1522.180270]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1522.180808]  kmem_cache_alloc_node+0x169/0x330
[ 1522.181200]  __alloc_skb+0x6d/0x5b0
[ 1522.181512]  skb_segment+0x9d8/0x3aa0
[ 1522.181832]  ? lock_chain_count+0x20/0x20
[ 1522.182208]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1522.182628]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.183076]  __udp_gso_segment+0x11c6/0x1830
[ 1522.183444]  ? __sk_receive_skb+0x830/0x830
[ 1522.183812]  udp4_ufo_fragment+0x528/0x720
[ 1522.184179]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1522.184706]  inet_gso_segment+0x4fb/0x11a0
[ 1522.185073]  skb_mac_gso_segment+0x273/0x570
[ 1522.185443]  ? inet_sock_destruct+0x840/0x840
[ 1522.185820]  ? skb_network_protocol+0x650/0x650
[ 1522.186210]  ? skb_crc32c_csum_help+0x80/0x80
[ 1522.186588]  ? lock_acquire+0x197/0x470
[ 1522.186921]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1522.187295]  __skb_gso_segment+0x32d/0x6d0
[ 1522.187655]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1522.188100]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1522.188592]  __dev_queue_xmit+0x87b/0x2710
[ 1522.188963]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1522.189352]  ? mark_held_locks+0x9e/0xe0
[ 1522.189697]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1522.190142]  neigh_connected_output+0x382/0x4d0
[ 1522.190543]  ip_finish_output2+0x6f1/0x21f0
[ 1522.190909]  ? nf_hook_slow+0xfc/0x1e0
[ 1522.191239]  ? ip_frag_next+0x9e0/0x9e0
[ 1522.191574]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1522.192007]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1522.192420]  ? ip_fragment.constprop.0+0x240/0x240
[ 1522.192951]  ? nf_hook+0x510/0x510
[ 1522.193271]  ip_output+0x2f7/0x600
[ 1522.193587]  ip_send_skb+0xdd/0x260
[ 1522.193908]  udp_send_skb+0x6da/0x11d0
[ 1522.194258]  udp_sendmsg+0x139a/0x2160
[ 1522.194595]  ? mark_lock+0xf5/0x2df0
[ 1522.194921]  ? ip_frag_init+0x350/0x350
[ 1522.195268]  ? lock_chain_count+0x20/0x20
[ 1522.195632]  ? udp_setsockopt+0xc0/0xc0
[ 1522.195977]  ? mark_lock+0xf5/0x2df0
[ 1522.196292]  ? lock_acquire+0x197/0x470
[ 1522.196731]  ? lock_chain_count+0x20/0x20
[ 1522.197082]  ? mark_lock+0xf5/0x2df0
[ 1522.197398]  ? mark_lock+0xf5/0x2df0
[ 1522.197711]  ? lock_chain_count+0x20/0x20
[ 1522.198059]  ? __lock_acquire+0xbb1/0x5b00
[ 1522.198416]  ? lock_chain_count+0x20/0x20
[ 1522.198771]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.199219]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1522.199569]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1522.200011]  ? mark_lock+0xf5/0x2df0
[ 1522.200328]  ? lock_acquire+0x197/0x470
[ 1522.200770]  ? find_held_lock+0x2c/0x110
[ 1522.201117]  ? __might_fault+0xd3/0x180
[ 1522.201452]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.201808]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.202159]  ? sock_has_perm+0x1ea/0x280
[ 1522.202500]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1522.202935]  ? _copy_from_user+0xfb/0x1b0
[ 1522.203289]  ? __import_iovec+0x458/0x590
[ 1522.203636]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1522.204076]  inet6_sendmsg+0x105/0x140
[ 1522.204402]  ? inet6_compat_ioctl+0x320/0x320
[ 1522.208279]  __sock_sendmsg+0xf2/0x190
[ 1522.208626]  ____sys_sendmsg+0x70d/0x870
[ 1522.208971]  ? sock_write_iter+0x3d0/0x3d0
[ 1522.209322]  ? do_recvmmsg+0x6d0/0x6d0
[ 1522.209652]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.210004]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.210447]  ___sys_sendmsg+0xf3/0x170
[ 1522.210777]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1522.211168]  ? __fget_files+0x2cf/0x520
[ 1522.211504]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.211863]  ? find_held_lock+0x2c/0x110
[ 1522.212226]  ? __fget_files+0x2f8/0x520
[ 1522.212676]  ? __fget_light+0xea/0x290
[ 1522.213013]  __sys_sendmsg+0xe5/0x1b0
[ 1522.213333]  ? __sys_sendmsg_sock+0x40/0x40
[ 1522.213694]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1522.214095]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.214531]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.214957]  ? trace_hardirqs_on+0x5b/0x180
[ 1522.215319]  do_syscall_64+0x33/0x40
[ 1522.215630]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.216062] RIP: 0033:0x7f9e74c56b19
[ 1522.216375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.217988] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1522.218618] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1522.219206] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1522.219795] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.220385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.221082] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1522.245478] FAULT_INJECTION: forcing a failure.
[ 1522.245478] name failslab, interval 1, probability 0, space 0, times 0
[ 1522.246869] CPU: 0 PID: 8251 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1522.247447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.248140] Call Trace:
[ 1522.248369]  dump_stack+0x107/0x167
[ 1522.248716]  should_fail.cold+0x5/0xa
[ 1522.249045]  ? tcp_sendmsg_locked+0x1eae/0x2f20
[ 1522.249438]  should_failslab+0x5/0x20
[ 1522.249759]  kmem_cache_alloc_trace+0x55/0x320
[ 1522.250144]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.250585]  tcp_sendmsg_locked+0x1eae/0x2f20
[ 1522.250968]  ? tcp_sendmsg+0x1d/0x50
[ 1522.251286]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.251634]  ? tcp_sendpage+0xd0/0xd0
[ 1522.251957]  ? mark_held_locks+0x9e/0xe0
[ 1522.252302]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.252770]  ? __local_bh_enable_ip+0x9d/0x100
[ 1522.253153]  ? tcp_sendmsg_locked+0x2f20/0x2f20
[ 1522.253543]  tcp_sendmsg+0x2b/0x50
[ 1522.253843]  inet_sendmsg+0xb5/0x140
[ 1522.254156]  ? inet_send_prepare+0x540/0x540
[ 1522.254525]  __sock_sendmsg+0x13c/0x190
[ 1522.254861]  ____sys_sendmsg+0x70d/0x870
[ 1522.255204]  ? sock_write_iter+0x3d0/0x3d0
[ 1522.255559]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1522.255935]  ? do_recvmmsg+0x6d0/0x6d0
[ 1522.256261]  ? lock_chain_count+0x20/0x20
[ 1522.256641]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.256996]  __sys_sendmsg_sock+0x26/0x40
[ 1522.257346]  io_sendmsg+0x1e6/0x830
[ 1522.257654]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1522.258037]  ? mark_lock+0xf5/0x2df0
[ 1522.258364]  ? stack_trace_consume_entry+0x160/0x160
[ 1522.258796]  ? lock_acquire+0x197/0x470
[ 1522.259136]  ? __lock_acquire+0xbb1/0x5b00
[ 1522.259495]  io_issue_sqe+0x3b3/0x77b0
[ 1522.259829]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.260267]  ? lock_chain_count+0x20/0x20
[ 1522.260647]  ? __is_insn_slot_addr+0x14c/0x290
[ 1522.261034]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.261472]  ? io_connect+0x610/0x610
[ 1522.261798]  ? lock_acquire+0x197/0x470
[ 1522.262133]  ? find_held_lock+0x2c/0x110
[ 1522.262480]  ? __fget_files+0x2cf/0x520
[ 1522.262815]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.263168]  __io_queue_sqe+0x90/0x9d0
[ 1522.263500]  ? io_issue_sqe+0x77b0/0x77b0
[ 1522.263847]  ? __fget_files+0x2f8/0x520
[ 1522.264193]  io_submit_sqes+0x44aa/0x8610
[ 1522.264610]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1522.265031]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1522.265438]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.265786]  ? find_held_lock+0x2c/0x110
[ 1522.266133]  ? io_submit_sqes+0x8610/0x8610
[ 1522.266503]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1522.266912]  ? wait_for_completion_io+0x270/0x270
[ 1522.267320]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1522.267710]  ? vfs_write+0x354/0xb10
[ 1522.268031]  ? fput_many+0x2f/0x1a0
[ 1522.268339]  ? ksys_write+0x1a9/0x260
[ 1522.268694]  ? __ia32_sys_read+0xb0/0xb0
[ 1522.269040]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.269479]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.269913]  do_syscall_64+0x33/0x40
[ 1522.270228]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.270657] RIP: 0033:0x7f30cfeeeb19
[ 1522.270979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.272532] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1522.273171] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1522.273767] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1522.274490] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.275087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.275682] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:07:52 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53", @ANYRESDEC])

21:07:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x2700)

21:07:52 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:52 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 21)

21:07:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x3}, 0x6)

21:07:52 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 19)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1522.345204] FAULT_INJECTION: forcing a failure.
[ 1522.345204] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1522.346359] CPU: 0 PID: 8270 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1522.346947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.347654] Call Trace:
[ 1522.347888]  dump_stack+0x107/0x167
[ 1522.348206]  should_fail.cold+0x5/0xa
[ 1522.348581]  __alloc_pages_nodemask+0x182/0x600
[ 1522.348980]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1522.349493]  ? do_raw_spin_lock+0x121/0x260
[ 1522.349869]  ? kasan_unpoison_shadow+0x33/0x50
[ 1522.350270]  alloc_pages_current+0x187/0x280
[ 1522.350654]  __vmalloc_node_range+0x60a/0x9e0
[ 1522.351050]  ? __vmalloc_node+0x110/0x110
[ 1522.351408]  ? kernel_read_file+0x6b8/0x790
[ 1522.351777]  __vmalloc_node+0xb5/0x110
[ 1522.352109]  ? kernel_read_file+0x6b8/0x790
[ 1522.352505]  kernel_read_file+0x6b8/0x790
[ 1522.352877]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1522.353287]  kernel_read_file_from_fd+0xb8/0x110
[ 1522.353705]  __do_sys_finit_module+0xe8/0x180
[ 1522.354095]  ? __do_sys_init_module+0x230/0x230
[ 1522.354313] FAULT_INJECTION: forcing a failure.
[ 1522.354313] name failslab, interval 1, probability 0, space 0, times 0
[ 1522.354492]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1522.354524]  ? __ia32_sys_read+0xb0/0xb0
[ 1522.356216]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.356704]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.357144]  ? trace_hardirqs_on+0x5b/0x180
[ 1522.357512]  do_syscall_64+0x33/0x40
[ 1522.357833]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.358271] RIP: 0033:0x7f71c9c30b19
[ 1522.358705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.360245] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1522.360924] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1522.361523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1522.362122] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.362720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.363319] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1522.363936] CPU: 1 PID: 8273 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1522.364533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.365227] Call Trace:
[ 1522.365455]  dump_stack+0x107/0x167
[ 1522.365765]  should_fail.cold+0x5/0xa
[ 1522.366095]  should_failslab+0x5/0x20
[ 1522.366420]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1522.366840]  ? skb_segment+0x9d8/0x3aa0
[ 1522.367182]  __alloc_skb+0xb1/0x5b0
[ 1522.367494]  skb_segment+0x9d8/0x3aa0
[ 1522.367815]  ? lock_chain_count+0x20/0x20
[ 1522.368190]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1522.368625]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.369074]  __udp_gso_segment+0x11c6/0x1830
[ 1522.369442]  ? __sk_receive_skb+0x830/0x830
[ 1522.369813]  udp4_ufo_fragment+0x528/0x720
[ 1522.370178]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1522.370596]  inet_gso_segment+0x4fb/0x11a0
[ 1522.370960]  skb_mac_gso_segment+0x273/0x570
[ 1522.371329]  ? inet_sock_destruct+0x840/0x840
[ 1522.371705]  ? skb_network_protocol+0x650/0x650
[ 1522.372097]  ? skb_crc32c_csum_help+0x80/0x80
[ 1522.372483]  ? lock_acquire+0x197/0x470
[ 1522.372820]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1522.373195]  __skb_gso_segment+0x32d/0x6d0
[ 1522.373555]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1522.373996]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1522.374380]  __dev_queue_xmit+0x87b/0x2710
[ 1522.374742]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1522.375139]  ? mark_held_locks+0x9e/0xe0
[ 1522.375484]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1522.375929]  neigh_connected_output+0x382/0x4d0
[ 1522.376328]  ip_finish_output2+0x6f1/0x21f0
[ 1522.376702]  ? nf_hook_slow+0xfc/0x1e0
[ 1522.377043]  ? ip_frag_next+0x9e0/0x9e0
[ 1522.377389]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1522.377814]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1522.378235]  ? ip_fragment.constprop.0+0x240/0x240
[ 1522.378643]  ? nf_hook+0x510/0x510
[ 1522.378953]  ip_output+0x2f7/0x600
[ 1522.379258]  ip_send_skb+0xdd/0x260
[ 1522.379568]  udp_send_skb+0x6da/0x11d0
[ 1522.379905]  udp_sendmsg+0x139a/0x2160
[ 1522.380233]  ? mark_lock+0xf5/0x2df0
[ 1522.380561]  ? ip_frag_init+0x350/0x350
[ 1522.380898]  ? lock_chain_count+0x20/0x20
[ 1522.381251]  ? udp_setsockopt+0xc0/0xc0
[ 1522.381586]  ? mark_lock+0xf5/0x2df0
[ 1522.381901]  ? lock_acquire+0x197/0x470
[ 1522.382240]  ? lock_chain_count+0x20/0x20
[ 1522.382591]  ? mark_lock+0xf5/0x2df0
[ 1522.382908]  ? mark_lock+0xf5/0x2df0
[ 1522.383225]  ? lock_chain_count+0x20/0x20
[ 1522.383574]  ? __lock_acquire+0xbb1/0x5b00
[ 1522.383933]  ? lock_chain_count+0x20/0x20
[ 1522.384292]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.384756]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1522.385112]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1522.385551]  ? mark_lock+0xf5/0x2df0
[ 1522.385869]  ? lock_acquire+0x197/0x470
[ 1522.386210]  ? find_held_lock+0x2c/0x110
[ 1522.386558]  ? __might_fault+0xd3/0x180
[ 1522.386893]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.387245]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.387597]  ? sock_has_perm+0x1ea/0x280
[ 1522.387943]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1522.388384]  ? _copy_from_user+0xfb/0x1b0
[ 1522.388758]  ? __import_iovec+0x458/0x590
[ 1522.389120]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1522.389568]  inet6_sendmsg+0x105/0x140
[ 1522.389908]  ? inet6_compat_ioctl+0x320/0x320
[ 1522.390294]  __sock_sendmsg+0xf2/0x190
[ 1522.390623]  ____sys_sendmsg+0x70d/0x870
[ 1522.390971]  ? sock_write_iter+0x3d0/0x3d0
[ 1522.391325]  ? do_recvmmsg+0x6d0/0x6d0
[ 1522.391657]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.392011]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.392460]  ___sys_sendmsg+0xf3/0x170
[ 1522.392795]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1522.393185]  ? __fget_files+0x2cf/0x520
[ 1522.393520]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.393871]  ? find_held_lock+0x2c/0x110
[ 1522.394222]  ? __fget_files+0x2f8/0x520
[ 1522.394563]  ? __fget_light+0xea/0x290
[ 1522.394899]  __sys_sendmsg+0xe5/0x1b0
[ 1522.395222]  ? __sys_sendmsg_sock+0x40/0x40
[ 1522.395585]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1522.395990]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.396439]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.396878]  ? trace_hardirqs_on+0x5b/0x180
[ 1522.397249]  do_syscall_64+0x33/0x40
[ 1522.397565]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.397997] RIP: 0033:0x7f9e74c56b19
[ 1522.398311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.399839] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1522.400489] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1522.401088] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1522.401680] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.402276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.402872] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:07:52 executing program 4:
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x8c, 0x0, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "d87bc79cca8b898cf35303bf3a"}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY={0x38, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT_TYPES={0x14, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "13c3ba4d40"}, @NL80211_KEY_IDX={0x5, 0x2, 0x5}, @NL80211_KEY_DEFAULT_MGMT={0x4}]}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000040}, 0x20000000)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)={0xd8, 0x17, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_FLOWTABLE_HANDLE={0x0, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0x30, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x4}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xe59}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7}]}, @NFTA_FLOWTABLE_HOOK={0x8c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0xffffffdc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan1\x00'}, {0x14, 0x1, 'ipvlan1\x00'}, {0x14, 0x1, 'ip6gretap0\x00'}, {0x14, 0x1, 'dummy0\x00'}, {0x14, 0x1, 'batadv0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'team_slave_1\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x20008004}, 0x4001)

21:07:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x4f0c)

[ 1522.594104] FAULT_INJECTION: forcing a failure.
[ 1522.594104] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1522.605528] CPU: 1 PID: 8287 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1522.606177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.606965] Call Trace:
[ 1522.607223]  dump_stack+0x107/0x167
[ 1522.607572]  should_fail.cold+0x5/0xa
[ 1522.607947]  __alloc_pages_nodemask+0x182/0x600
21:07:52 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

21:07:52 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53", @ANYRESDEC])

21:07:52 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {0x0}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:07:52 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 22)

21:07:52 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:07:52 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:07:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x7000)

[ 1522.608390]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1522.608947]  ? do_raw_spin_lock+0x121/0x260
[ 1522.609317]  ? kasan_unpoison_shadow+0x33/0x50
[ 1522.609710]  alloc_pages_current+0x187/0x280
[ 1522.610090]  __vmalloc_node_range+0x60a/0x9e0
[ 1522.610476]  ? __vmalloc_node+0x110/0x110
[ 1522.610832]  ? kernel_read_file+0x6b8/0x790
[ 1522.620676]  __vmalloc_node+0xb5/0x110
[ 1522.621009]  ? kernel_read_file+0x6b8/0x790
[ 1522.621378]  kernel_read_file+0x6b8/0x790
[ 1522.621733]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1522.622128]  kernel_read_file_from_fd+0xb8/0x110
[ 1522.622294] FAULT_INJECTION: forcing a failure.
[ 1522.622294] name failslab, interval 1, probability 0, space 0, times 0
[ 1522.622550]  __do_sys_finit_module+0xe8/0x180
[ 1522.623934]  ? __do_sys_init_module+0x230/0x230
[ 1522.624345]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1522.624797]  ? __ia32_sys_read+0xb0/0xb0
[ 1522.625146]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.625589]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.626054]  ? trace_hardirqs_on+0x5b/0x180
[ 1522.626450]  do_syscall_64+0x33/0x40
[ 1522.626790]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.627264] RIP: 0033:0x7f71c9c30b19
[ 1522.627608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.629257] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1522.629907] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1522.630558] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1522.631215] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.631873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.637009] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1522.637687] CPU: 0 PID: 8296 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1522.638364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1522.639146] Call Trace:
[ 1522.639420]  dump_stack+0x107/0x167
[ 1522.639787]  should_fail.cold+0x5/0xa
[ 1522.640168]  ? create_object.isra.0+0x3a/0xa20
[ 1522.640607]  should_failslab+0x5/0x20
[ 1522.640968]  kmem_cache_alloc+0x5b/0x310
[ 1522.641338]  ? __lock_acquire+0x1657/0x5b00
[ 1522.641730]  create_object.isra.0+0x3a/0xa20
[ 1522.642135]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1522.642632]  kmem_cache_alloc_trace+0x151/0x320
[ 1522.643107]  tcp_sendmsg_locked+0x1eae/0x2f20
[ 1522.643549]  ? tcp_sendmsg+0x1d/0x50
[ 1522.643930]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.644340]  ? tcp_sendpage+0xd0/0xd0
[ 1522.644728]  ? mark_held_locks+0x9e/0xe0
[ 1522.645135]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.645650]  ? __local_bh_enable_ip+0x9d/0x100
[ 1522.646089]  ? tcp_sendmsg_locked+0x2f20/0x2f20
[ 1522.646509]  tcp_sendmsg+0x2b/0x50
[ 1522.646829]  inet_sendmsg+0xb5/0x140
[ 1522.647162]  ? inet_send_prepare+0x540/0x540
[ 1522.647556]  __sock_sendmsg+0x13c/0x190
[ 1522.647938]  ____sys_sendmsg+0x70d/0x870
[ 1522.648343]  ? sock_write_iter+0x3d0/0x3d0
[ 1522.648931]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1522.649367]  ? do_recvmmsg+0x6d0/0x6d0
[ 1522.649739]  ? lock_chain_count+0x20/0x20
[ 1522.650139]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.650555]  __sys_sendmsg_sock+0x26/0x40
[ 1522.650921]  io_sendmsg+0x1e6/0x830
[ 1522.651257]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1522.651664]  ? mark_lock+0xf5/0x2df0
[ 1522.652012]  ? stack_trace_consume_entry+0x160/0x160
[ 1522.652473]  ? lock_acquire+0x197/0x470
[ 1522.652812]  ? __lock_acquire+0xbb1/0x5b00
[ 1522.653480]  io_issue_sqe+0x3b3/0x77b0
[ 1522.654199]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.655163]  ? lock_chain_count+0x20/0x20
[ 1522.655921]  ? __is_insn_slot_addr+0x14c/0x290
[ 1522.656901]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1522.657864]  ? io_connect+0x610/0x610
[ 1522.658575]  ? lock_acquire+0x197/0x470
[ 1522.659304]  ? find_held_lock+0x2c/0x110
[ 1522.660070]  ? __fget_files+0x2cf/0x520
[ 1522.660897]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.661611]  __io_queue_sqe+0x90/0x9d0
[ 1522.662287]  ? io_issue_sqe+0x77b0/0x77b0
[ 1522.662987]  ? __fget_files+0x2f8/0x520
[ 1522.663679]  io_submit_sqes+0x44aa/0x8610
[ 1522.664392]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1522.665463]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1522.666288]  ? lock_downgrade+0x6d0/0x6d0
[ 1522.666991]  ? find_held_lock+0x2c/0x110
[ 1522.667676]  ? io_submit_sqes+0x8610/0x8610
[ 1522.668410]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1522.668843]  ? wait_for_completion_io+0x270/0x270
[ 1522.669252]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1522.669641]  ? vfs_write+0x354/0xb10
[ 1522.669958]  ? fput_many+0x2f/0x1a0
[ 1522.670266]  ? ksys_write+0x1a9/0x260
[ 1522.670586]  ? __ia32_sys_read+0xb0/0xb0
[ 1522.670933]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1522.671393]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1522.671826]  do_syscall_64+0x33/0x40
[ 1522.672143]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1522.672612] RIP: 0033:0x7f30cfeeeb19
[ 1522.672930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1522.674451] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1522.675089] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1522.675682] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1522.676276] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1522.676905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1522.677499] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:07:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x10c000)

21:08:05 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 20)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:08:05 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

21:08:05 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 23)

21:08:05 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:05 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x200000)

21:08:05 executing program 4:
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x7fff, 0x1}, 0x6)

21:08:05 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {0x0}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:05 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53", @ANYRESDEC])

[ 1535.420330] FAULT_INJECTION: forcing a failure.
[ 1535.420330] name failslab, interval 1, probability 0, space 0, times 0
[ 1535.421499] CPU: 1 PID: 8312 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1535.422148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1535.422926] Call Trace:
[ 1535.423173]  dump_stack+0x107/0x167
[ 1535.423503]  should_fail.cold+0x5/0xa
[ 1535.423903]  ? create_object.isra.0+0x3a/0xa20
[ 1535.424316]  should_failslab+0x5/0x20
[ 1535.424739]  kmem_cache_alloc+0x5b/0x310
[ 1535.425115]  create_object.isra.0+0x3a/0xa20
[ 1535.425511]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1535.426043]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1535.426498]  ? skb_segment+0x9d8/0x3aa0
[ 1535.426912]  __alloc_skb+0xb1/0x5b0
[ 1535.427256]  skb_segment+0x9d8/0x3aa0
[ 1535.427597]  ? lock_chain_count+0x20/0x20
[ 1535.428062]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1535.428516]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1535.429078]  __udp_gso_segment+0x11c6/0x1830
[ 1535.429473]  ? __sk_receive_skb+0x830/0x830
[ 1535.429919]  udp4_ufo_fragment+0x528/0x720
[ 1535.430304]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1535.430825]  inet_gso_segment+0x4fb/0x11a0
[ 1535.431221]  skb_mac_gso_segment+0x273/0x570
[ 1535.431614]  ? inet_sock_destruct+0x840/0x840
[ 1535.432066]  ? skb_network_protocol+0x650/0x650
[ 1535.432483]  ? skb_crc32c_csum_help+0x80/0x80
[ 1535.432953]  ? lock_acquire+0x197/0x470
[ 1535.433312]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1535.433757]  __skb_gso_segment+0x32d/0x6d0
[ 1535.434149]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1535.439962]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1535.441567]  __dev_queue_xmit+0x87b/0x2710
[ 1535.442878]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1535.444169]  ? mark_held_locks+0x9e/0xe0
[ 1535.445164]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1535.446381]  neigh_connected_output+0x382/0x4d0
[ 1535.447478]  ip_finish_output2+0x6f1/0x21f0
[ 1535.448505]  ? nf_hook_slow+0xfc/0x1e0
[ 1535.449418]  ? ip_frag_next+0x9e0/0x9e0
[ 1535.450352]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1535.450942]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1535.452119]  ? ip_fragment.constprop.0+0x240/0x240
[ 1535.452681]  ? nf_hook+0x510/0x510
[ 1535.453094]  ip_output+0x2f7/0x600
[ 1535.453488]  ip_send_skb+0xdd/0x260
[ 1535.454363]  udp_send_skb+0x6da/0x11d0
[ 1535.454838]  udp_sendmsg+0x139a/0x2160
[ 1535.455755]  ? mark_lock+0xf5/0x2df0
[ 1535.456157]  ? ip_frag_init+0x350/0x350
[ 1535.457251]  ? lock_chain_count+0x20/0x20
[ 1535.457723]  ? udp_setsockopt+0xc0/0xc0
[ 1535.458237]  ? mark_lock+0xf5/0x2df0
[ 1535.458980]  ? lock_acquire+0x197/0x470
[ 1535.459471]  ? lock_chain_count+0x20/0x20
[ 1535.460505]  ? mark_lock+0xf5/0x2df0
[ 1535.460979]  ? mark_lock+0xf5/0x2df0
[ 1535.461441]  ? lock_chain_count+0x20/0x20
[ 1535.461951]  ? __lock_acquire+0xbb1/0x5b00
[ 1535.462732]  ? lock_chain_count+0x20/0x20
[ 1535.463306]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1535.463915]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1535.464417]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1535.465021]  ? mark_lock+0xf5/0x2df0
[ 1535.465491]  ? lock_acquire+0x197/0x470
[ 1535.465960]  ? find_held_lock+0x2c/0x110
[ 1535.466454]  ? __might_fault+0xd3/0x180
[ 1535.466961]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.467619]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.468108]  ? sock_has_perm+0x1ea/0x280
[ 1535.468538]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1535.469148]  ? _copy_from_user+0xfb/0x1b0
[ 1535.469598]  ? __import_iovec+0x458/0x590
[ 1535.470082]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1535.470670]  inet6_sendmsg+0x105/0x140
[ 1535.471553]  ? inet6_compat_ioctl+0x320/0x320
[ 1535.474574]  __sock_sendmsg+0xf2/0x190
[ 1535.475146]  ____sys_sendmsg+0x70d/0x870
[ 1535.475564]  ? sock_write_iter+0x3d0/0x3d0
[ 1535.476097]  ? do_recvmmsg+0x6d0/0x6d0
[ 1535.477209]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.477738]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1535.478308]  ___sys_sendmsg+0xf3/0x170
[ 1535.478781]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1535.479276]  ? __fget_files+0x2cf/0x520
[ 1535.480210]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.480720]  ? find_held_lock+0x2c/0x110
[ 1535.481180]  ? __fget_files+0x2f8/0x520
[ 1535.481612]  ? __fget_light+0xea/0x290
[ 1535.482537]  __sys_sendmsg+0xe5/0x1b0
[ 1535.482993]  ? __sys_sendmsg_sock+0x40/0x40
[ 1535.483449]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1535.484575]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1535.485181]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1535.485793]  ? trace_hardirqs_on+0x5b/0x180
[ 1535.486262]  do_syscall_64+0x33/0x40
[ 1535.487152]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1535.487739] RIP: 0033:0x7f9e74c56b19
[ 1535.488578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1535.490538] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1535.491370] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1535.492149] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1535.492950] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1535.493730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1535.494462] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1535.515610] FAULT_INJECTION: forcing a failure.
[ 1535.515610] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1535.516858] CPU: 0 PID: 8323 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1535.517520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1535.518312] Call Trace:
[ 1535.518575]  dump_stack+0x107/0x167
[ 1535.518931]  should_fail.cold+0x5/0xa
[ 1535.519303]  __alloc_pages_nodemask+0x182/0x600
[ 1535.519755]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1535.520340]  ? do_raw_spin_lock+0x121/0x260
[ 1535.520775]  ? kasan_unpoison_shadow+0x33/0x50
[ 1535.521220]  alloc_pages_current+0x187/0x280
[ 1535.521647]  __vmalloc_node_range+0x60a/0x9e0
[ 1535.522086]  ? __vmalloc_node+0x110/0x110
[ 1535.522505]  ? kernel_read_file+0x6b8/0x790
[ 1535.522938]  __vmalloc_node+0xb5/0x110
[ 1535.523313]  ? kernel_read_file+0x6b8/0x790
[ 1535.524209]  kernel_read_file+0x6b8/0x790
[ 1535.524928]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1535.525815]  kernel_read_file_from_fd+0xb8/0x110
[ 1535.526639]  __do_sys_finit_module+0xe8/0x180
[ 1535.527423]  ? __do_sys_init_module+0x230/0x230
[ 1535.528229]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1535.528844]  ? __ia32_sys_read+0xb0/0xb0
[ 1535.529195]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1535.529642]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1535.530087]  ? trace_hardirqs_on+0x5b/0x180
[ 1535.530456]  do_syscall_64+0x33/0x40
[ 1535.530777]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1535.531213] RIP: 0033:0x7f71c9c30b19
[ 1535.531534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1535.533972] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1535.535290] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1535.536825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1535.538028] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1535.539247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1535.540449] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:08:05 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00", @ANYRESDEC])

21:08:05 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1535.565714] FAULT_INJECTION: forcing a failure.
[ 1535.565714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1535.566744] CPU: 0 PID: 8313 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1535.567313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1535.568000] Call Trace:
[ 1535.568225]  dump_stack+0x107/0x167
[ 1535.568534]  should_fail.cold+0x5/0xa
[ 1535.569359]  _copy_from_user+0x2e/0x1b0
[ 1535.570238]  __copy_msghdr_from_user+0x91/0x4b0
[ 1535.571238]  ? __ia32_sys_shutdown+0x80/0x80
[ 1535.572200]  ? sock_kfree_s+0x35/0x60
[ 1535.573020]  ? ____sys_sendmsg+0x426/0x870
[ 1535.573755]  sendmsg_copy_msghdr+0xa1/0x160
[ 1535.574500]  ? do_recvmmsg+0x6d0/0x6d0
[ 1535.575168]  ? lock_chain_count+0x20/0x20
[ 1535.575881]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.576624]  io_sendmsg+0x62c/0x830
[ 1535.576939]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1535.577327]  ? mark_lock+0xf5/0x2df0
[ 1535.577649]  ? lock_chain_count+0x20/0x20
[ 1535.578014]  ? stack_trace_consume_entry+0x160/0x160
[ 1535.578454]  ? lock_acquire+0x197/0x470
[ 1535.578798]  ? __lock_acquire+0xbb1/0x5b00
[ 1535.579161]  io_issue_sqe+0x3b3/0x77b0
[ 1535.579498]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1535.579943]  ? lock_chain_count+0x20/0x20
[ 1535.580301]  ? __is_insn_slot_addr+0x14c/0x290
[ 1535.580917]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1535.581820]  ? io_connect+0x610/0x610
[ 1535.582478]  ? lock_acquire+0x197/0x470
[ 1535.583163]  ? find_held_lock+0x2c/0x110
[ 1535.583878]  ? __fget_files+0x2cf/0x520
[ 1535.584567]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.585465]  __io_queue_sqe+0x90/0x9d0
[ 1535.586126]  ? io_issue_sqe+0x77b0/0x77b0
[ 1535.586820]  ? __fget_files+0x2f8/0x520
[ 1535.587499]  io_submit_sqes+0x44aa/0x8610
[ 1535.588233]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1535.589236]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1535.590078]  ? lock_downgrade+0x6d0/0x6d0
[ 1535.590788]  ? find_held_lock+0x2c/0x110
[ 1535.591495]  ? io_submit_sqes+0x8610/0x8610
[ 1535.592247]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1535.592837]  ? wait_for_completion_io+0x270/0x270
[ 1535.593256]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1535.593648]  ? vfs_write+0x354/0xb10
[ 1535.594366]  ? fput_many+0x2f/0x1a0
[ 1535.595159]  ? ksys_write+0x1a9/0x260
[ 1535.595969]  ? __ia32_sys_read+0xb0/0xb0
[ 1535.596863]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1535.597985]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1535.599113]  do_syscall_64+0x33/0x40
[ 1535.599906]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1535.601021] RIP: 0033:0x7f30cfeeeb19
[ 1535.601813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1535.605847] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1535.606576] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1535.607254] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1535.607934] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1535.608628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1535.609337] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:08:19 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x700000)

21:08:19 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

21:08:19 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {0x0}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:08:19 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 24)

21:08:19 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {0x0}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:19 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00", @ANYRESDEC])

21:08:19 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 21)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1549.012624] FAULT_INJECTION: forcing a failure.
[ 1549.012624] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1549.013683] CPU: 1 PID: 8349 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1549.014261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1549.014955] Call Trace:
[ 1549.015187]  dump_stack+0x107/0x167
[ 1549.015499]  should_fail.cold+0x5/0xa
[ 1549.015829]  __alloc_pages_nodemask+0x182/0x600
[ 1549.016228]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1549.016751]  ? do_raw_spin_lock+0x121/0x260
[ 1549.017126]  ? kasan_unpoison_shadow+0x33/0x50
[ 1549.017521]  alloc_pages_current+0x187/0x280
[ 1549.017900]  __vmalloc_node_range+0x60a/0x9e0
[ 1549.018289]  ? __vmalloc_node+0x110/0x110
[ 1549.018649]  ? kernel_read_file+0x6b8/0x790
[ 1549.019017]  __vmalloc_node+0xb5/0x110
[ 1549.019348]  ? kernel_read_file+0x6b8/0x790
[ 1549.019717]  kernel_read_file+0x6b8/0x790
[ 1549.020072]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1549.020474]  kernel_read_file_from_fd+0xb8/0x110
[ 1549.020909]  __do_sys_finit_module+0xe8/0x180
[ 1549.021282]  ? __do_sys_init_module+0x230/0x230
[ 1549.021669]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1549.022087]  ? __ia32_sys_read+0xb0/0xb0
[ 1549.022429]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1549.022864]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1549.023296]  ? trace_hardirqs_on+0x5b/0x180
[ 1549.023663]  do_syscall_64+0x33/0x40
[ 1549.023979]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1549.024403] RIP: 0033:0x7f71c9c30b19
[ 1549.024728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1549.026244] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1549.026881] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1549.027468] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1549.028056] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1549.028642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1549.029250] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
[ 1549.055232] FAULT_INJECTION: forcing a failure.
[ 1549.055232] name failslab, interval 1, probability 0, space 0, times 0
[ 1549.056285] CPU: 0 PID: 8348 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1549.056910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1549.057642] Call Trace:
[ 1549.057893]  dump_stack+0x107/0x167
[ 1549.058232]  should_fail.cold+0x5/0xa
[ 1549.058591]  ? sock_kmalloc+0xae/0x100
[ 1549.058951]  should_failslab+0x5/0x20
[ 1549.059302]  __kmalloc+0x72/0x390
[ 1549.059629]  ? __import_iovec+0x458/0x590
[ 1549.060019]  sock_kmalloc+0xae/0x100
[ 1549.060368]  ____sys_sendmsg+0x665/0x870
[ 1549.060758]  ? sock_write_iter+0x3d0/0x3d0
[ 1549.061155]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1549.061573]  ? do_recvmmsg+0x6d0/0x6d0
[ 1549.061939]  ? lock_chain_count+0x20/0x20
[ 1549.062329]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.062724]  __sys_sendmsg_sock+0x26/0x40
[ 1549.063109]  io_sendmsg+0x1e6/0x830
[ 1549.063447]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1549.063865]  ? mark_lock+0xf5/0x2df0
[ 1549.064230]  ? stack_trace_consume_entry+0x160/0x160
[ 1549.064720]  ? lock_acquire+0x197/0x470
[ 1549.065098]  ? __lock_acquire+0xbb1/0x5b00
[ 1549.065491]  io_issue_sqe+0x3b3/0x77b0
[ 1549.065858]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1549.066343]  ? lock_chain_count+0x20/0x20
[ 1549.066725]  ? __is_insn_slot_addr+0x14c/0x290
[ 1549.067147]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1549.067624]  ? io_connect+0x610/0x610
[ 1549.067981]  ? lock_acquire+0x197/0x470
[ 1549.068346]  ? find_held_lock+0x2c/0x110
[ 1549.068739]  ? __fget_files+0x2cf/0x520
[ 1549.069107]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.069489]  __io_queue_sqe+0x90/0x9d0
[ 1549.069850]  ? io_issue_sqe+0x77b0/0x77b0
[ 1549.070230]  ? __fget_files+0x2f8/0x520
[ 1549.070621]  io_submit_sqes+0x44aa/0x8610
[ 1549.071032]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1549.071501]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1549.071947]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.072326]  ? find_held_lock+0x2c/0x110
[ 1549.072712]  ? io_submit_sqes+0x8610/0x8610
[ 1549.073123]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1549.073573]  ? wait_for_completion_io+0x270/0x270
[ 1549.074017]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1549.074445]  ? vfs_write+0x354/0xb10
[ 1549.074569] FAULT_INJECTION: forcing a failure.
[ 1549.074569] name failslab, interval 1, probability 0, space 0, times 0
[ 1549.074773]  ? fput_many+0x2f/0x1a0
[ 1549.076006]  ? ksys_write+0x1a9/0x260
[ 1549.076330]  ? __ia32_sys_read+0xb0/0xb0
[ 1549.076676]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1549.077141]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1549.077585]  do_syscall_64+0x33/0x40
[ 1549.077907]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1549.078343] RIP: 0033:0x7f30cfeeeb19
[ 1549.078666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1549.080209] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1549.080863] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1549.081463] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1549.082062] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1549.082656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1549.083255] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
[ 1549.083891] CPU: 1 PID: 8357 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1549.084516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1549.085288] Call Trace:
[ 1549.085536]  dump_stack+0x107/0x167
[ 1549.085874]  should_fail.cold+0x5/0xa
[ 1549.086237]  should_failslab+0x5/0x20
[ 1549.086604]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1549.087065]  ? skb_segment+0x9d8/0x3aa0
[ 1549.087446]  __alloc_skb+0xb1/0x5b0
[ 1549.087792]  skb_segment+0x9d8/0x3aa0
[ 1549.088146]  ? lock_chain_count+0x20/0x20
[ 1549.088570]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1549.089051]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1549.089543]  __udp_gso_segment+0x11c6/0x1830
[ 1549.089951]  ? __sk_receive_skb+0x830/0x830
[ 1549.090360]  udp4_ufo_fragment+0x528/0x720
[ 1549.090757]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1549.091220]  inet_gso_segment+0x4fb/0x11a0
[ 1549.091624]  skb_mac_gso_segment+0x273/0x570
[ 1549.092032]  ? inet_sock_destruct+0x840/0x840
[ 1549.092444]  ? skb_network_protocol+0x650/0x650
[ 1549.092885]  ? skb_crc32c_csum_help+0x80/0x80
[ 1549.093308]  ? lock_acquire+0x197/0x470
[ 1549.093675]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1549.094084]  __skb_gso_segment+0x32d/0x6d0
[ 1549.094485]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1549.094965]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1549.095393]  __dev_queue_xmit+0x87b/0x2710
[ 1549.095800]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1549.096235]  ? mark_held_locks+0x9e/0xe0
[ 1549.096618]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1549.097119]  neigh_connected_output+0x382/0x4d0
[ 1549.097558]  ip_finish_output2+0x6f1/0x21f0
[ 1549.097958]  ? nf_hook_slow+0xfc/0x1e0
[ 1549.098318]  ? ip_frag_next+0x9e0/0x9e0
[ 1549.098689]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1549.099166]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1549.099627]  ? ip_fragment.constprop.0+0x240/0x240
[ 1549.100081]  ? nf_hook+0x510/0x510
[ 1549.100422]  ip_output+0x2f7/0x600
[ 1549.100775]  ip_send_skb+0xdd/0x260
[ 1549.101118]  udp_send_skb+0x6da/0x11d0
[ 1549.101491]  udp_sendmsg+0x139a/0x2160
[ 1549.101850]  ? mark_lock+0xf5/0x2df0
[ 1549.102201]  ? ip_frag_init+0x350/0x350
[ 1549.102573]  ? lock_chain_count+0x20/0x20
[ 1549.102948]  ? udp_setsockopt+0xc0/0xc0
[ 1549.103309]  ? mark_lock+0xf5/0x2df0
[ 1549.103657]  ? lock_acquire+0x197/0x470
[ 1549.104029]  ? lock_chain_count+0x20/0x20
[ 1549.104414]  ? mark_lock+0xf5/0x2df0
[ 1549.104776]  ? mark_lock+0xf5/0x2df0
[ 1549.105122]  ? lock_chain_count+0x20/0x20
[ 1549.105505]  ? __lock_acquire+0xbb1/0x5b00
[ 1549.105898]  ? lock_chain_count+0x20/0x20
[ 1549.106294]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1549.106785]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1549.107176]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1549.107654]  ? mark_lock+0xf5/0x2df0
[ 1549.108003]  ? lock_acquire+0x197/0x470
[ 1549.108368]  ? find_held_lock+0x2c/0x110
[ 1549.108759]  ? __might_fault+0xd3/0x180
[ 1549.109133]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.109525]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.109912]  ? sock_has_perm+0x1ea/0x280
[ 1549.110289]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1549.110764]  ? _copy_from_user+0xfb/0x1b0
[ 1549.111158]  ? __import_iovec+0x458/0x590
[ 1549.111546]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1549.112027]  inet6_sendmsg+0x105/0x140
[ 1549.112382]  ? inet6_compat_ioctl+0x320/0x320
[ 1549.112801]  __sock_sendmsg+0xf2/0x190
[ 1549.113160]  ____sys_sendmsg+0x70d/0x870
[ 1549.113536]  ? sock_write_iter+0x3d0/0x3d0
[ 1549.113926]  ? do_recvmmsg+0x6d0/0x6d0
[ 1549.114289]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.114670]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1549.115151]  ___sys_sendmsg+0xf3/0x170
[ 1549.115509]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1549.115927]  ? __fget_files+0x2cf/0x520
[ 1549.116291]  ? lock_downgrade+0x6d0/0x6d0
[ 1549.116668]  ? find_held_lock+0x2c/0x110
[ 1549.117070]  ? __fget_files+0x2f8/0x520
[ 1549.117444]  ? __fget_light+0xea/0x290
[ 1549.117808]  __sys_sendmsg+0xe5/0x1b0
[ 1549.118158]  ? __sys_sendmsg_sock+0x40/0x40
[ 1549.118550]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1549.118991]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1549.119467]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1549.119933]  ? trace_hardirqs_on+0x5b/0x180
[ 1549.120327]  do_syscall_64+0x33/0x40
[ 1549.120666]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1549.121147] RIP: 0033:0x7f9e74c56b19
[ 1549.121488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1549.123104] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1549.123789] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1549.124427] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1549.125088] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1549.125716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1549.126351] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:08:19 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
openat(r0, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

21:08:19 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xc01000)

21:08:19 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000000)={'wg1\x00'})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x4}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000000c0)={0xb0002004})

21:08:19 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00", @ANYRESDEC])

21:08:19 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:19 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 25)

21:08:19 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xe0ffff)

[ 1549.378579] FAULT_INJECTION: forcing a failure.
[ 1549.378579] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1549.379794] CPU: 0 PID: 8381 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1549.380391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1549.381125] Call Trace:
[ 1549.381376]  dump_stack+0x107/0x167
[ 1549.381711]  should_fail.cold+0x5/0xa
[ 1549.382069]  __alloc_pages_nodemask+0x182/0x600
[ 1549.382502]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1549.383046]  ? do_raw_spin_lock+0x121/0x260
[ 1549.383435]  ? kasan_unpoison_shadow+0x33/0x50
[ 1549.383850]  alloc_pages_current+0x187/0x280
[ 1549.384281]  __vmalloc_node_range+0x60a/0x9e0
[ 1549.384713]  ? __vmalloc_node+0x110/0x110
[ 1549.385101]  ? kernel_read_file+0x6b8/0x790
[ 1549.385483]  __vmalloc_node+0xb5/0x110
[ 1549.385836]  ? kernel_read_file+0x6b8/0x790
[ 1549.386234]  kernel_read_file+0x6b8/0x790
[ 1549.386618]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1549.387044]  kernel_read_file_from_fd+0xb8/0x110
[ 1549.387480]  __do_sys_finit_module+0xe8/0x180
[ 1549.388408]  ? __do_sys_init_module+0x230/0x230
[ 1549.388849]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1549.389319]  ? __ia32_sys_read+0xb0/0xb0
[ 1549.389695]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1549.390172]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1549.390642]  ? trace_hardirqs_on+0x5b/0x180
[ 1549.391038]  do_syscall_64+0x33/0x40
[ 1549.391389]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1549.391853] RIP: 0033:0x7f71c9c30b19
[ 1549.392199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1549.397882] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1549.398571] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1549.399224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1549.399866] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1549.400513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1549.401845] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:08:32 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:32 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

21:08:32 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:32 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x1000000)

21:08:32 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

[ 1562.012431] FAULT_INJECTION: forcing a failure.
[ 1562.012431] name failslab, interval 1, probability 0, space 0, times 0
[ 1562.019351] CPU: 1 PID: 8389 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1562.020968] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1562.023037] Call Trace:
[ 1562.023671]  dump_stack+0x107/0x167
[ 1562.024544]  should_fail.cold+0x5/0xa
[ 1562.025468]  ? create_object.isra.0+0x3a/0xa20
[ 1562.026468]  should_failslab+0x5/0x20
[ 1562.027290]  kmem_cache_alloc+0x5b/0x310
[ 1562.028194]  create_object.isra.0+0x3a/0xa20
[ 1562.029301]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1562.030549]  __kmalloc+0x16e/0x390
[ 1562.031405]  ? __import_iovec+0x458/0x590
[ 1562.032404]  sock_kmalloc+0xae/0x100
[ 1562.033298]  ____sys_sendmsg+0x665/0x870
[ 1562.034267]  ? sock_write_iter+0x3d0/0x3d0
[ 1562.035249]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1562.036221]  ? do_recvmmsg+0x6d0/0x6d0
[ 1562.037101]  ? lock_chain_count+0x20/0x20
[ 1562.038092]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.039088]  __sys_sendmsg_sock+0x26/0x40
[ 1562.040088]  io_sendmsg+0x1e6/0x830
[ 1562.040972]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1562.042040]  ? mark_lock+0xf5/0x2df0
[ 1562.042949]  ? stack_trace_consume_entry+0x160/0x160
[ 1562.044163]  ? lock_acquire+0x197/0x470
[ 1562.045104]  ? __lock_acquire+0xbb1/0x5b00
[ 1562.046021]  io_issue_sqe+0x3b3/0x77b0
[ 1562.046871]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1562.048081]  ? lock_chain_count+0x20/0x20
[ 1562.053082]  ? __is_insn_slot_addr+0x14c/0x290
[ 1562.054177]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1562.055390]  ? io_connect+0x610/0x610
[ 1562.056216]  ? lock_acquire+0x197/0x470
[ 1562.057105]  ? find_held_lock+0x2c/0x110
[ 1562.058040]  ? __fget_files+0x2cf/0x520
[ 1562.058949]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.059890]  __io_queue_sqe+0x90/0x9d0
[ 1562.060816]  ? io_issue_sqe+0x77b0/0x77b0
[ 1562.061769]  ? __fget_files+0x2f8/0x520
[ 1562.062694]  io_submit_sqes+0x44aa/0x8610
[ 1562.063695]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1562.064828]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1562.065937]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.066907]  ? find_held_lock+0x2c/0x110
[ 1562.067843]  ? io_submit_sqes+0x8610/0x8610
[ 1562.068842]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1562.069989]  ? wait_for_completion_io+0x270/0x270
[ 1562.071128]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1562.072247]  ? vfs_write+0x354/0xb10
[ 1562.073170]  ? fput_many+0x2f/0x1a0
[ 1562.074058]  ? ksys_write+0x1a9/0x260
[ 1562.074939]  ? __ia32_sys_read+0xb0/0xb0
21:08:32 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e000000", @ANYRESDEC])

21:08:32 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 22)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:08:32 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 26)

[ 1562.075888]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1562.077903]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1562.079129]  do_syscall_64+0x33/0x40
[ 1562.079998]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1562.081284] RIP: 0033:0x7f30cfeeeb19
[ 1562.082170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1562.087789] FAULT_INJECTION: forcing a failure.
[ 1562.087789] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1562.094305] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1562.094322] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1562.094330] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1562.094338] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1562.094347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1562.094354] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
[ 1562.099927] CPU: 0 PID: 8400 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1562.100564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1562.101351] Call Trace:
[ 1562.101905]  dump_stack+0x107/0x167
[ 1562.102769]  should_fail.cold+0x5/0xa
[ 1562.103686]  __alloc_pages_nodemask+0x182/0x600
[ 1562.104830]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1562.105414]  ? do_raw_spin_lock+0x121/0x260
[ 1562.106459]  ? kasan_unpoison_shadow+0x33/0x50
[ 1562.107544]  alloc_pages_current+0x187/0x280
[ 1562.107981]  __vmalloc_node_range+0x60a/0x9e0
[ 1562.112947]  ? __vmalloc_node+0x110/0x110
[ 1562.113345]  ? kernel_read_file+0x6b8/0x790
[ 1562.113755]  __vmalloc_node+0xb5/0x110
[ 1562.114705]  ? kernel_read_file+0x6b8/0x790
[ 1562.115130]  kernel_read_file+0x6b8/0x790
[ 1562.116145]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1562.117283]  kernel_read_file_from_fd+0xb8/0x110
[ 1562.117756]  __do_sys_finit_module+0xe8/0x180
[ 1562.118843]  ? __do_sys_init_module+0x230/0x230
[ 1562.119301]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1562.120001] FAULT_INJECTION: forcing a failure.
[ 1562.120001] name failslab, interval 1, probability 0, space 0, times 0
[ 1562.120421]  ? __ia32_sys_read+0xb0/0xb0
[ 1562.122622]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1562.123764]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1562.124267]  ? trace_hardirqs_on+0x5b/0x180
[ 1562.125226]  do_syscall_64+0x33/0x40
[ 1562.125598]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1562.126715] RIP: 0033:0x7f71c9c30b19
[ 1562.127081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1562.131132] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1562.131858] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1562.133444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1562.135012] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1562.136552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1562.141257] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1562.141996] CPU: 1 PID: 8401 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1562.143842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1562.146080] Call Trace:
[ 1562.146796]  dump_stack+0x107/0x167
[ 1562.147797]  should_fail.cold+0x5/0xa
[ 1562.148830]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1562.150218]  ? create_object.isra.0+0x3a/0xa20
[ 1562.150761]  should_failslab+0x5/0x20
[ 1562.151776]  kmem_cache_alloc+0x5b/0x310
[ 1562.152298]  ? mark_held_locks+0x9e/0xe0
[ 1562.153318]  create_object.isra.0+0x3a/0xa20
[ 1562.153892]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1562.155252]  kmem_cache_alloc_node+0x169/0x330
[ 1562.155819]  __alloc_skb+0x6d/0x5b0
[ 1562.156780]  skb_segment+0x9d8/0x3aa0
[ 1562.157277]  ? lock_chain_count+0x20/0x20
[ 1562.158372]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1562.158989]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1562.160423]  __udp_gso_segment+0x11c6/0x1830
[ 1562.160990]  ? __sk_receive_skb+0x830/0x830
[ 1562.162130]  udp4_ufo_fragment+0x528/0x720
[ 1562.162668]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1562.164011]  inet_gso_segment+0x4fb/0x11a0
[ 1562.164559]  skb_mac_gso_segment+0x273/0x570
[ 1562.165770]  ? inet_sock_destruct+0x840/0x840
[ 1562.166336]  ? skb_network_protocol+0x650/0x650
[ 1562.167581]  ? skb_crc32c_csum_help+0x80/0x80
[ 1562.168153]  ? lock_acquire+0x197/0x470
[ 1562.169202]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1562.169760]  __skb_gso_segment+0x32d/0x6d0
[ 1562.170844]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1562.171474]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1562.172671]  __dev_queue_xmit+0x87b/0x2710
[ 1562.173097]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1562.173486]  ? mark_held_locks+0x9e/0xe0
[ 1562.173831]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1562.174778]  neigh_connected_output+0x382/0x4d0
[ 1562.175243]  ip_finish_output2+0x6f1/0x21f0
[ 1562.176199]  ? nf_hook_slow+0xfc/0x1e0
[ 1562.176586]  ? ip_frag_next+0x9e0/0x9e0
21:08:32 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1562.177585]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1562.185166]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1562.185700]  ? ip_fragment.constprop.0+0x240/0x240
[ 1562.186191]  ? nf_hook+0x510/0x510
[ 1562.186541]  ip_output+0x2f7/0x600
[ 1562.186876]  ip_send_skb+0xdd/0x260
[ 1562.187221]  udp_send_skb+0x6da/0x11d0
[ 1562.187632]  udp_sendmsg+0x139a/0x2160
[ 1562.188021]  ? mark_lock+0xf5/0x2df0
[ 1562.188405]  ? ip_frag_init+0x350/0x350
[ 1562.188819]  ? lock_chain_count+0x20/0x20
[ 1562.189803]  ? udp_setsockopt+0xc0/0xc0
[ 1562.190193]  ? mark_lock+0xf5/0x2df0
[ 1562.190584]  ? lock_acquire+0x197/0x470
[ 1562.191002]  ? lock_chain_count+0x20/0x20
[ 1562.191429]  ? mark_lock+0xf5/0x2df0
[ 1562.191817]  ? mark_lock+0xf5/0x2df0
[ 1562.192185]  ? lock_chain_count+0x20/0x20
[ 1562.192616]  ? __lock_acquire+0xbb1/0x5b00
[ 1562.193067]  ? lock_chain_count+0x20/0x20
[ 1562.193586]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1562.194867]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1562.195280]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1562.195769]  ? mark_lock+0xf5/0x2df0
[ 1562.196123]  ? lock_acquire+0x197/0x470
[ 1562.196532]  ? find_held_lock+0x2c/0x110
[ 1562.197070]  ? __might_fault+0xd3/0x180
[ 1562.197492]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.197940]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.198358]  ? sock_has_perm+0x1ea/0x280
[ 1562.198750]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1562.199249]  ? _copy_from_user+0xfb/0x1b0
[ 1562.199672]  ? __import_iovec+0x458/0x590
[ 1562.200088]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1562.200602]  inet6_sendmsg+0x105/0x140
[ 1562.200990]  ? inet6_compat_ioctl+0x320/0x320
[ 1562.201417]  __sock_sendmsg+0xf2/0x190
[ 1562.201803]  ____sys_sendmsg+0x70d/0x870
[ 1562.202198]  ? sock_write_iter+0x3d0/0x3d0
[ 1562.202607]  ? do_recvmmsg+0x6d0/0x6d0
[ 1562.203006]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.203442]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1562.203987]  ___sys_sendmsg+0xf3/0x170
[ 1562.204387]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1562.204866]  ? __fget_files+0x2cf/0x520
[ 1562.205275]  ? lock_downgrade+0x6d0/0x6d0
[ 1562.205685]  ? find_held_lock+0x2c/0x110
[ 1562.206081]  ? __fget_files+0x2f8/0x520
[ 1562.206490]  ? __fget_light+0xea/0x290
[ 1562.206889]  __sys_sendmsg+0xe5/0x1b0
[ 1562.207275]  ? __sys_sendmsg_sock+0x40/0x40
[ 1562.207684]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1562.208133]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1562.208659]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1562.209183]  ? trace_hardirqs_on+0x5b/0x180
[ 1562.209620]  do_syscall_64+0x33/0x40
[ 1562.213019]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1562.213531] RIP: 0033:0x7f9e74c56b19
[ 1562.213898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1562.215653] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1562.216413] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1562.217119] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1562.217768] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1562.218467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1562.219168] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:08:32 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:32 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x2000000)

21:08:32 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)

21:08:32 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e000000", @ANYRESDEC])

21:08:32 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {0x0}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:32 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 27)

[ 1562.463740] FAULT_INJECTION: forcing a failure.
[ 1562.463740] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1562.464967] CPU: 0 PID: 8423 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1562.465507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1562.466152] Call Trace:
[ 1562.466365]  dump_stack+0x107/0x167
[ 1562.466653]  should_fail.cold+0x5/0xa
[ 1562.466972]  __alloc_pages_nodemask+0x182/0x600
[ 1562.467375]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1562.467892]  ? do_raw_spin_lock+0x121/0x260
[ 1562.468269]  ? kasan_unpoison_shadow+0x33/0x50
[ 1562.468663]  alloc_pages_current+0x187/0x280
[ 1562.469062]  __vmalloc_node_range+0x60a/0x9e0
[ 1562.469457]  ? __vmalloc_node+0x110/0x110
[ 1562.469823]  ? kernel_read_file+0x6b8/0x790
[ 1562.470192]  __vmalloc_node+0xb5/0x110
[ 1562.470526]  ? kernel_read_file+0x6b8/0x790
[ 1562.470905]  kernel_read_file+0x6b8/0x790
[ 1562.471270]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1562.471675]  kernel_read_file_from_fd+0xb8/0x110
[ 1562.472099]  __do_sys_finit_module+0xe8/0x180
[ 1562.472489]  ? __do_sys_init_module+0x230/0x230
[ 1562.472907]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1562.473341]  ? __ia32_sys_read+0xb0/0xb0
[ 1562.473698]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1562.474155]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1562.474598]  ? trace_hardirqs_on+0x5b/0x180
[ 1562.474972]  do_syscall_64+0x33/0x40
[ 1562.475296]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1562.475734] RIP: 0033:0x7f71c9c30b19
[ 1562.476057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1562.477611] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1562.478268] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1562.478869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1562.479473] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1562.480083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1562.480689] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1575.181563] FAULT_INJECTION: forcing a failure.
[ 1575.181563] name failslab, interval 1, probability 0, space 0, times 0
[ 1575.182623] CPU: 1 PID: 8432 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1575.183207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1575.183906] Call Trace:
[ 1575.184139]  dump_stack+0x107/0x167
[ 1575.184452]  should_fail.cold+0x5/0xa
[ 1575.184785]  should_failslab+0x5/0x20
[ 1575.185135]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1575.185560]  ? skb_segment+0x9d8/0x3aa0
[ 1575.185906]  __alloc_skb+0xb1/0x5b0
[ 1575.186221]  skb_segment+0x9d8/0x3aa0
[ 1575.186547]  ? lock_chain_count+0x20/0x20
[ 1575.186932]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1575.187361]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.187814]  __udp_gso_segment+0x11c6/0x1830
[ 1575.188189]  ? __sk_receive_skb+0x830/0x830
[ 1575.188567]  udp4_ufo_fragment+0x528/0x720
[ 1575.188943]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1575.189376]  inet_gso_segment+0x4fb/0x11a0
[ 1575.189750]  skb_mac_gso_segment+0x273/0x570
[ 1575.190131]  ? inet_sock_destruct+0x840/0x840
[ 1575.190516]  ? skb_network_protocol+0x650/0x650
[ 1575.190915]  ? skb_crc32c_csum_help+0x80/0x80
[ 1575.191299]  ? lock_acquire+0x197/0x470
[ 1575.191639]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1575.192022]  __skb_gso_segment+0x32d/0x6d0
[ 1575.192387]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1575.192839]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1575.193251]  __dev_queue_xmit+0x87b/0x2710
[ 1575.193620]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1575.194022]  ? mark_held_locks+0x9e/0xe0
[ 1575.194376]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1575.194832]  neigh_connected_output+0x382/0x4d0
[ 1575.195245]  ip_finish_output2+0x6f1/0x21f0
[ 1575.195621]  ? nf_hook_slow+0xfc/0x1e0
[ 1575.195962]  ? ip_frag_next+0x9e0/0x9e0
[ 1575.196305]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1575.196744]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1575.197184]  ? ip_fragment.constprop.0+0x240/0x240
[ 1575.197606]  ? nf_hook+0x510/0x510
[ 1575.197924]  ip_output+0x2f7/0x600
[ 1575.198236]  ip_send_skb+0xdd/0x260
[ 1575.198553]  udp_send_skb+0x6da/0x11d0
[ 1575.198897]  udp_sendmsg+0x139a/0x2160
[ 1575.199234]  ? mark_lock+0xf5/0x2df0
[ 1575.199556]  ? ip_frag_init+0x350/0x350
[ 1575.199903]  ? lock_chain_count+0x20/0x20
[ 1575.200262]  ? udp_setsockopt+0xc0/0xc0
[ 1575.200601]  ? mark_lock+0xf5/0x2df0
[ 1575.200924]  ? lock_acquire+0x197/0x470
[ 1575.201279]  ? lock_chain_count+0x20/0x20
[ 1575.201637]  ? mark_lock+0xf5/0x2df0
[ 1575.201962]  ? mark_lock+0xf5/0x2df0
[ 1575.202285]  ? lock_chain_count+0x20/0x20
[ 1575.202640]  ? __lock_acquire+0xbb1/0x5b00
[ 1575.203004]  ? lock_chain_count+0x20/0x20
[ 1575.203368]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.203827]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1575.204185]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1575.204628]  ? mark_lock+0xf5/0x2df0
[ 1575.204959]  ? lock_acquire+0x197/0x470
[ 1575.205305]  ? find_held_lock+0x2c/0x110
[ 1575.205658]  ? __might_fault+0xd3/0x180
[ 1575.205999]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.206357]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.206713]  ? sock_has_perm+0x1ea/0x280
[ 1575.207062]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1575.207508]  ? _copy_from_user+0xfb/0x1b0
[ 1575.207876]  ? __import_iovec+0x458/0x590
[ 1575.208235]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1575.208683]  inet6_sendmsg+0x105/0x140
[ 1575.209036]  ? inet6_compat_ioctl+0x320/0x320
[ 1575.209422]  __sock_sendmsg+0xf2/0x190
[ 1575.209756]  ____sys_sendmsg+0x70d/0x870
[ 1575.210109]  ? sock_write_iter+0x3d0/0x3d0
[ 1575.210468]  ? do_recvmmsg+0x6d0/0x6d0
[ 1575.210805]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.211162]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.211612]  ___sys_sendmsg+0xf3/0x170
[ 1575.211947]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1575.212340]  ? __fget_files+0x2cf/0x520
[ 1575.212680]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.213056]  ? find_held_lock+0x2c/0x110
[ 1575.213411]  ? __fget_files+0x2f8/0x520
[ 1575.213760]  ? __fget_light+0xea/0x290
[ 1575.214102]  __sys_sendmsg+0xe5/0x1b0
[ 1575.214428]  ? __sys_sendmsg_sock+0x40/0x40
[ 1575.214799]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1575.215209]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1575.215658]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1575.216098]  ? trace_hardirqs_on+0x5b/0x180
[ 1575.216467]  do_syscall_64+0x33/0x40
[ 1575.216788]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1575.217238] RIP: 0033:0x7f9e74c56b19
[ 1575.217560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1575.219112] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1575.219761] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1575.220367] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1575.220985] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1575.221594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1575.222205] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:08:45 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

21:08:45 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 23)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:08:45 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x3000000)

21:08:45 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {0x0}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:45 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x4, 0x4}, 0x6)
r1 = accept(r0, &(0x7f0000000140)=@generic, &(0x7f00000001c0)=0x80)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xeff7}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

21:08:45 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e000000", @ANYRESDEC])

21:08:45 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {0x0}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:45 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 28)

[ 1575.232754] FAULT_INJECTION: forcing a failure.
[ 1575.232754] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1575.233853] CPU: 1 PID: 8440 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1575.234432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1575.235134] Call Trace:
[ 1575.235365]  dump_stack+0x107/0x167
[ 1575.235680]  should_fail.cold+0x5/0xa
[ 1575.236016]  __alloc_pages_nodemask+0x182/0x600
[ 1575.236416]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1575.236931]  ? do_raw_spin_lock+0x121/0x260
[ 1575.237329]  ? kasan_unpoison_shadow+0x33/0x50
[ 1575.237731]  alloc_pages_current+0x187/0x280
[ 1575.238115]  __vmalloc_node_range+0x60a/0x9e0
[ 1575.238506]  ? __vmalloc_node+0x110/0x110
[ 1575.238873]  ? kernel_read_file+0x6b8/0x790
[ 1575.239245]  __vmalloc_node+0xb5/0x110
[ 1575.239583]  ? kernel_read_file+0x6b8/0x790
[ 1575.239960]  kernel_read_file+0x6b8/0x790
[ 1575.240320]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1575.240718]  kernel_read_file_from_fd+0xb8/0x110
[ 1575.241153]  __do_sys_finit_module+0xe8/0x180
[ 1575.241540]  ? __do_sys_init_module+0x230/0x230
[ 1575.241943]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1575.242371]  ? __ia32_sys_read+0xb0/0xb0
[ 1575.242723]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1575.243176]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1575.243616]  ? trace_hardirqs_on+0x5b/0x180
[ 1575.243990]  do_syscall_64+0x33/0x40
[ 1575.244311]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1575.244749] RIP: 0033:0x7f71c9c30b19
[ 1575.245089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1575.246650] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1575.247303] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1575.247911] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1575.248517] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1575.249143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1575.249750] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1575.258168] FAULT_INJECTION: forcing a failure.
[ 1575.258168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1575.259224] CPU: 1 PID: 8446 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1575.259795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1575.260488] Call Trace:
[ 1575.260713]  dump_stack+0x107/0x167
[ 1575.261045]  should_fail.cold+0x5/0xa
[ 1575.261374]  _copy_from_user+0x2e/0x1b0
[ 1575.261714]  ____sys_sendmsg+0x6c6/0x870
[ 1575.262066]  ? sock_write_iter+0x3d0/0x3d0
[ 1575.262430]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1575.262814]  ? do_recvmmsg+0x6d0/0x6d0
[ 1575.263148]  ? lock_chain_count+0x20/0x20
[ 1575.263503]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.263866]  __sys_sendmsg_sock+0x26/0x40
[ 1575.264221]  io_sendmsg+0x1e6/0x830
[ 1575.264535]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1575.264925]  ? mark_lock+0xf5/0x2df0
[ 1575.265274]  ? stack_trace_consume_entry+0x160/0x160
[ 1575.265713]  ? lock_acquire+0x197/0x470
[ 1575.266058]  ? __lock_acquire+0xbb1/0x5b00
[ 1575.266423]  io_issue_sqe+0x3b3/0x77b0
[ 1575.266763]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.267211]  ? lock_chain_count+0x20/0x20
[ 1575.267567]  ? __is_insn_slot_addr+0x14c/0x290
[ 1575.267960]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.268403]  ? io_connect+0x610/0x610
[ 1575.268733]  ? lock_acquire+0x197/0x470
[ 1575.269094]  ? find_held_lock+0x2c/0x110
[ 1575.269444]  ? __fget_files+0x2cf/0x520
[ 1575.269786]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.270143]  __io_queue_sqe+0x90/0x9d0
[ 1575.270477]  ? io_issue_sqe+0x77b0/0x77b0
[ 1575.270830]  ? __fget_files+0x2f8/0x520
[ 1575.271179]  io_submit_sqes+0x44aa/0x8610
[ 1575.271554]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1575.271984]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1575.272398]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.272751]  ? find_held_lock+0x2c/0x110
[ 1575.273126]  ? io_submit_sqes+0x8610/0x8610
[ 1575.273500]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1575.273918]  ? wait_for_completion_io+0x270/0x270
[ 1575.274328]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1575.274723]  ? vfs_write+0x354/0xb10
[ 1575.275044]  ? fput_many+0x2f/0x1a0
[ 1575.275355]  ? ksys_write+0x1a9/0x260
[ 1575.275680]  ? __ia32_sys_read+0xb0/0xb0
[ 1575.276033]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1575.276478]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1575.276921]  do_syscall_64+0x33/0x40
[ 1575.277256]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1575.277692] RIP: 0033:0x7f30cfeeeb19
[ 1575.278011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1575.279568] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1575.280221] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1575.280830] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1575.281452] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1575.282062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1575.282672] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:08:45 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x4000000)

21:08:45 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {0x0}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:08:45 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 29)

21:08:45 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:08:45 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {0x0}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:08:45 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x5000000)

21:08:45 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 24)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1575.423496] FAULT_INJECTION: forcing a failure.
[ 1575.423496] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1575.424701] CPU: 0 PID: 8458 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1575.425909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1575.427388] Call Trace:
[ 1575.427891]  dump_stack+0x107/0x167
[ 1575.428505]  should_fail.cold+0x5/0xa
[ 1575.429293]  __alloc_pages_nodemask+0x182/0x600
[ 1575.430195]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1575.431306]  ? do_raw_spin_lock+0x121/0x260
[ 1575.432111]  ? kasan_unpoison_shadow+0x33/0x50
[ 1575.432964]  alloc_pages_current+0x187/0x280
[ 1575.433981]  __vmalloc_node_range+0x60a/0x9e0
[ 1575.434823]  ? __vmalloc_node+0x110/0x110
[ 1575.435538]  ? kernel_read_file+0x6b8/0x790
[ 1575.436322]  __vmalloc_node+0xb5/0x110
[ 1575.437070]  ? kernel_read_file+0x6b8/0x790
[ 1575.437880]  kernel_read_file+0x6b8/0x790
[ 1575.438590]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1575.439452]  kernel_read_file_from_fd+0xb8/0x110
[ 1575.440331]  __do_sys_finit_module+0xe8/0x180
[ 1575.441219]  ? __do_sys_init_module+0x230/0x230
[ 1575.442054]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1575.442958]  ? __ia32_sys_read+0xb0/0xb0
[ 1575.443696]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1575.444602]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1575.445749]  ? trace_hardirqs_on+0x5b/0x180
[ 1575.446495]  do_syscall_64+0x33/0x40
[ 1575.447212]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1575.448159] RIP: 0033:0x7f71c9c30b19
[ 1575.448850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1575.453321] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1575.455088] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1575.456345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1575.457876] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1575.459175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1575.460459] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1575.496411] FAULT_INJECTION: forcing a failure.
21:08:45 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1575.496411] name failslab, interval 1, probability 0, space 0, times 0
[ 1575.497514] CPU: 1 PID: 8464 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1575.498100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1575.498803] Call Trace:
[ 1575.499040]  dump_stack+0x107/0x167
[ 1575.499356]  should_fail.cold+0x5/0xa
[ 1575.499689]  ? create_object.isra.0+0x3a/0xa20
[ 1575.500087]  should_failslab+0x5/0x20
[ 1575.500417]  kmem_cache_alloc+0x5b/0x310
[ 1575.500770]  create_object.isra.0+0x3a/0xa20
[ 1575.501175]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1575.501614]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1575.502051]  ? skb_segment+0x9d8/0x3aa0
[ 1575.502398]  __alloc_skb+0xb1/0x5b0
[ 1575.502716]  skb_segment+0x9d8/0x3aa0
[ 1575.503047]  ? lock_chain_count+0x20/0x20
[ 1575.503432]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1575.503863]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.504320]  __udp_gso_segment+0x11c6/0x1830
[ 1575.504696]  ? __sk_receive_skb+0x830/0x830
[ 1575.505099]  udp4_ufo_fragment+0x528/0x720
[ 1575.505467]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1575.505897]  inet_gso_segment+0x4fb/0x11a0
[ 1575.506270]  skb_mac_gso_segment+0x273/0x570
[ 1575.506649]  ? inet_sock_destruct+0x840/0x840
[ 1575.507035]  ? skb_network_protocol+0x650/0x650
[ 1575.507431]  ? skb_crc32c_csum_help+0x80/0x80
[ 1575.507816]  ? lock_acquire+0x197/0x470
[ 1575.508159]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1575.508540]  __skb_gso_segment+0x32d/0x6d0
[ 1575.508909]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1575.509375]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1575.509768]  __dev_queue_xmit+0x87b/0x2710
[ 1575.510140]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1575.510539]  ? mark_held_locks+0x9e/0xe0
[ 1575.510893]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1575.511347]  neigh_connected_output+0x382/0x4d0
[ 1575.511756]  ip_finish_output2+0x6f1/0x21f0
[ 1575.512130]  ? nf_hook_slow+0xfc/0x1e0
[ 1575.512467]  ? ip_frag_next+0x9e0/0x9e0
[ 1575.512810]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1575.513266]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1575.513688]  ? ip_fragment.constprop.0+0x240/0x240
[ 1575.514109]  ? nf_hook+0x510/0x510
[ 1575.514423]  ip_output+0x2f7/0x600
[ 1575.514734]  ip_send_skb+0xdd/0x260
[ 1575.515050]  udp_send_skb+0x6da/0x11d0
[ 1575.515397]  udp_sendmsg+0x139a/0x2160
[ 1575.515730]  ? mark_lock+0xf5/0x2df0
[ 1575.516054]  ? ip_frag_init+0x350/0x350
[ 1575.516397]  ? lock_chain_count+0x20/0x20
[ 1575.516756]  ? udp_setsockopt+0xc0/0xc0
[ 1575.517113]  ? mark_lock+0xf5/0x2df0
[ 1575.517433]  ? lock_acquire+0x197/0x470
[ 1575.517780]  ? lock_chain_count+0x20/0x20
[ 1575.518139]  ? mark_lock+0xf5/0x2df0
[ 1575.518464]  ? mark_lock+0xf5/0x2df0
[ 1575.518787]  ? lock_chain_count+0x20/0x20
[ 1575.519142]  ? __lock_acquire+0xbb1/0x5b00
[ 1575.519507]  ? lock_chain_count+0x20/0x20
[ 1575.519879]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.520336]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1575.520695]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1575.521155]  ? mark_lock+0xf5/0x2df0
[ 1575.521480]  ? lock_acquire+0x197/0x470
[ 1575.521821]  ? find_held_lock+0x2c/0x110
[ 1575.522174]  ? __might_fault+0xd3/0x180
[ 1575.522515]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.522875]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.523234]  ? sock_has_perm+0x1ea/0x280
[ 1575.523583]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1575.524030]  ? _copy_from_user+0xfb/0x1b0
[ 1575.524395]  ? __import_iovec+0x458/0x590
[ 1575.524751]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1575.525211]  inet6_sendmsg+0x105/0x140
[ 1575.525547]  ? inet6_compat_ioctl+0x320/0x320
[ 1575.525933]  __sock_sendmsg+0xf2/0x190
[ 1575.526268]  ____sys_sendmsg+0x70d/0x870
[ 1575.526618]  ? sock_write_iter+0x3d0/0x3d0
[ 1575.526981]  ? do_recvmmsg+0x6d0/0x6d0
[ 1575.527318]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.527678]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1575.528131]  ___sys_sendmsg+0xf3/0x170
[ 1575.528468]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1575.528866]  ? __fget_files+0x2cf/0x520
[ 1575.529223]  ? lock_downgrade+0x6d0/0x6d0
[ 1575.529580]  ? find_held_lock+0x2c/0x110
[ 1575.529939]  ? __fget_files+0x2f8/0x520
[ 1575.530288]  ? __fget_light+0xea/0x290
[ 1575.530629]  __sys_sendmsg+0xe5/0x1b0
[ 1575.530958]  ? __sys_sendmsg_sock+0x40/0x40
[ 1575.531327]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1575.531738]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1575.532191]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1575.532628]  ? trace_hardirqs_on+0x5b/0x180
[ 1575.533015]  do_syscall_64+0x33/0x40
[ 1575.533336]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1575.533772] RIP: 0033:0x7f9e74c56b19
[ 1575.534096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1575.535645] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1575.536298] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1575.536904] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1575.537519] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1575.538123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1575.538729] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:09:00 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1589.899559] FAULT_INJECTION: forcing a failure.
[ 1589.899559] name fail_page_alloc, interval 1, probability 0, space 0, times 0
21:09:00 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 25)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:00 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

21:09:00 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x6000000)

21:09:00 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {0x0}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:00 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:00 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 30)

21:09:00 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
signalfd4(r2, &(0x7f0000000100)={[0x8000]}, 0x8, 0x800)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000500)={0x0, 0x0, {0x0, @struct, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f0000000900)={{r2}, 0x0, 0x4, @inherit={0x60, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000030000f30000e10005000000000000000100f0ff00000000fcffffff00000000040000fffffffc008180000000000000ffffffff000400000000000000000000ea54ffffffff040001000000002500"/96]}, @devid=r3})
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000040)={r3, "adb8d6f41c7b6c16b8f98e5430af26e7"})
syz_io_uring_setup(0x4a72, &(0x7f0000001900)={0x0, 0x495, 0x20, 0x3, 0x235}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000001980), &(0x7f00000019c0))
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000080)={0x4, 0x4, {0x1, @usage=0x1, 0x0, 0x2, 0x6, 0x3, 0x251caade, 0xd0a0, 0x22, @struct={0x9, 0x3}, 0xfffffff7, 0x100, [0xf3, 0x7f, 0x8, 0x4, 0x5, 0x5]}, {0x8000, @struct={0x3f, 0x13600000}, 0x0, 0x101, 0xffffffffffffff81, 0x4d, 0x2000200000000, 0xff, 0x442, @struct={0x3, 0xfff}, 0x7, 0x5, [0x9, 0x800, 0xff, 0xbac, 0x4, 0x10000]}, {0x4, @struct={0x2, 0x5}, r3, 0x101, 0x100, 0x5, 0xc61, 0x2, 0x18, @struct={0x6, 0x4}, 0x5, 0x3, [0x7, 0x1ff, 0x1, 0xe61e, 0x91, 0x4]}, {0x0, 0x5, 0xffffffffffffb34e}})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1589.900676] CPU: 1 PID: 8486 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1589.901316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1589.902183] Call Trace:
[ 1589.902485]  dump_stack+0x107/0x167
[ 1589.902891]  should_fail.cold+0x5/0xa
[ 1589.903315]  __alloc_pages_nodemask+0x182/0x600
[ 1589.903821]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1589.904454]  ? do_raw_spin_lock+0x121/0x260
[ 1589.904922]  ? kasan_unpoison_shadow+0x33/0x50
[ 1589.905393]  alloc_pages_current+0x187/0x280
[ 1589.905810]  __vmalloc_node_range+0x60a/0x9e0
[ 1589.906235]  ? __vmalloc_node+0x110/0x110
[ 1589.906629]  ? kernel_read_file+0x6b8/0x790
[ 1589.907025]  __vmalloc_node+0xb5/0x110
[ 1589.907382]  ? kernel_read_file+0x6b8/0x790
[ 1589.907779]  kernel_read_file+0x6b8/0x790
[ 1589.908164]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1589.908589]  kernel_read_file_from_fd+0xb8/0x110
[ 1589.909029]  __do_sys_finit_module+0xe8/0x180
[ 1589.909454]  ? __do_sys_init_module+0x230/0x230
[ 1589.909873]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1589.910325]  ? __ia32_sys_read+0xb0/0xb0
[ 1589.910701]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1589.911177]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1589.911640]  ? trace_hardirqs_on+0x5b/0x180
[ 1589.912030]  do_syscall_64+0x33/0x40
[ 1589.912368]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1589.912830] RIP: 0033:0x7f71c9c30b19
[ 1589.913187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1589.914803] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1589.915496] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1589.916138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1589.916780] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1589.917453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1589.918101] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1589.929974] FAULT_INJECTION: forcing a failure.
[ 1589.929974] name failslab, interval 1, probability 0, space 0, times 0
[ 1589.931041] CPU: 1 PID: 8477 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1589.931648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1589.932381] Call Trace:
[ 1589.932633]  dump_stack+0x107/0x167
[ 1589.932972]  should_fail.cold+0x5/0xa
[ 1589.933342]  ? trace_hardirqs_on+0x5b/0x180
[ 1589.933741]  ? __alloc_skb+0x6d/0x5b0
[ 1589.934095]  should_failslab+0x5/0x20
[ 1589.934440]  kmem_cache_alloc_node+0x55/0x330
[ 1589.934866]  __alloc_skb+0x6d/0x5b0
[ 1589.941345]  skb_segment+0x9d8/0x3aa0
[ 1589.941704]  ? lock_chain_count+0x20/0x20
[ 1589.942124]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1589.942585]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1589.943071]  __udp_gso_segment+0x11c6/0x1830
[ 1589.943477]  ? __sk_receive_skb+0x830/0x830
[ 1589.943879]  udp4_ufo_fragment+0x528/0x720
[ 1589.944276]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1589.944744]  inet_gso_segment+0x4fb/0x11a0
[ 1589.945157]  skb_mac_gso_segment+0x273/0x570
[ 1589.945565]  ? inet_sock_destruct+0x840/0x840
[ 1589.945975]  ? skb_network_protocol+0x650/0x650
[ 1589.946396]  ? skb_crc32c_csum_help+0x80/0x80
[ 1589.946824]  ? lock_acquire+0x197/0x470
[ 1589.947186]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1589.947600]  __skb_gso_segment+0x32d/0x6d0
[ 1589.948007]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1589.948490]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1589.948912]  __dev_queue_xmit+0x87b/0x2710
[ 1589.949335]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1589.949765]  ? mark_held_locks+0x9e/0xe0
[ 1589.950169]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1589.950655]  neigh_connected_output+0x382/0x4d0
[ 1589.951101]  ip_finish_output2+0x6f1/0x21f0
[ 1589.951499]  ? nf_hook_slow+0xfc/0x1e0
[ 1589.951857]  ? ip_frag_next+0x9e0/0x9e0
[ 1589.952226]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1589.952696]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1589.953164]  ? ip_fragment.constprop.0+0x240/0x240
[ 1589.953621]  ? nf_hook+0x510/0x510
[ 1589.953963]  ip_output+0x2f7/0x600
[ 1589.954298]  ip_send_skb+0xdd/0x260
[ 1589.954647]  udp_send_skb+0x6da/0x11d0
[ 1589.955017]  udp_sendmsg+0x139a/0x2160
[ 1589.955383]  ? mark_lock+0xf5/0x2df0
[ 1589.955740]  ? ip_frag_init+0x350/0x350
[ 1589.956105]  ? lock_chain_count+0x20/0x20
[ 1589.956491]  ? udp_setsockopt+0xc0/0xc0
[ 1589.956854]  ? mark_lock+0xf5/0x2df0
[ 1589.957214]  ? lock_acquire+0x197/0x470
[ 1589.957574]  ? lock_chain_count+0x20/0x20
[ 1589.957949]  ? mark_lock+0xf5/0x2df0
[ 1589.958302]  ? mark_lock+0xf5/0x2df0
[ 1589.958646]  ? lock_chain_count+0x20/0x20
[ 1589.959025]  ? __lock_acquire+0xbb1/0x5b00
[ 1589.959420]  ? lock_chain_count+0x20/0x20
[ 1589.959820]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1589.960317]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1589.960703]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1589.961192]  ? mark_lock+0xf5/0x2df0
[ 1589.961540]  ? lock_acquire+0x197/0x470
[ 1589.961908]  ? find_held_lock+0x2c/0x110
[ 1589.962290]  ? __might_fault+0xd3/0x180
[ 1589.962666]  ? lock_downgrade+0x6d0/0x6d0
[ 1589.963049]  ? lock_downgrade+0x6d0/0x6d0
[ 1589.963432]  ? sock_has_perm+0x1ea/0x280
[ 1589.963820]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1589.964297]  ? _copy_from_user+0xfb/0x1b0
[ 1589.964691]  ? __import_iovec+0x458/0x590
[ 1589.965073]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1589.965571]  inet6_sendmsg+0x105/0x140
[ 1589.965940]  ? inet6_compat_ioctl+0x320/0x320
[ 1589.966349]  __sock_sendmsg+0xf2/0x190
[ 1589.966709]  ____sys_sendmsg+0x70d/0x870
[ 1589.967092]  ? sock_write_iter+0x3d0/0x3d0
[ 1589.967476]  ? do_recvmmsg+0x6d0/0x6d0
[ 1589.967837]  ? lock_downgrade+0x6d0/0x6d0
[ 1589.968229]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1589.968711]  ___sys_sendmsg+0xf3/0x170
[ 1589.969074]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1589.969520]  ? __fget_files+0x2cf/0x520
[ 1589.969886]  ? lock_downgrade+0x6d0/0x6d0
[ 1589.970279]  ? find_held_lock+0x2c/0x110
[ 1589.970660]  ? __fget_files+0x2f8/0x520
[ 1589.971033]  ? __fget_light+0xea/0x290
[ 1589.971406]  __sys_sendmsg+0xe5/0x1b0
[ 1589.971758]  ? __sys_sendmsg_sock+0x40/0x40
[ 1589.972156]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1589.972600]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1589.973085]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1589.973563]  ? trace_hardirqs_on+0x5b/0x180
[ 1589.973961]  do_syscall_64+0x33/0x40
[ 1589.974303]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1589.974773] RIP: 0033:0x7f9e74c56b19
[ 1589.975117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1589.976743] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1589.978425] FAULT_INJECTION: forcing a failure.
[ 1589.978425] name failslab, interval 1, probability 0, space 0, times 0
[ 1589.981431] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1589.981441] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1589.981449] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1589.981458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1589.981467] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1589.989700] CPU: 0 PID: 8479 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1589.990315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1589.991054] Call Trace:
[ 1589.991296]  dump_stack+0x107/0x167
[ 1589.991631]  should_fail.cold+0x5/0xa
[ 1589.991980]  ? tcp_sendmsg_locked+0x1eae/0x2f20
[ 1589.992388]  should_failslab+0x5/0x20
[ 1589.992741]  kmem_cache_alloc_trace+0x55/0x320
[ 1589.993180]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1589.993666]  tcp_sendmsg_locked+0x1eae/0x2f20
[ 1589.994088]  ? tcp_sendmsg+0x1d/0x50
[ 1589.994440]  ? lock_downgrade+0x6d0/0x6d0
[ 1589.994828]  ? tcp_sendpage+0xd0/0xd0
[ 1589.995183]  ? mark_held_locks+0x9e/0xe0
[ 1589.995563]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1589.996044]  ? __local_bh_enable_ip+0x9d/0x100
[ 1589.996438]  ? tcp_sendmsg_locked+0x2f20/0x2f20
[ 1589.996859]  tcp_sendmsg+0x2b/0x50
[ 1589.997207]  inet_sendmsg+0xb5/0x140
[ 1589.997547]  ? inet_send_prepare+0x540/0x540
[ 1589.997948]  __sock_sendmsg+0x13c/0x190
[ 1589.998312]  ____sys_sendmsg+0x70d/0x870
[ 1589.998686]  ? sock_write_iter+0x3d0/0x3d0
[ 1589.999062]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1589.999431]  ? do_recvmmsg+0x6d0/0x6d0
[ 1589.999761]  ? lock_chain_count+0x20/0x20
[ 1590.000140]  ? lock_downgrade+0x6d0/0x6d0
[ 1590.000528]  __sys_sendmsg_sock+0x26/0x40
21:09:00 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1590.000912]  io_sendmsg+0x1e6/0x830
[ 1590.001266]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1590.001684]  ? mark_lock+0xf5/0x2df0
[ 1590.002042]  ? stack_trace_consume_entry+0x160/0x160
[ 1590.002728]  ? lock_acquire+0x197/0x470
[ 1590.003103]  ? lock_acquire+0x197/0x470
[ 1590.003478]  ? __lock_acquire+0xbb1/0x5b00
[ 1590.003877]  io_issue_sqe+0x3b3/0x77b0
[ 1590.004248]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1590.004730]  ? lock_chain_count+0x20/0x20
[ 1590.005126]  ? __is_insn_slot_addr+0x14c/0x290
[ 1590.005556]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1590.006037]  ? io_connect+0x610/0x610
[ 1590.006391]  ? lock_acquire+0x197/0x470
[ 1590.006759]  ? find_held_lock+0x2c/0x110
[ 1590.007141]  ? __fget_files+0x2cf/0x520
[ 1590.007511]  ? lock_downgrade+0x6d0/0x6d0
[ 1590.007904]  __io_queue_sqe+0x90/0x9d0
[ 1590.008272]  ? io_issue_sqe+0x77b0/0x77b0
[ 1590.008654]  ? __fget_files+0x2f8/0x520
[ 1590.009036]  io_submit_sqes+0x44aa/0x8610
[ 1590.009462]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1590.009920]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1590.010365]  ? lock_downgrade+0x6d0/0x6d0
[ 1590.010746]  ? find_held_lock+0x2c/0x110
[ 1590.011127]  ? io_submit_sqes+0x8610/0x8610
[ 1590.011535]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1590.011983]  ? wait_for_completion_io+0x270/0x270
[ 1590.012434]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1590.012861]  ? vfs_write+0x354/0xb10
[ 1590.013225]  ? fput_many+0x2f/0x1a0
[ 1590.013563]  ? ksys_write+0x1a9/0x260
[ 1590.013911]  ? __ia32_sys_read+0xb0/0xb0
[ 1590.014289]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1590.014768]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1590.015245]  do_syscall_64+0x33/0x40
[ 1590.015592]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1590.016061] RIP: 0033:0x7f30cfeeeb19
[ 1590.016408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.018064] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1590.018758] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1590.019402] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1590.020048] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1590.020691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1590.021342] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
[ 1590.051218] audit: type=1400 audit(1722719340.289:11): avc:  denied  { write } for  pid=8489 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
21:09:00 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x7000000)

21:09:00 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 31)

21:09:00 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x6)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:00 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:00 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1590.165311] FAULT_INJECTION: forcing a failure.
[ 1590.165311] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1590.168242] CPU: 1 PID: 8500 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1590.169846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1590.171808] Call Trace:
[ 1590.172104]  dump_stack+0x107/0x167
[ 1590.172928]  should_fail.cold+0x5/0xa
[ 1590.173852]  __alloc_pages_nodemask+0x182/0x600
[ 1590.174978]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1590.175617]  ? do_raw_spin_lock+0x121/0x260
[ 1590.176638]  ? kasan_unpoison_shadow+0x33/0x50
[ 1590.177140]  alloc_pages_current+0x187/0x280
[ 1590.177906]  __vmalloc_node_range+0x60a/0x9e0
[ 1590.178351]  ? __vmalloc_node+0x110/0x110
[ 1590.178770]  ? kernel_read_file+0x6b8/0x790
[ 1590.179202]  __vmalloc_node+0xb5/0x110
[ 1590.179588]  ? kernel_read_file+0x6b8/0x790
[ 1590.180027]  kernel_read_file+0x6b8/0x790
[ 1590.180442]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1590.180899]  kernel_read_file_from_fd+0xb8/0x110
[ 1590.181392]  __do_sys_finit_module+0xe8/0x180
[ 1590.181839]  ? __do_sys_init_module+0x230/0x230
[ 1590.182303]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1590.182804]  ? __ia32_sys_read+0xb0/0xb0
[ 1590.183214]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1590.183734]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1590.184249]  ? trace_hardirqs_on+0x5b/0x180
[ 1590.184680]  do_syscall_64+0x33/0x40
[ 1590.185052]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1590.185570] RIP: 0033:0x7f71c9c30b19
[ 1590.185944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.187753] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1590.188507] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1590.189219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1590.189919] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1590.190621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1590.191321] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:09:00 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x27000000)

21:09:13 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:13 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x7, 0x101000)
write$bt_hci(r1, &(0x7f0000000100)={0x1, @read_local_amp_assoc={{0x140a, 0x5}, {0xc8, 0x3ff, 0x1}}}, 0x9)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0x7}}, './file0\x00'})
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0xff8a)

21:09:13 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

21:09:13 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:13 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:13 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 32)

21:09:13 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x4f0c0000)

21:09:13 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 26)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1603.529712] FAULT_INJECTION: forcing a failure.
[ 1603.529712] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1603.530808] CPU: 1 PID: 8531 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1603.531388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.532081] Call Trace:
[ 1603.532318]  dump_stack+0x107/0x167
[ 1603.532630]  should_fail.cold+0x5/0xa
[ 1603.532958]  __alloc_pages_nodemask+0x182/0x600
[ 1603.533377]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1603.533891]  ? do_raw_spin_lock+0x121/0x260
[ 1603.534263]  ? kasan_unpoison_shadow+0x33/0x50
[ 1603.534657]  alloc_pages_current+0x187/0x280
[ 1603.535039]  __vmalloc_node_range+0x60a/0x9e0
[ 1603.535434]  ? __vmalloc_node+0x110/0x110
[ 1603.535792]  ? kernel_read_file+0x6b8/0x790
[ 1603.536161]  __vmalloc_node+0xb5/0x110
[ 1603.536491]  ? kernel_read_file+0x6b8/0x790
[ 1603.536859]  kernel_read_file+0x6b8/0x790
[ 1603.537222]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1603.537632]  kernel_read_file_from_fd+0xb8/0x110
[ 1603.538041]  __do_sys_finit_module+0xe8/0x180
[ 1603.538426]  ? __do_sys_init_module+0x230/0x230
[ 1603.538827]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1603.539254]  ? __ia32_sys_read+0xb0/0xb0
[ 1603.539607]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.540055]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1603.540107] FAULT_INJECTION: forcing a failure.
[ 1603.540107] name failslab, interval 1, probability 0, space 0, times 0
[ 1603.540490]  ? trace_hardirqs_on+0x5b/0x180
[ 1603.540507]  do_syscall_64+0x33/0x40
[ 1603.542201]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1603.542631] RIP: 0033:0x7f71c9c30b19
[ 1603.542951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.544493] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1603.545139] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1603.545760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1603.546364] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.546967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1603.547567] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1603.548191] CPU: 0 PID: 8533 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1603.548791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.549582] Call Trace:
[ 1603.549816]  dump_stack+0x107/0x167
[ 1603.550181]  should_fail.cold+0x5/0xa
[ 1603.550510]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1603.550956]  ? create_object.isra.0+0x3a/0xa20
[ 1603.551393]  should_failslab+0x5/0x20
[ 1603.551718]  kmem_cache_alloc+0x5b/0x310
[ 1603.552121]  ? mark_held_locks+0x9e/0xe0
[ 1603.552468]  create_object.isra.0+0x3a/0xa20
[ 1603.552839]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1603.553386]  kmem_cache_alloc_node+0x169/0x330
[ 1603.553733] FAULT_INJECTION: forcing a failure.
[ 1603.553733] name failslab, interval 1, probability 0, space 0, times 0
[ 1603.553779]  __alloc_skb+0x6d/0x5b0
[ 1603.555015]  skb_segment+0x9d8/0x3aa0
[ 1603.555917]  ? lock_chain_count+0x20/0x20
[ 1603.556347]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1603.556771]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.557281]  __udp_gso_segment+0x11c6/0x1830
[ 1603.557657]  ? __sk_receive_skb+0x830/0x830
[ 1603.558027]  udp4_ufo_fragment+0x528/0x720
[ 1603.558462]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1603.558886]  inet_gso_segment+0x4fb/0x11a0
[ 1603.559302]  skb_mac_gso_segment+0x273/0x570
[ 1603.559673]  ? inet_sock_destruct+0x840/0x840
[ 1603.560093]  ? skb_network_protocol+0x650/0x650
[ 1603.560490]  ? skb_crc32c_csum_help+0x80/0x80
[ 1603.560867]  ? lock_acquire+0x197/0x470
[ 1603.561257]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1603.561639]  __skb_gso_segment+0x32d/0x6d0
[ 1603.562001]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1603.562517]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1603.562906]  __dev_queue_xmit+0x87b/0x2710
[ 1603.563320]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1603.563716]  ? mark_held_locks+0x9e/0xe0
[ 1603.564113]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1603.564561]  neigh_connected_output+0x382/0x4d0
[ 1603.564963]  ip_finish_output2+0x6f1/0x21f0
[ 1603.565393]  ? nf_hook_slow+0xfc/0x1e0
[ 1603.565734]  ? ip_frag_next+0x9e0/0x9e0
[ 1603.566154]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1603.566583]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1603.566999]  ? ip_fragment.constprop.0+0x240/0x240
[ 1603.567459]  ? nf_hook+0x510/0x510
[ 1603.567769]  ip_output+0x2f7/0x600
[ 1603.568126]  ip_send_skb+0xdd/0x260
[ 1603.568439]  udp_send_skb+0x6da/0x11d0
[ 1603.568775]  udp_sendmsg+0x139a/0x2160
[ 1603.569156]  ? lock_acquire+0x197/0x470
[ 1603.569522]  ? ip_frag_init+0x350/0x350
[ 1603.569861]  ? mark_lock+0xf5/0x2df0
[ 1603.570254]  ? lock_chain_count+0x20/0x20
[ 1603.570605]  ? udp_setsockopt+0xc0/0xc0
[ 1603.570942]  ? lock_chain_count+0x20/0x20
[ 1603.571347]  ? mark_lock+0xf5/0x2df0
[ 1603.571664]  ? mark_lock+0xf5/0x2df0
[ 1603.571981]  ? lock_chain_count+0x20/0x20
[ 1603.572383]  ? lock_chain_count+0x20/0x20
[ 1603.572747]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.573261]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1603.573617]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1603.574133]  ? perf_event_update_userpage+0x4aa/0x7f0
[ 1603.574579]  ? mark_lock+0xf5/0x2df0
[ 1603.574900]  ? lock_acquire+0x197/0x470
[ 1603.575284]  ? find_held_lock+0x2c/0x110
[ 1603.575632]  ? __might_fault+0xd3/0x180
[ 1603.575970]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.576372]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.576726]  ? sock_has_perm+0x1ea/0x280
[ 1603.577120]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1603.577578]  ? _copy_from_user+0xfb/0x1b0
[ 1603.577934]  ? __import_iovec+0x458/0x590
[ 1603.578355]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1603.578790]  inet6_sendmsg+0x105/0x140
[ 1603.579167]  ? inet6_compat_ioctl+0x320/0x320
[ 1603.579542]  __sock_sendmsg+0xf2/0x190
[ 1603.579868]  ____sys_sendmsg+0x70d/0x870
[ 1603.580258]  ? sock_write_iter+0x3d0/0x3d0
[ 1603.580611]  ? do_recvmmsg+0x6d0/0x6d0
[ 1603.580939]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.581354]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.581795]  ___sys_sendmsg+0xf3/0x170
[ 1603.582200]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1603.582586]  ? __fget_files+0x2cf/0x520
[ 1603.582920]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.583316]  ? find_held_lock+0x2c/0x110
[ 1603.583663]  ? __fget_files+0x2f8/0x520
[ 1603.584001]  ? __fget_light+0xea/0x290
[ 1603.584383]  __sys_sendmsg+0xe5/0x1b0
[ 1603.584702]  ? __sys_sendmsg_sock+0x40/0x40
[ 1603.585111]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1603.585528]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.585965]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1603.586466]  ? trace_hardirqs_on+0x5b/0x180
[ 1603.586827]  do_syscall_64+0x33/0x40
[ 1603.587191]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1603.587617] RIP: 0033:0x7f9e74c56b19
[ 1603.587929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.589536] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1603.590242] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1603.590829] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1603.591466] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.592102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1603.592691] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1603.593364] CPU: 1 PID: 8521 Comm: syz-executor.1 Not tainted 5.10.223 #1
[ 1603.593950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.594639] Call Trace:
[ 1603.594865]  dump_stack+0x107/0x167
[ 1603.595176]  should_fail.cold+0x5/0xa
[ 1603.595501]  ? tcp_sendmsg_locked+0x1eae/0x2f20
[ 1603.595898]  should_failslab+0x5/0x20
[ 1603.596221]  kmem_cache_alloc_trace+0x55/0x320
[ 1603.596606]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.597051]  tcp_sendmsg_locked+0x1eae/0x2f20
[ 1603.597447]  ? tcp_sendmsg+0x1d/0x50
[ 1603.597767]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.598120]  ? tcp_sendpage+0xd0/0xd0
[ 1603.598445]  ? mark_held_locks+0x9e/0xe0
[ 1603.598795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.599237]  ? __local_bh_enable_ip+0x9d/0x100
[ 1603.599621]  ? tcp_sendmsg_locked+0x2f20/0x2f20
[ 1603.600013]  tcp_sendmsg+0x2b/0x50
[ 1603.600317]  inet_sendmsg+0xb5/0x140
[ 1603.600631]  ? inet_send_prepare+0x540/0x540
[ 1603.601003]  __sock_sendmsg+0x13c/0x190
[ 1603.601358]  ____sys_sendmsg+0x70d/0x870
[ 1603.601704]  ? sock_write_iter+0x3d0/0x3d0
[ 1603.602064]  ? sendmsg_copy_msghdr+0xba/0x160
[ 1603.602441]  ? do_recvmmsg+0x6d0/0x6d0
[ 1603.602770]  ? lock_chain_count+0x20/0x20
[ 1603.603124]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.603481]  __sys_sendmsg_sock+0x26/0x40
[ 1603.603834]  io_sendmsg+0x1e6/0x830
[ 1603.604146]  ? io_setup_async_msg+0x2d0/0x2d0
[ 1603.604530]  ? mark_lock+0xf5/0x2df0
[ 1603.604860]  ? stack_trace_consume_entry+0x160/0x160
[ 1603.605314]  ? lock_acquire+0x197/0x470
[ 1603.605658]  ? __lock_acquire+0xbb1/0x5b00
[ 1603.606018]  io_issue_sqe+0x3b3/0x77b0
[ 1603.606356]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.606796]  ? lock_chain_count+0x20/0x20
[ 1603.607147]  ? __is_insn_slot_addr+0x14c/0x290
[ 1603.607536]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.607976]  ? io_connect+0x610/0x610
[ 1603.608303]  ? lock_acquire+0x197/0x470
[ 1603.608639]  ? find_held_lock+0x2c/0x110
[ 1603.608989]  ? __fget_files+0x2cf/0x520
[ 1603.609343]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.609696]  __io_queue_sqe+0x90/0x9d0
[ 1603.610030]  ? io_issue_sqe+0x77b0/0x77b0
[ 1603.610379]  ? __fget_files+0x2f8/0x520
[ 1603.610726]  io_submit_sqes+0x44aa/0x8610
[ 1603.611095]  ? __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1603.611519]  __do_sys_io_uring_enter+0x6b5/0x18c0
[ 1603.611929]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.612277]  ? find_held_lock+0x2c/0x110
[ 1603.612624]  ? io_submit_sqes+0x8610/0x8610
[ 1603.612995]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1603.613420]  ? wait_for_completion_io+0x270/0x270
[ 1603.613828]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1603.614219]  ? vfs_write+0x354/0xb10
[ 1603.614539]  ? fput_many+0x2f/0x1a0
[ 1603.614848]  ? ksys_write+0x1a9/0x260
[ 1603.615171]  ? __ia32_sys_read+0xb0/0xb0
[ 1603.615522]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.615975]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1603.616422]  do_syscall_64+0x33/0x40
[ 1603.616746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1603.617187] RIP: 0033:0x7f30cfeeeb19
[ 1603.617521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.619046] RSP: 002b:00007f30cd464188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1603.619685] RAX: ffffffffffffffda RBX: 00007f30d0001f60 RCX: 00007f30cfeeeb19
[ 1603.620281] RDX: 0000000000000000 RSI: 0000000000003491 RDI: 0000000000000005
[ 1603.620884] RBP: 00007f30cd4641d0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.621508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1603.622110] R13: 00007ffc62bfb71f R14: 00007f30cd464300 R15: 0000000000022000
21:09:13 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 27)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1603.656415] FAULT_INJECTION: forcing a failure.
[ 1603.656415] name failslab, interval 1, probability 0, space 0, times 0
[ 1603.657516] CPU: 0 PID: 8540 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1603.658663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.659394] Call Trace:
[ 1603.659625]  dump_stack+0x107/0x167
[ 1603.659937]  should_fail.cold+0x5/0xa
[ 1603.660315]  should_failslab+0x5/0x20
[ 1603.660637]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1603.661130]  ? skb_segment+0x9d8/0x3aa0
[ 1603.661488]  __alloc_skb+0xb1/0x5b0
[ 1603.661798]  skb_segment+0x9d8/0x3aa0
[ 1603.662170]  ? lock_chain_count+0x20/0x20
[ 1603.662544]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1603.662968]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.663463]  __udp_gso_segment+0x11c6/0x1830
[ 1603.663830]  ? __sk_receive_skb+0x830/0x830
[ 1603.664250]  udp4_ufo_fragment+0x528/0x720
[ 1603.664611]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1603.665030]  inet_gso_segment+0x4fb/0x11a0
[ 1603.665493]  skb_mac_gso_segment+0x273/0x570
[ 1603.665863]  ? inet_sock_destruct+0x840/0x840
[ 1603.666289]  ? skb_network_protocol+0x650/0x650
[ 1603.666676]  ? skb_crc32c_csum_help+0x80/0x80
[ 1603.667101]  ? lock_acquire+0x197/0x470
[ 1603.667435]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1603.667810]  __skb_gso_segment+0x32d/0x6d0
[ 1603.668223]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1603.668662]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1603.669115]  __dev_queue_xmit+0x87b/0x2710
[ 1603.669502]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1603.669894]  ? mark_held_locks+0x9e/0xe0
[ 1603.670285]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1603.670729]  neigh_connected_output+0x382/0x4d0
[ 1603.671180]  ip_finish_output2+0x6f1/0x21f0
[ 1603.671545]  ? nf_hook_slow+0xfc/0x1e0
[ 1603.671874]  ? ip_frag_next+0x9e0/0x9e0
[ 1603.672257]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1603.672682]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1603.673173]  ? ip_fragment.constprop.0+0x240/0x240
[ 1603.673594]  ? nf_hook+0x510/0x510
[ 1603.673906]  ip_output+0x2f7/0x600
[ 1603.674261]  ip_send_skb+0xdd/0x260
[ 1603.674570]  udp_send_skb+0x6da/0x11d0
[ 1603.674905]  udp_sendmsg+0x139a/0x2160
[ 1603.675280]  ? mark_lock+0xf5/0x2df0
[ 1603.675595]  ? ip_frag_init+0x350/0x350
[ 1603.675929]  ? lock_chain_count+0x20/0x20
[ 1603.676350]  ? udp_setsockopt+0xc0/0xc0
[ 1603.676682]  ? mark_lock+0xf5/0x2df0
[ 1603.676994]  ? lock_acquire+0x197/0x470
[ 1603.677424]  ? lock_chain_count+0x20/0x20
[ 1603.677772]  ? mark_lock+0xf5/0x2df0
[ 1603.678137]  ? mark_lock+0xf5/0x2df0
[ 1603.678450]  ? lock_chain_count+0x20/0x20
[ 1603.678794]  ? __lock_acquire+0xbb1/0x5b00
[ 1603.679199]  ? lock_chain_count+0x20/0x20
[ 1603.679557]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.680004]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1603.680403]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1603.680838]  ? mark_lock+0xf5/0x2df0
[ 1603.681236]  ? lock_acquire+0x197/0x470
[ 1603.681574]  ? find_held_lock+0x2c/0x110
[ 1603.681919]  ? __might_fault+0xd3/0x180
[ 1603.682303]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.682653]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.683003]  ? sock_has_perm+0x1ea/0x280
[ 1603.683392]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1603.683829]  ? _copy_from_user+0xfb/0x1b0
[ 1603.684238]  ? __import_iovec+0x458/0x590
[ 1603.684588]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1603.685021]  inet6_sendmsg+0x105/0x140
[ 1603.685455]  ? inet6_compat_ioctl+0x320/0x320
[ 1603.685879]  __sock_sendmsg+0xf2/0x190
[ 1603.686302]  ____sys_sendmsg+0x70d/0x870
[ 1603.686689]  ? sock_write_iter+0x3d0/0x3d0
[ 1603.687143]  ? do_recvmmsg+0x6d0/0x6d0
[ 1603.687522]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.687921]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1603.688472]  ___sys_sendmsg+0xf3/0x170
[ 1603.688849]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1603.689370]  ? __fget_files+0x2cf/0x520
[ 1603.689746]  ? lock_downgrade+0x6d0/0x6d0
[ 1603.690193]  ? find_held_lock+0x2c/0x110
[ 1603.690587]  ? __fget_files+0x2f8/0x520
[ 1603.690973]  ? __fget_light+0xea/0x290
[ 1603.691399]  __sys_sendmsg+0xe5/0x1b0
[ 1603.691759]  ? __sys_sendmsg_sock+0x40/0x40
[ 1603.692219]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1603.692670]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.693251]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1603.693736]  ? trace_hardirqs_on+0x5b/0x180
[ 1603.694203]  do_syscall_64+0x33/0x40
[ 1603.694555]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1603.695035] RIP: 0033:0x7f9e74c56b19
[ 1603.695436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.697303] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1603.698015] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1603.698731] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1603.699458] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.700177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1603.700846] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:09:13 executing program 4:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x10800, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000080)={{0x0, 0x8, 0x8f, 0x7f, 0x3, 0x1ff, 0x200, 0x40, 0x0, 0x3, 0x95, 0x6, 0x800, 0x4, 0x3}, 0x10, [0x0, 0x0]})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

21:09:13 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:13 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xffffe000)

21:09:13 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 33)

21:09:13 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x7)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:13 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1603.803809] FAULT_INJECTION: forcing a failure.
[ 1603.803809] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1603.804943] CPU: 0 PID: 8552 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1603.805594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.806353] Call Trace:
[ 1603.806599]  dump_stack+0x107/0x167
[ 1603.806917]  should_fail.cold+0x5/0xa
[ 1603.807328]  __alloc_pages_nodemask+0x182/0x600
[ 1603.807731]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1603.808297]  ? do_raw_spin_lock+0x121/0x260
[ 1603.808689]  ? kasan_unpoison_shadow+0x33/0x50
[ 1603.809155]  alloc_pages_current+0x187/0x280
[ 1603.809584]  __vmalloc_node_range+0x60a/0x9e0
[ 1603.809989]  ? __vmalloc_node+0x110/0x110
[ 1603.810399]  ? kernel_read_file+0x6b8/0x790
[ 1603.810770]  __vmalloc_node+0xb5/0x110
[ 1603.811185]  ? kernel_read_file+0x6b8/0x790
[ 1603.811561]  kernel_read_file+0x6b8/0x790
[ 1603.811922]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1603.812374]  kernel_read_file_from_fd+0xb8/0x110
[ 1603.812787]  __do_sys_finit_module+0xe8/0x180
[ 1603.813243]  ? __do_sys_init_module+0x230/0x230
[ 1603.813662]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1603.814147]  ? __ia32_sys_read+0xb0/0xb0
[ 1603.814510]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1603.814956]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1603.815465]  ? trace_hardirqs_on+0x5b/0x180
[ 1603.815833]  do_syscall_64+0x33/0x40
[ 1603.816199]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1603.816630] RIP: 0033:0x7f71c9c30b19
[ 1603.816948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.818635] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1603.819362] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1603.819967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1603.820620] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.821284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1603.821893] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:09:14 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:14 executing program 4:
r0 = socket$inet(0x2, 0x0, 0x80)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000080)={0x0, 0x4fd, 0xaa})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x408480, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:09:14 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x200000000000)

[ 1603.974491] Module has invalid ELF structures
21:09:26 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 34)

21:09:26 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

21:09:26 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:26 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:26 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 28)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:26 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:26 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x10c00000000000)

21:09:26 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

[ 1616.502357] FAULT_INJECTION: forcing a failure.
[ 1616.502357] name failslab, interval 1, probability 0, space 0, times 0
[ 1616.503418] CPU: 0 PID: 8580 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1616.503940] FAULT_INJECTION: forcing a failure.
[ 1616.503940] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1616.504025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1616.504037] Call Trace:
[ 1616.506256]  dump_stack+0x107/0x167
[ 1616.506573]  should_fail.cold+0x5/0xa
[ 1616.506907]  ? create_object.isra.0+0x3a/0xa20
[ 1616.507308]  should_failslab+0x5/0x20
[ 1616.507636]  kmem_cache_alloc+0x5b/0x310
[ 1616.507991]  create_object.isra.0+0x3a/0xa20
[ 1616.508373]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1616.508815]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1616.509254]  ? skb_segment+0x9d8/0x3aa0
[ 1616.509694]  __alloc_skb+0xb1/0x5b0
[ 1616.510528]  skb_segment+0x9d8/0x3aa0
[ 1616.510854]  ? lock_chain_count+0x20/0x20
[ 1616.511278]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1616.511701]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.512201]  __udp_gso_segment+0x11c6/0x1830
[ 1616.512572]  ? __sk_receive_skb+0x830/0x830
[ 1616.512945]  udp4_ufo_fragment+0x528/0x720
[ 1616.513412]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1616.513840]  inet_gso_segment+0x4fb/0x11a0
[ 1616.514259]  skb_mac_gso_segment+0x273/0x570
[ 1616.514631]  ? inet_sock_destruct+0x840/0x840
[ 1616.515054]  ? skb_network_protocol+0x650/0x650
[ 1616.515447]  ? skb_crc32c_csum_help+0x80/0x80
[ 1616.515825]  ? lock_acquire+0x197/0x470
[ 1616.516217]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1616.516593]  __skb_gso_segment+0x32d/0x6d0
[ 1616.517015]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1616.517479]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1616.517867]  __dev_queue_xmit+0x87b/0x2710
[ 1616.518282]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1616.518675]  ? mark_held_locks+0x9e/0xe0
[ 1616.519073]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1616.519519]  neigh_connected_output+0x382/0x4d0
[ 1616.519923]  ip_finish_output2+0x6f1/0x21f0
[ 1616.520334]  ? nf_hook_slow+0xfc/0x1e0
[ 1616.520665]  ? ip_frag_next+0x9e0/0x9e0
[ 1616.521089]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1616.521533]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1616.521949]  ? ip_fragment.constprop.0+0x240/0x240
[ 1616.522701]  ? nf_hook+0x510/0x510
[ 1616.523061]  ip_output+0x2f7/0x600
[ 1616.523370]  ip_send_skb+0xdd/0x260
[ 1616.523681]  udp_send_skb+0x6da/0x11d0
[ 1616.524069]  udp_sendmsg+0x139a/0x2160
[ 1616.524398]  ? mark_lock+0xf5/0x2df0
[ 1616.524714]  ? ip_frag_init+0x350/0x350
[ 1616.525125]  ? lock_chain_count+0x20/0x20
[ 1616.525490]  ? udp_setsockopt+0xc0/0xc0
[ 1616.525825]  ? mark_lock+0xf5/0x2df0
[ 1616.526192]  ? lock_acquire+0x197/0x470
[ 1616.526531]  ? lock_chain_count+0x20/0x20
[ 1616.526883]  ? mark_lock+0xf5/0x2df0
[ 1616.527247]  ? mark_lock+0xf5/0x2df0
[ 1616.527563]  ? lock_chain_count+0x20/0x20
[ 1616.527913]  ? __lock_acquire+0xbb1/0x5b00
[ 1616.528318]  ? lock_chain_count+0x20/0x20
[ 1616.528677]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.529198]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1616.529565]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1616.530058]  ? mark_lock+0xf5/0x2df0
[ 1616.530378]  ? lock_acquire+0x197/0x470
[ 1616.530717]  ? find_held_lock+0x2c/0x110
[ 1616.531113]  ? __might_fault+0xd3/0x180
[ 1616.531450]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.531802]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.532201]  ? sock_has_perm+0x1ea/0x280
[ 1616.532545]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1616.533028]  ? _copy_from_user+0xfb/0x1b0
[ 1616.533399]  ? __import_iovec+0x458/0x590
[ 1616.533756]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1616.534267]  inet6_sendmsg+0x105/0x140
[ 1616.534599]  ? inet6_compat_ioctl+0x320/0x320
[ 1616.535030]  __sock_sendmsg+0xf2/0x190
[ 1616.535362]  ____sys_sendmsg+0x70d/0x870
[ 1616.535706]  ? sock_write_iter+0x3d0/0x3d0
[ 1616.536107]  ? do_recvmmsg+0x6d0/0x6d0
[ 1616.536441]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.536797]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.537314]  ___sys_sendmsg+0xf3/0x170
[ 1616.537657]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1616.538094]  ? __fget_files+0x2cf/0x520
[ 1616.538430]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.538780]  ? find_held_lock+0x2c/0x110
[ 1616.539179]  ? __fget_files+0x2f8/0x520
[ 1616.539523]  ? __fget_light+0xea/0x290
[ 1616.539862]  __sys_sendmsg+0xe5/0x1b0
[ 1616.540236]  ? __sys_sendmsg_sock+0x40/0x40
[ 1616.540602]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1616.541054]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1616.541513]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1616.541947]  ? trace_hardirqs_on+0x5b/0x180
[ 1616.542382]  do_syscall_64+0x33/0x40
[ 1616.542700]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1616.543176] RIP: 0033:0x7f9e74c56b19
[ 1616.543494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1616.545115] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1616.545770] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1616.546437] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1616.547080] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1616.547676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1616.548324] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1616.548946] CPU: 1 PID: 8583 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1616.549555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1616.550255] Call Trace:
[ 1616.550489]  dump_stack+0x107/0x167
[ 1616.550800]  should_fail.cold+0x5/0xa
[ 1616.551132]  __alloc_pages_nodemask+0x182/0x600
[ 1616.551526]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1616.552036]  ? do_raw_spin_lock+0x121/0x260
[ 1616.552406]  ? kasan_unpoison_shadow+0x33/0x50
[ 1616.552802]  alloc_pages_current+0x187/0x280
[ 1616.553180]  __vmalloc_node_range+0x60a/0x9e0
[ 1616.553578]  ? __vmalloc_node+0x110/0x110
[ 1616.553939]  ? kernel_read_file+0x6b8/0x790
[ 1616.554304]  __vmalloc_node+0xb5/0x110
[ 1616.554634]  ? kernel_read_file+0x6b8/0x790
[ 1616.555010]  kernel_read_file+0x6b8/0x790
[ 1616.555364]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1616.555759]  kernel_read_file_from_fd+0xb8/0x110
[ 1616.556172]  __do_sys_finit_module+0xe8/0x180
[ 1616.556556]  ? __do_sys_init_module+0x230/0x230
[ 1616.556960]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1616.557397]  ? __ia32_sys_read+0xb0/0xb0
[ 1616.557755]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1616.558203]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1616.558641]  ? trace_hardirqs_on+0x5b/0x180
[ 1616.559010]  do_syscall_64+0x33/0x40
[ 1616.559328]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1616.559765] RIP: 0033:0x7f71c9c30b19
[ 1616.560085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1616.561634] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1616.562276] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1616.562879] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1616.563475] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1616.564072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1616.564668] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:09:26 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0)

21:09:26 executing program 4:
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.log\x00', 0x80000, 0x2)
r1 = io_uring_setup(0x48ee, &(0x7f00000000c0)={0x0, 0xaf7d, 0x8, 0x2, 0x21e})
copy_file_range(r0, &(0x7f0000000080)=0x9, r1, 0x0, 0x7fffffff, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x40280, 0x100)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8c80, 0x0)
readv(r3, &(0x7f00000001c0)=[{&(0x7f0000000180)=""/10, 0xa}], 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r4 = accept4$inet6(r0, 0x0, &(0x7f0000000500), 0x0)
lseek(r4, 0x6, 0x2)
openat$ptp0(0xffffffffffffff9c, &(0x7f00000004c0), 0x204002, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x53, 0x7, 0x0, 0x8, @buffer={0x0, 0xbf, &(0x7f0000000200)=""/191}, &(0x7f00000002c0), &(0x7f0000000300)=""/232, 0xbadc, 0x10015, 0x0, &(0x7f0000000400)})

[ 1616.598742] Module has invalid ELF structures
21:09:26 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:26 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:26 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 29)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:26 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:09:26 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x70000000000000)

[ 1616.714569] FAULT_INJECTION: forcing a failure.
[ 1616.714569] name failslab, interval 1, probability 0, space 0, times 0
[ 1616.715592] CPU: 0 PID: 8605 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1616.716173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1616.716875] Call Trace:
[ 1616.717110]  dump_stack+0x107/0x167
[ 1616.721412]  should_fail.cold+0x5/0xa
[ 1616.721738]  ? trace_hardirqs_on+0x5b/0x180
[ 1616.722106]  ? __alloc_skb+0x6d/0x5b0
[ 1616.722433]  should_failslab+0x5/0x20
[ 1616.722756]  kmem_cache_alloc_node+0x55/0x330
[ 1616.723140]  __alloc_skb+0x6d/0x5b0
[ 1616.723456]  skb_segment+0x9d8/0x3aa0
[ 1616.723777]  ? lock_chain_count+0x20/0x20
[ 1616.724157]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1616.724578]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.725027]  __udp_gso_segment+0x11c6/0x1830
[ 1616.725406]  ? __sk_receive_skb+0x830/0x830
[ 1616.725781]  udp4_ufo_fragment+0x528/0x720
[ 1616.726142]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1616.726563]  inet_gso_segment+0x4fb/0x11a0
[ 1616.726931]  skb_mac_gso_segment+0x273/0x570
[ 1616.727300]  ? inet_sock_destruct+0x840/0x840
[ 1616.727678]  ? skb_network_protocol+0x650/0x650
[ 1616.728069]  ? skb_crc32c_csum_help+0x80/0x80
[ 1616.728446]  ? lock_acquire+0x197/0x470
[ 1616.728781]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1616.729156]  __skb_gso_segment+0x32d/0x6d0
[ 1616.729528]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1616.729972]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1616.730363]  __dev_queue_xmit+0x87b/0x2710
[ 1616.730727]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1616.731120]  ? mark_held_locks+0x9e/0xe0
[ 1616.731467]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1616.731914]  neigh_connected_output+0x382/0x4d0
[ 1616.732317]  ip_finish_output2+0x6f1/0x21f0
[ 1616.732684]  ? nf_hook_slow+0xfc/0x1e0
[ 1616.733021]  ? ip_frag_next+0x9e0/0x9e0
[ 1616.733365]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1616.733796]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1616.734213]  ? ip_fragment.constprop.0+0x240/0x240
[ 1616.734623]  ? nf_hook+0x510/0x510
[ 1616.734931]  ip_output+0x2f7/0x600
[ 1616.735238]  ip_send_skb+0xdd/0x260
[ 1616.735549]  udp_send_skb+0x6da/0x11d0
[ 1616.735887]  udp_sendmsg+0x139a/0x2160
[ 1616.736214]  ? mark_lock+0xf5/0x2df0
[ 1616.736530]  ? ip_frag_init+0x350/0x350
[ 1616.736869]  ? lock_chain_count+0x20/0x20
[ 1616.737221]  ? udp_setsockopt+0xc0/0xc0
[ 1616.737570]  ? mark_lock+0xf5/0x2df0
[ 1616.737888]  ? lock_acquire+0x197/0x470
[ 1616.738226]  ? lock_chain_count+0x20/0x20
[ 1616.738578]  ? mark_lock+0xf5/0x2df0
[ 1616.738898]  ? mark_lock+0xf5/0x2df0
[ 1616.739212]  ? lock_chain_count+0x20/0x20
[ 1616.739562]  ? __lock_acquire+0xbb1/0x5b00
[ 1616.739922]  ? lock_chain_count+0x20/0x20
[ 1616.740281]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.740733]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1616.741088]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1616.741542]  ? mark_lock+0xf5/0x2df0
[ 1616.741876]  ? lock_acquire+0x197/0x470
[ 1616.742221]  ? find_held_lock+0x2c/0x110
[ 1616.742581]  ? __might_fault+0xd3/0x180
[ 1616.742930]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.743295]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.743660]  ? sock_has_perm+0x1ea/0x280
[ 1616.744010]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1616.744449]  ? _copy_from_user+0xfb/0x1b0
[ 1616.744808]  ? __import_iovec+0x458/0x590
[ 1616.745162]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1616.749623]  inet6_sendmsg+0x105/0x140
[ 1616.749956]  ? inet6_compat_ioctl+0x320/0x320
[ 1616.750333]  __sock_sendmsg+0xf2/0x190
[ 1616.750664]  ____sys_sendmsg+0x70d/0x870
[ 1616.751010]  ? sock_write_iter+0x3d0/0x3d0
[ 1616.751365]  ? do_recvmmsg+0x6d0/0x6d0
[ 1616.751697]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.752050]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1616.752496]  ___sys_sendmsg+0xf3/0x170
[ 1616.752826]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1616.753216]  ? __fget_files+0x2cf/0x520
[ 1616.753566]  ? lock_downgrade+0x6d0/0x6d0
[ 1616.753921]  ? find_held_lock+0x2c/0x110
[ 1616.754271]  ? __fget_files+0x2f8/0x520
[ 1616.754614]  ? __fget_light+0xea/0x290
[ 1616.754950]  __sys_sendmsg+0xe5/0x1b0
[ 1616.755274]  ? __sys_sendmsg_sock+0x40/0x40
[ 1616.755639]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1616.756045]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1616.756487]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1616.756919]  ? trace_hardirqs_on+0x5b/0x180
[ 1616.757284]  do_syscall_64+0x33/0x40
[ 1616.757609]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1616.758041] RIP: 0033:0x7f9e74c56b19
[ 1616.758358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1616.759895] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1616.760537] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1616.761135] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1616.761748] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1616.762346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1616.762943] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:09:27 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="010f0802df0f"], 0x6)

[ 1616.826137] Module has invalid ELF structures
21:09:40 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 35)

21:09:40 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x0, 0x0, 0x0)

21:09:40 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 30)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:40 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:40 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:40 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xe0ffff00000000)

21:09:40 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r5 = dup2(r3, r4)
sendfile(r1, r3, &(0x7f0000000000)=0x400, 0x3)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r7, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r6, r7)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r7, 0x50009417, &(0x7f0000000240)={{r5}, 0x0, 0x4, @inherit={0x50, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000100000000000000ab000000000000000700000000000000020000a32d8f138583f02700000000000800000000000000000090000000000000000000000000000002000000000000"]}, @devid})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:09:40 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x70000000000000)

[ 1629.908597] FAULT_INJECTION: forcing a failure.
[ 1629.908597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1629.909705] CPU: 0 PID: 8626 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1629.910301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1629.911017] Call Trace:
[ 1629.911261]  dump_stack+0x107/0x167
[ 1629.911581]  should_fail.cold+0x5/0xa
[ 1629.911926]  __alloc_pages_nodemask+0x182/0x600
[ 1629.912338]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1629.912867]  ? do_raw_spin_lock+0x121/0x260
[ 1629.913253]  ? kasan_unpoison_shadow+0x33/0x50
[ 1629.913686]  alloc_pages_current+0x187/0x280
[ 1629.914084]  __vmalloc_node_range+0x60a/0x9e0
[ 1629.914485]  ? __vmalloc_node+0x110/0x110
[ 1629.914856]  ? kernel_read_file+0x6b8/0x790
[ 1629.915238]  __vmalloc_node+0xb5/0x110
[ 1629.915579]  ? kernel_read_file+0x6b8/0x790
[ 1629.915965]  kernel_read_file+0x6b8/0x790
[ 1629.916333]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1629.916739]  kernel_read_file_from_fd+0xb8/0x110
[ 1629.917166]  __do_sys_finit_module+0xe8/0x180
[ 1629.917577]  ? __do_sys_init_module+0x230/0x230
[ 1629.917987]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1629.918424]  ? __ia32_sys_read+0xb0/0xb0
[ 1629.918785]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1629.919246]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1629.919695]  ? trace_hardirqs_on+0x5b/0x180
[ 1629.920075]  do_syscall_64+0x33/0x40
[ 1629.920404]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1629.920850] RIP: 0033:0x7f71c9c30b19
[ 1629.921180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.922761] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1629.923421] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1629.924038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1629.924651] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1629.925267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1629.925902] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1629.943978] FAULT_INJECTION: forcing a failure.
[ 1629.943978] name failslab, interval 1, probability 0, space 0, times 0
[ 1629.944997] CPU: 0 PID: 8631 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1629.949496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1629.950230] Call Trace:
[ 1629.950472]  dump_stack+0x107/0x167
[ 1629.950800]  should_fail.cold+0x5/0xa
[ 1629.951145]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1629.951602]  ? create_object.isra.0+0x3a/0xa20
[ 1629.952012]  should_failslab+0x5/0x20
[ 1629.952347]  kmem_cache_alloc+0x5b/0x310
[ 1629.952708]  create_object.isra.0+0x3a/0xa20
[ 1629.953102]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1629.953563]  kmem_cache_alloc_node+0x169/0x330
[ 1629.953980]  __alloc_skb+0x6d/0x5b0
[ 1629.954311]  skb_segment+0x9d8/0x3aa0
[ 1629.954650]  ? lock_chain_count+0x20/0x20
[ 1629.955051]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1629.955493]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.955961]  __udp_gso_segment+0x11c6/0x1830
[ 1629.956345]  ? __sk_receive_skb+0x830/0x830
[ 1629.956730]  udp4_ufo_fragment+0x528/0x720
[ 1629.957109]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1629.957563]  inet_gso_segment+0x4fb/0x11a0
[ 1629.957948]  skb_mac_gso_segment+0x273/0x570
[ 1629.958334]  ? inet_sock_destruct+0x840/0x840
[ 1629.958729]  ? skb_network_protocol+0x650/0x650
[ 1629.959138]  ? skb_crc32c_csum_help+0x80/0x80
[ 1629.959533]  ? lock_acquire+0x197/0x470
[ 1629.959886]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1629.960276]  __skb_gso_segment+0x32d/0x6d0
[ 1629.960652]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1629.961111]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1629.961523]  __dev_queue_xmit+0x87b/0x2710
[ 1629.961912]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1629.962321]  ? mark_held_locks+0x9e/0xe0
[ 1629.962684]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1629.963149]  neigh_connected_output+0x382/0x4d0
[ 1629.963570]  ip_finish_output2+0x6f1/0x21f0
[ 1629.963960]  ? nf_hook_slow+0xfc/0x1e0
[ 1629.964304]  ? ip_frag_next+0x9e0/0x9e0
[ 1629.964653]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1629.965102]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1629.965548]  ? ip_fragment.constprop.0+0x240/0x240
[ 1629.965978]  ? nf_hook+0x510/0x510
[ 1629.966303]  ip_output+0x2f7/0x600
[ 1629.966624]  ip_send_skb+0xdd/0x260
[ 1629.966953]  udp_send_skb+0x6da/0x11d0
[ 1629.967306]  udp_sendmsg+0x139a/0x2160
[ 1629.967649]  ? mark_lock+0xf5/0x2df0
[ 1629.967982]  ? ip_frag_init+0x350/0x350
[ 1629.968333]  ? lock_chain_count+0x20/0x20
[ 1629.968701]  ? udp_setsockopt+0xc0/0xc0
[ 1629.969051]  ? mark_lock+0xf5/0x2df0
[ 1629.969381]  ? lock_acquire+0x197/0x470
[ 1629.969752]  ? lock_chain_count+0x20/0x20
[ 1629.970122]  ? mark_lock+0xf5/0x2df0
[ 1629.970184] Module has invalid ELF structures
[ 1629.970460]  ? mark_lock+0xf5/0x2df0
[ 1629.971222]  ? lock_chain_count+0x20/0x20
[ 1629.971585]  ? __lock_acquire+0xbb1/0x5b00
[ 1629.971963]  ? lock_chain_count+0x20/0x20
[ 1629.972342]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.972816]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1629.972877] Module has invalid ELF structures
[ 1629.973197]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1629.974034]  ? mark_lock+0xf5/0x2df0
[ 1629.974369]  ? lock_acquire+0x197/0x470
[ 1629.974715]  ? find_held_lock+0x2c/0x110
[ 1629.975084]  ? __might_fault+0xd3/0x180
[ 1629.975433]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.975808]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.976194]  ? sock_has_perm+0x1ea/0x280
[ 1629.976560]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1629.977018]  ? _copy_from_user+0xfb/0x1b0
[ 1629.977395]  ? __import_iovec+0x458/0x590
[ 1629.977781]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1629.978241]  inet6_sendmsg+0x105/0x140
[ 1629.978586]  ? inet6_compat_ioctl+0x320/0x320
[ 1629.978981]  __sock_sendmsg+0xf2/0x190
[ 1629.979329]  ____sys_sendmsg+0x70d/0x870
[ 1629.979691]  ? sock_write_iter+0x3d0/0x3d0
[ 1629.980063]  ? do_recvmmsg+0x6d0/0x6d0
[ 1629.980411]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.980778]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1629.981248]  ___sys_sendmsg+0xf3/0x170
[ 1629.981608]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1629.982016]  ? __fget_files+0x2cf/0x520
[ 1629.982365]  ? lock_downgrade+0x6d0/0x6d0
[ 1629.982732]  ? find_held_lock+0x2c/0x110
[ 1629.983103]  ? __fget_files+0x2f8/0x520
[ 1629.983461]  ? __fget_light+0xea/0x290
[ 1629.983815]  __sys_sendmsg+0xe5/0x1b0
[ 1629.984160]  ? __sys_sendmsg_sock+0x40/0x40
[ 1629.984539]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1629.984967]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1629.985427]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1629.985892]  ? trace_hardirqs_on+0x5b/0x180
[ 1629.986272]  do_syscall_64+0x33/0x40
[ 1629.986599]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1629.987050] RIP: 0033:0x7f9e74c56b19
[ 1629.987381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1629.988953] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1629.989627] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1629.990243] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1629.990867] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1629.991485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1629.992110] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:09:40 executing program 7:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:40 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x100000000000000)

21:09:40 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:40 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000080))
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0x3, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x800)
ioctl$sock_bt_hci(r2, 0xc0000032, &(0x7f0000000200)="30261ed2ff27774463239f1d7d5f6bb05c0c97b8e8f80fdd0f7a71e00bc8efd8757cc1b9f1efff828b30acad594e905e51062497bb7b51f7ae7a73e2cd03c357bbdaac0b8a7f890ce858de16d725b510d32b776f2cfe2acacad6cfcaae7781a3504c6b42f79e35a3f7a09a9da95568db63f50312b5ee7ab3948ee4b2089d42f29cfc9f195d31b48985")
write$bt_hci(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="010d0804c90007009100a1769956b64038780eab25f1303939d19a10c2312af7e504f86575885ffc73e1f048b6830dda0fb230c32be1a42686ad5809d2f29ca3f8fa2732"], 0x8)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r3, r4)
ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000000)={{}, 0x0, 0x0, 0xe9a})

[ 1630.196398] Module has invalid ELF structures
21:09:52 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = dup(r0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8983, &(0x7f0000000080)={0x6, 'team_slave_1\x00', {0x2}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x9)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
sendfile(r2, r3, &(0x7f0000000100)=0x22643812, 0x1)
write$bt_hci(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="011f080ec9000500dd0d8fa832e3ef1016b21c14b4a5dc565f329ffba38c6010244f0839dc3945066642f9fb572fec5678abe45981100e19515321b39210826a00e165ec3dfc136caa7ac01654780fbf299c1ad481000000000000008141e17447f43ad6f1484dc0147fe0d7ed7e15f31e82f68bdfa825f70c57185658a9d29ffdcd33c18b7d5014df82323f"], 0x8)

21:09:52 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x2, 0x0, 0x0, 0x0)

21:09:52 executing program 7:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:52 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 31)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:09:52 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 36)

21:09:52 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:52 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x200000000000000)

[ 1642.750491] FAULT_INJECTION: forcing a failure.
[ 1642.750491] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1642.753396] CPU: 0 PID: 8668 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1642.754957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1642.756845] Call Trace:
[ 1642.757452]  dump_stack+0x107/0x167
[ 1642.758281]  should_fail.cold+0x5/0xa
[ 1642.759156]  __alloc_pages_nodemask+0x182/0x600
[ 1642.760208]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1642.761577]  ? do_raw_spin_lock+0x121/0x260
[ 1642.762568]  ? kasan_unpoison_shadow+0x33/0x50
[ 1642.763615]  alloc_pages_current+0x187/0x280
[ 1642.764604]  __vmalloc_node_range+0x60a/0x9e0
[ 1642.765640]  ? __vmalloc_node+0x110/0x110
[ 1642.766590]  ? kernel_read_file+0x6b8/0x790
[ 1642.767574]  __vmalloc_node+0xb5/0x110
[ 1642.768457]  ? kernel_read_file+0x6b8/0x790
[ 1642.769440]  kernel_read_file+0x6b8/0x790
[ 1642.770393]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1642.771443]  kernel_read_file_from_fd+0xb8/0x110
[ 1642.772518]  __do_sys_finit_module+0xe8/0x180
[ 1642.773536]  ? __do_sys_init_module+0x230/0x230
[ 1642.774599]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1642.775708]  ? __ia32_sys_read+0xb0/0xb0
[ 1642.776630]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1642.777826]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1642.778986]  ? trace_hardirqs_on+0x5b/0x180
[ 1642.779968]  do_syscall_64+0x33/0x40
[ 1642.780806]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1642.781984] RIP: 0033:0x7f71c9c30b19
[ 1642.782827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1642.787024] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1642.788733] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1642.790367] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1642.791963] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1642.793593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1642.795209] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1642.817614] FAULT_INJECTION: forcing a failure.
[ 1642.817614] name failslab, interval 1, probability 0, space 0, times 0
[ 1642.819654] CPU: 1 PID: 8673 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1642.821160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1642.822983] Call Trace:
[ 1642.823557]  dump_stack+0x107/0x167
[ 1642.824336]  should_fail.cold+0x5/0xa
[ 1642.824965] Module has invalid ELF structures
[ 1642.825171]  should_failslab+0x5/0x20
[ 1642.827141]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1642.828235]  ? skb_segment+0x9d8/0x3aa0
[ 1642.829089]  __alloc_skb+0xb1/0x5b0
[ 1642.829898]  skb_segment+0x9d8/0x3aa0
[ 1642.830713]  ? lock_chain_count+0x20/0x20
[ 1642.831643]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1642.832715]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1642.833880]  __udp_gso_segment+0x11c6/0x1830
[ 1642.834825]  ? __sk_receive_skb+0x830/0x830
[ 1642.835788]  udp4_ufo_fragment+0x528/0x720
[ 1642.836701]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1642.837805]  inet_gso_segment+0x4fb/0x11a0
[ 1642.838719]  skb_mac_gso_segment+0x273/0x570
[ 1642.839683]  ? inet_sock_destruct+0x840/0x840
[ 1642.840641]  ? skb_network_protocol+0x650/0x650
[ 1642.841668]  ? skb_crc32c_csum_help+0x80/0x80
[ 1642.842636]  ? lock_acquire+0x197/0x470
[ 1642.843505]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1642.844447]  __skb_gso_segment+0x32d/0x6d0
[ 1642.845376]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1642.846518]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1642.847511]  __dev_queue_xmit+0x87b/0x2710
[ 1642.847932]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1642.848949]  ? mark_held_locks+0x9e/0xe0
[ 1642.849843]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1642.851000]  neigh_connected_output+0x382/0x4d0
[ 1642.852021]  ip_finish_output2+0x6f1/0x21f0
[ 1642.852972]  ? nf_hook_slow+0xfc/0x1e0
[ 1642.853812]  ? ip_frag_next+0x9e0/0x9e0
[ 1642.854682]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1642.855766]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1642.856832]  ? ip_fragment.constprop.0+0x240/0x240
[ 1642.857902]  ? nf_hook+0x510/0x510
[ 1642.858692]  ip_output+0x2f7/0x600
[ 1642.859456]  ip_send_skb+0xdd/0x260
[ 1642.860245]  udp_send_skb+0x6da/0x11d0
[ 1642.861083]  udp_sendmsg+0x139a/0x2160
[ 1642.861969]  ? mark_lock+0xf5/0x2df0
[ 1642.862765]  ? ip_frag_init+0x350/0x350
[ 1642.863633]  ? lock_chain_count+0x20/0x20
[ 1642.864518]  ? udp_setsockopt+0xc0/0xc0
[ 1642.865370]  ? mark_lock+0xf5/0x2df0
[ 1642.866175]  ? lock_acquire+0x197/0x470
[ 1642.867049]  ? lock_chain_count+0x20/0x20
[ 1642.867940]  ? mark_lock+0xf5/0x2df0
[ 1642.868752]  ? mark_lock+0xf5/0x2df0
[ 1642.869551]  ? lock_chain_count+0x20/0x20
[ 1642.870464]  ? __lock_acquire+0xbb1/0x5b00
[ 1642.871374]  ? lock_chain_count+0x20/0x20
[ 1642.872289]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1642.873420]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1642.874325]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1642.875454]  ? mark_lock+0xf5/0x2df0
[ 1642.876258]  ? lock_acquire+0x197/0x470
[ 1642.877103]  ? find_held_lock+0x2c/0x110
[ 1642.877987]  ? __might_fault+0xd3/0x180
[ 1642.878849]  ? lock_downgrade+0x6d0/0x6d0
[ 1642.879743]  ? lock_downgrade+0x6d0/0x6d0
[ 1642.880633]  ? sock_has_perm+0x1ea/0x280
[ 1642.881504]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1642.886031]  ? _copy_from_user+0xfb/0x1b0
[ 1642.886433]  ? __import_iovec+0x458/0x590
[ 1642.886839]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1642.887368]  inet6_sendmsg+0x105/0x140
[ 1642.887771]  ? inet6_compat_ioctl+0x320/0x320
[ 1642.888222]  __sock_sendmsg+0xf2/0x190
[ 1642.888615]  ____sys_sendmsg+0x70d/0x870
[ 1642.889012]  ? sock_write_iter+0x3d0/0x3d0
[ 1642.889444]  ? do_recvmmsg+0x6d0/0x6d0
[ 1642.889838]  ? lock_downgrade+0x6d0/0x6d0
[ 1642.890253]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1642.890769]  ___sys_sendmsg+0xf3/0x170
[ 1642.891154]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1642.891629]  ? __fget_files+0x2cf/0x520
[ 1642.892019]  ? lock_downgrade+0x6d0/0x6d0
[ 1642.892446]  ? find_held_lock+0x2c/0x110
[ 1642.892848]  ? __fget_files+0x2f8/0x520
[ 1642.893260]  ? __fget_light+0xea/0x290
[ 1642.893649]  __sys_sendmsg+0xe5/0x1b0
[ 1642.894023]  ? __sys_sendmsg_sock+0x40/0x40
[ 1642.894474]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1642.894944]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1642.895490]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1642.896606]  ? trace_hardirqs_on+0x5b/0x180
[ 1642.897034]  do_syscall_64+0x33/0x40
[ 1642.897420]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1642.897933] RIP: 0033:0x7f9e74c56b19
[ 1642.898324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1642.900133] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1642.900879] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1642.901571] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1642.902318] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1642.903014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1642.903765] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:09:53 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x300000000000000)

[ 1642.959043] Module has invalid ELF structures
21:09:53 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x1, 0x3}, 0x6)

21:09:53 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

21:09:53 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x4, 0x0, 0x0, 0x0)

21:09:53 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x400000000000000)

21:09:53 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r5 = dup2(r3, r4)
sendfile(r1, r3, &(0x7f0000000000)=0x400, 0x3)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r7, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r6, r7)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r7, 0x50009417, &(0x7f0000000240)={{r5}, 0x0, 0x4, @inherit={0x50, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000100000000000000ab000000000000000700000000000000020000a32d8f138583f02700000000000800000000000000000090000000000000000000000000000002000000000000"]}, @devid})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:09:53 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

21:09:53 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:09:53 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 37)

21:09:53 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)

[ 1643.155057] Module has invalid ELF structures
21:09:53 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r5 = dup2(r3, r4)
sendfile(r1, r3, &(0x7f0000000000)=0x400, 0x3)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r7, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r6, r7)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r7, 0x50009417, &(0x7f0000000240)={{r5}, 0x0, 0x4, @inherit={0x50, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000100000000000000ab000000000000000700000000000000020000a32d8f138583f02700000000000800000000000000000090000000000000000000000000000002000000000000"]}, @devid})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1643.203656] FAULT_INJECTION: forcing a failure.
[ 1643.203656] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1643.205032] CPU: 0 PID: 8703 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1643.206580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1643.207457] Call Trace:
[ 1643.208061]  dump_stack+0x107/0x167
[ 1643.208473]  should_fail.cold+0x5/0xa
[ 1643.209330]  __alloc_pages_nodemask+0x182/0x600
[ 1643.209848]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1643.211198]  ? do_raw_spin_lock+0x121/0x260
[ 1643.211678]  ? kasan_unpoison_shadow+0x33/0x50
[ 1643.212707]  alloc_pages_current+0x187/0x280
[ 1643.213192]  __vmalloc_node_range+0x60a/0x9e0
[ 1643.214219]  ? __vmalloc_node+0x110/0x110
[ 1643.214682]  ? kernel_read_file+0x6b8/0x790
[ 1643.215644]  __vmalloc_node+0xb5/0x110
[ 1643.216071]  ? kernel_read_file+0x6b8/0x790
[ 1643.217037]  kernel_read_file+0x6b8/0x790
[ 1643.217499]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1643.218538]  kernel_read_file_from_fd+0xb8/0x110
[ 1643.219063]  __do_sys_finit_module+0xe8/0x180
[ 1643.220068]  ? __do_sys_init_module+0x230/0x230
[ 1643.220580]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1643.221677]  ? __ia32_sys_read+0xb0/0xb0
[ 1643.222130]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1643.223311]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1643.223864]  ? trace_hardirqs_on+0x5b/0x180
[ 1643.224826]  do_syscall_64+0x33/0x40
[ 1643.225237]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1643.226402] RIP: 0033:0x7f71c9c30b19
[ 1643.226813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1643.230951] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1643.231745] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1643.232491] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1643.233242] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1643.233995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:09:53 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x0, 0x173000, 0x0)

[ 1643.234750] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:10:06 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x8, 0x0, 0x0, 0x0)

21:10:06 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x0, 0x173000, 0x0)

[ 1656.029630] FAULT_INJECTION: forcing a failure.
[ 1656.029630] name failslab, interval 1, probability 0, space 0, times 0
[ 1656.030708] CPU: 1 PID: 8728 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1656.031329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1656.032069] Call Trace:
[ 1656.032341]  dump_stack+0x107/0x167
[ 1656.032695]  should_fail.cold+0x5/0xa
[ 1656.033093]  ? create_object.isra.0+0x3a/0xa20
[ 1656.033484]  should_failslab+0x5/0x20
[ 1656.033826]  kmem_cache_alloc+0x5b/0x310
[ 1656.034222]  create_object.isra.0+0x3a/0xa20
[ 1656.034594]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1656.035071]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1656.035501]  ? skb_segment+0x9d8/0x3aa0
[ 1656.035841]  __alloc_skb+0xb1/0x5b0
[ 1656.036208]  skb_segment+0x9d8/0x3aa0
[ 1656.036532]  ? lock_chain_count+0x20/0x20
[ 1656.036908]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1656.037397]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.037868]  __udp_gso_segment+0x11c6/0x1830
[ 1656.038317]  ? __sk_receive_skb+0x830/0x830
[ 1656.038690]  udp4_ufo_fragment+0x528/0x720
[ 1656.039097]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1656.039521]  inet_gso_segment+0x4fb/0x11a0
[ 1656.039889]  skb_mac_gso_segment+0x273/0x570
[ 1656.040312]  ? inet_sock_destruct+0x840/0x840
[ 1656.040689]  ? skb_network_protocol+0x650/0x650
[ 1656.041147]  ? skb_crc32c_csum_help+0x80/0x80
[ 1656.041531]  ? lock_acquire+0x197/0x470
[ 1656.041881]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1656.042307]  __skb_gso_segment+0x32d/0x6d0
[ 1656.042670]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1656.043158]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1656.043545]  __dev_queue_xmit+0x87b/0x2710
[ 1656.043909]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1656.044353]  ? mark_held_locks+0x9e/0xe0
[ 1656.044701]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1656.045216]  neigh_connected_output+0x382/0x4d0
[ 1656.045669]  ip_finish_output2+0x6f1/0x21f0
[ 1656.046093]  ? nf_hook_slow+0xfc/0x1e0
[ 1656.046425]  ? ip_frag_next+0x9e0/0x9e0
[ 1656.046761]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1656.047237]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1656.047653]  ? ip_fragment.constprop.0+0x240/0x240
[ 1656.048116]  ? nf_hook+0x510/0x510
[ 1656.048426]  ip_output+0x2f7/0x600
[ 1656.048730]  ip_send_skb+0xdd/0x260
[ 1656.049112]  udp_send_skb+0x6da/0x11d0
[ 1656.049449]  udp_sendmsg+0x139a/0x2160
[ 1656.049791]  ? mark_lock+0xf5/0x2df0
[ 1656.050156]  ? ip_frag_init+0x350/0x350
[ 1656.050493]  ? lock_chain_count+0x20/0x20
[ 1656.050847]  ? udp_setsockopt+0xc0/0xc0
[ 1656.051228]  ? mark_lock+0xf5/0x2df0
[ 1656.051544]  ? lock_acquire+0x197/0x470
[ 1656.051885]  ? lock_chain_count+0x20/0x20
[ 1656.052284]  ? mark_lock+0xf5/0x2df0
[ 1656.052614]  ? mark_lock+0xf5/0x2df0
[ 1656.052997]  ? lock_chain_count+0x20/0x20
[ 1656.053357]  ? __lock_acquire+0xbb1/0x5b00
[ 1656.053713]  ? lock_chain_count+0x20/0x20
[ 1656.054132]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.054586]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1656.054976]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1656.055425]  ? mark_lock+0xf5/0x2df0
[ 1656.055745]  ? lock_acquire+0x197/0x470
[ 1656.056134]  ? find_held_lock+0x2c/0x110
[ 1656.056483]  ? __might_fault+0xd3/0x180
[ 1656.056820]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.057240]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.057593]  ? sock_has_perm+0x1ea/0x280
[ 1656.057996]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1656.058439]  ? _copy_from_user+0xfb/0x1b0
[ 1656.058795]  ? __import_iovec+0x458/0x590
[ 1656.059191]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1656.059631]  inet6_sendmsg+0x105/0x140
[ 1656.060012]  ? inet6_compat_ioctl+0x320/0x320
[ 1656.060393]  __sock_sendmsg+0xf2/0x190
[ 1656.060722]  ____sys_sendmsg+0x70d/0x870
21:10:06 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000240)={0x1f, 0x0, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x181900, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x110, r2, 0x8000000)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r1)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r3, r4)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000000))

21:10:06 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x500000000000000)

21:10:06 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:10:06 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r5 = dup2(r3, r4)
sendfile(r1, r3, &(0x7f0000000000)=0x400, 0x3)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r7, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r6, r7)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r7, 0x50009417, &(0x7f0000000240)={{r5}, 0x0, 0x4, @inherit={0x50, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000100000000000000ab000000000000000700000000000000020000a32d8f138583f02700000000000800000000000000000090000000000000000000000000000002000000000000"]}, @devid})
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:10:06 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 32)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:06 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 38)

[ 1656.061138]  ? sock_write_iter+0x3d0/0x3d0
[ 1656.061781]  ? do_recvmmsg+0x6d0/0x6d0
[ 1656.062278]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.062638]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.063130]  ___sys_sendmsg+0xf3/0x170
[ 1656.063463]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1656.063851]  ? __fget_files+0x2cf/0x520
[ 1656.064238]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.064590]  ? find_held_lock+0x2c/0x110
[ 1656.065158]  ? __fget_files+0x2f8/0x520
[ 1656.065500]  ? __fget_light+0xea/0x290
[ 1656.065845]  __sys_sendmsg+0xe5/0x1b0
[ 1656.066220]  ? __sys_sendmsg_sock+0x40/0x40
[ 1656.066584]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1656.067038]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1656.067480]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1656.067914]  ? trace_hardirqs_on+0x5b/0x180
[ 1656.068329]  do_syscall_64+0x33/0x40
[ 1656.068646]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1656.069145] RIP: 0033:0x7f9e74c56b19
[ 1656.069460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.069880] Module has invalid ELF structures
[ 1656.071092] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1656.071106] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1656.071113] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1656.071120] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1656.071127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1656.071134] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1656.081781] audit: type=1400 audit(1722719406.320:12): avc:  denied  { map } for  pid=8722 comm="syz-executor.4" path="pipe:[41393]" dev="pipefs" ino=41393 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[ 1656.093559] FAULT_INJECTION: forcing a failure.
[ 1656.093559] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1656.094723] CPU: 0 PID: 8733 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1656.095459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1656.096284] Call Trace:
[ 1656.096536]  dump_stack+0x107/0x167
[ 1656.096889]  should_fail.cold+0x5/0xa
[ 1656.097245]  __alloc_pages_nodemask+0x182/0x600
[ 1656.097687]  ? asm_sysvec_call_function_single+0x12/0x20
[ 1656.098197]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1656.098760]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1656.099237]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1656.099732]  alloc_pages_current+0x187/0x280
[ 1656.100140]  __vmalloc_node_range+0x60a/0x9e0
[ 1656.100554]  ? __vmalloc_node+0x110/0x110
[ 1656.100943]  ? kernel_read_file+0x6b8/0x790
[ 1656.101335]  __vmalloc_node+0xb5/0x110
[ 1656.101711]  ? kernel_read_file+0x6b8/0x790
[ 1656.102124]  kernel_read_file+0x6b8/0x790
[ 1656.102494]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1656.102881]  kernel_read_file_from_fd+0xb8/0x110
[ 1656.103278]  __do_sys_finit_module+0xe8/0x180
[ 1656.103649]  ? __do_sys_init_module+0x230/0x230
[ 1656.104033]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1656.104446]  ? __ia32_sys_read+0xb0/0xb0
[ 1656.104784]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1656.105219]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1656.105640]  ? trace_hardirqs_on+0x5b/0x180
[ 1656.106057]  do_syscall_64+0x33/0x40
[ 1656.106366]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1656.106786] RIP: 0033:0x7f71c9c30b19
[ 1656.107097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.108593] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1656.109222] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1656.109831] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1656.110462] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1656.110999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1656.111511] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:10:06 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r4 = dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r6, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r5, r6)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r6, 0x50009417, &(0x7f0000000240)={{r4}, 0x0, 0x4, @inherit={0x50, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000100000000000000ab000000000000000700000000000000020000a32d8f138583f02700000000000800000000000000000090000000000000000000000000000002000000000000"]}, @devid})

21:10:06 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 33)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:06 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 39)

21:10:06 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x0, 0x173000, 0x0)

21:10:06 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)

[ 1656.207581] FAULT_INJECTION: forcing a failure.
[ 1656.207581] name failslab, interval 1, probability 0, space 0, times 0
[ 1656.208480] CPU: 0 PID: 8741 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1656.209002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1656.209621] Call Trace:
[ 1656.209839]  dump_stack+0x107/0x167
[ 1656.210138]  should_fail.cold+0x5/0xa
[ 1656.210415]  ? trace_hardirqs_on+0x5b/0x180
[ 1656.210757]  ? __alloc_skb+0x6d/0x5b0
[ 1656.211073]  should_failslab+0x5/0x20
[ 1656.211361]  kmem_cache_alloc_node+0x55/0x330
[ 1656.211712]  __alloc_skb+0x6d/0x5b0
[ 1656.212005]  skb_segment+0x9d8/0x3aa0
[ 1656.212306]  ? lock_chain_count+0x20/0x20
[ 1656.212652]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1656.213056]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.213457]  __udp_gso_segment+0x11c6/0x1830
[ 1656.213806]  ? __sk_receive_skb+0x830/0x830
[ 1656.214159]  udp4_ufo_fragment+0x528/0x720
[ 1656.214480]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1656.214861]  inet_gso_segment+0x4fb/0x11a0
[ 1656.215216]  skb_mac_gso_segment+0x273/0x570
[ 1656.215544]  ? inet_sock_destruct+0x840/0x840
[ 1656.215901]  ? skb_network_protocol+0x650/0x650
[ 1656.216267]  ? skb_crc32c_csum_help+0x80/0x80
[ 1656.216618]  ? lock_acquire+0x197/0x470
[ 1656.216915]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1656.217269]  __skb_gso_segment+0x32d/0x6d0
[ 1656.217586]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1656.218045]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1656.218391]  __dev_queue_xmit+0x87b/0x2710
[ 1656.218725]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1656.219100]  ? mark_held_locks+0x9e/0xe0
[ 1656.219408]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1656.219821]  neigh_connected_output+0x382/0x4d0
[ 1656.220047] FAULT_INJECTION: forcing a failure.
[ 1656.220047] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1656.220203]  ip_finish_output2+0x6f1/0x21f0
[ 1656.221503]  ? nf_hook_slow+0xfc/0x1e0
[ 1656.221823]  ? ip_frag_next+0x9e0/0x9e0
[ 1656.222169]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1656.222633]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1656.223093]  ? ip_fragment.constprop.0+0x240/0x240
[ 1656.223543]  ? nf_hook+0x510/0x510
[ 1656.223892]  ip_output+0x2f7/0x600
[ 1656.224237]  ip_send_skb+0xdd/0x260
[ 1656.224603]  udp_send_skb+0x6da/0x11d0
[ 1656.224924]  udp_sendmsg+0x139a/0x2160
[ 1656.225244]  ? mark_lock+0xf5/0x2df0
[ 1656.225520]  ? ip_frag_init+0x350/0x350
[ 1656.225851]  ? lock_chain_count+0x20/0x20
[ 1656.226191]  ? udp_setsockopt+0xc0/0xc0
[ 1656.226483]  ? mark_lock+0xf5/0x2df0
[ 1656.226775]  ? lock_acquire+0x197/0x470
[ 1656.227098]  ? lock_chain_count+0x20/0x20
[ 1656.227403]  ? mark_lock+0xf5/0x2df0
[ 1656.227704]  ? mark_lock+0xf5/0x2df0
[ 1656.228000]  ? lock_chain_count+0x20/0x20
[ 1656.228327]  ? __lock_acquire+0xbb1/0x5b00
[ 1656.228658]  ? lock_chain_count+0x20/0x20
[ 1656.229000]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.229414]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1656.229758]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1656.230179]  ? mark_lock+0xf5/0x2df0
[ 1656.230459]  ? lock_acquire+0x197/0x470
[ 1656.230764]  ? find_held_lock+0x2c/0x110
[ 1656.231097]  ? __might_fault+0xd3/0x180
[ 1656.231385]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.231706]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.232031]  ? sock_has_perm+0x1ea/0x280
[ 1656.232348]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1656.232746]  ? _copy_from_user+0xfb/0x1b0
[ 1656.233095]  ? __import_iovec+0x458/0x590
[ 1656.233405]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1656.233808]  inet6_sendmsg+0x105/0x140
[ 1656.234126]  ? inet6_compat_ioctl+0x320/0x320
[ 1656.234450]  __sock_sendmsg+0xf2/0x190
[ 1656.234749]  ____sys_sendmsg+0x70d/0x870
[ 1656.235080]  ? sock_write_iter+0x3d0/0x3d0
[ 1656.235389]  ? do_recvmmsg+0x6d0/0x6d0
[ 1656.235704]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.236042]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1656.236449]  ___sys_sendmsg+0xf3/0x170
[ 1656.236758]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1656.237134]  ? __fget_files+0x2cf/0x520
[ 1656.237426]  ? lock_downgrade+0x6d0/0x6d0
[ 1656.237753]  ? find_held_lock+0x2c/0x110
[ 1656.238109]  ? __fget_files+0x2f8/0x520
[ 1656.238403]  ? __fget_light+0xea/0x290
[ 1656.238705]  __sys_sendmsg+0xe5/0x1b0
[ 1656.239000]  ? __sys_sendmsg_sock+0x40/0x40
[ 1656.239329]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1656.239703]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1656.240122]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1656.240495]  ? trace_hardirqs_on+0x5b/0x180
[ 1656.240826]  do_syscall_64+0x33/0x40
[ 1656.241143]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1656.241516] RIP: 0033:0x7f9e74c56b19
[ 1656.241818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.243192] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1656.243759] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1656.244299] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1656.244819] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1656.245370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:10:06 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x600000000000000)

[ 1656.245919] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1656.246477] CPU: 1 PID: 8745 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1656.247072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1656.247770] Call Trace:
[ 1656.248001]  dump_stack+0x107/0x167
[ 1656.248311]  should_fail.cold+0x5/0xa
[ 1656.248771]  __alloc_pages_nodemask+0x182/0x600
[ 1656.249166]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1656.249671]  ? do_raw_spin_lock+0x121/0x260
[ 1656.250075]  ? kasan_unpoison_shadow+0x33/0x50
[ 1656.250465]  alloc_pages_current+0x187/0x280
[ 1656.250840]  __vmalloc_node_range+0x60a/0x9e0
[ 1656.251224]  ? __vmalloc_node+0x110/0x110
[ 1656.251582]  ? kernel_read_file+0x6b8/0x790
[ 1656.251946]  __vmalloc_node+0xb5/0x110
[ 1656.252274]  ? kernel_read_file+0x6b8/0x790
[ 1656.252638]  kernel_read_file+0x6b8/0x790
[ 1656.252992]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1656.253382]  kernel_read_file_from_fd+0xb8/0x110
[ 1656.253963]  __do_sys_finit_module+0xe8/0x180
[ 1656.254340]  ? __do_sys_init_module+0x230/0x230
[ 1656.254729]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1656.255147]  ? __ia32_sys_read+0xb0/0xb0
[ 1656.255490]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1656.255928]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1656.256356]  ? trace_hardirqs_on+0x5b/0x180
[ 1656.256717]  do_syscall_64+0x33/0x40
[ 1656.257029]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1656.257455] RIP: 0033:0x7f71c9c30b19
[ 1656.257778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.259298] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1656.259951] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1656.260557] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1656.261165] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1656.261781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1656.262377] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:10:06 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r4, r5)

[ 1656.312904] Module has invalid ELF structures
21:10:06 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xa, 0x0, 0x0, 0x1, [@generic="487fec864b24"]}]}, 0x28}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r1, {r0}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r1)
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x90, r3, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x7c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xdf00}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}]}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x393}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4f}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x90}, 0x40090)
r4 = syz_open_dev$vcsa(&(0x7f0000000280), 0x6, 0x420000)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r2)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xb8, r3, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x734d}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffffc}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK={0x10, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x70, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb6000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x32a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x65e}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5e3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x503}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0xc000080}, 0x4)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1656.343401] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
21:10:20 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 40)

21:10:20 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:10:20 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="dcad28e100bd96a83b16192af753373e8f27b1b49c70a990aab6fd77"], 0x6)

21:10:20 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})

21:10:20 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0)

21:10:20 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x700000000000000)

21:10:20 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0xf, 0x0, 0x0, 0x0)

21:10:20 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 34)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1670.052703] FAULT_INJECTION: forcing a failure.
[ 1670.052703] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1670.053778] CPU: 1 PID: 8770 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1670.054375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1670.055075] Call Trace:
[ 1670.055307]  dump_stack+0x107/0x167
[ 1670.055626]  should_fail.cold+0x5/0xa
[ 1670.055958]  __alloc_pages_nodemask+0x182/0x600
[ 1670.056357]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1670.056869]  ? do_raw_spin_lock+0x121/0x260
[ 1670.057243]  ? kasan_unpoison_shadow+0x33/0x50
[ 1670.057636]  alloc_pages_current+0x187/0x280
[ 1670.058028]  __vmalloc_node_range+0x60a/0x9e0
[ 1670.058418]  ? __vmalloc_node+0x110/0x110
[ 1670.058778]  ? kernel_read_file+0x6b8/0x790
[ 1670.059147]  __vmalloc_node+0xb5/0x110
[ 1670.059477]  ? kernel_read_file+0x6b8/0x790
[ 1670.059846]  kernel_read_file+0x6b8/0x790
[ 1670.060202]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1670.060598]  kernel_read_file_from_fd+0xb8/0x110
[ 1670.061009]  __do_sys_finit_module+0xe8/0x180
[ 1670.061392]  ? __do_sys_init_module+0x230/0x230
[ 1670.061790]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1670.062231]  ? __ia32_sys_read+0xb0/0xb0
[ 1670.062583]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1670.063031]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1670.063473]  ? trace_hardirqs_on+0x5b/0x180
[ 1670.063843]  do_syscall_64+0x33/0x40
[ 1670.064165]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1670.064600] RIP: 0033:0x7f71c9c30b19
[ 1670.064926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.066486] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1670.067134] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1670.067736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1670.068338] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1670.068940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1670.069543] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1670.082794] Module has invalid ELF structures
[ 1670.087540] FAULT_INJECTION: forcing a failure.
[ 1670.087540] name failslab, interval 1, probability 0, space 0, times 0
[ 1670.088557] CPU: 1 PID: 8781 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1670.089136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1670.089844] Call Trace:
[ 1670.090086]  dump_stack+0x107/0x167
[ 1670.090401]  should_fail.cold+0x5/0xa
[ 1670.090731]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1670.091180]  ? create_object.isra.0+0x3a/0xa20
[ 1670.091573]  should_failslab+0x5/0x20
[ 1670.091900]  kmem_cache_alloc+0x5b/0x310
[ 1670.092252]  create_object.isra.0+0x3a/0xa20
[ 1670.092627]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1670.093065]  kmem_cache_alloc_node+0x169/0x330
[ 1670.093461]  __alloc_skb+0x6d/0x5b0
[ 1670.093777]  skb_segment+0x9d8/0x3aa0
[ 1670.094119]  ? lock_chain_count+0x20/0x20
[ 1670.094500]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1670.094930]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.095386]  __udp_gso_segment+0x11c6/0x1830
[ 1670.095767]  ? __sk_receive_skb+0x830/0x830
[ 1670.096146]  udp4_ufo_fragment+0x528/0x720
[ 1670.096513]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1670.096940]  inet_gso_segment+0x4fb/0x11a0
[ 1670.097311]  skb_mac_gso_segment+0x273/0x570
[ 1670.097687]  ? inet_sock_destruct+0x840/0x840
[ 1670.098082]  ? skb_network_protocol+0x650/0x650
[ 1670.098474]  ? skb_crc32c_csum_help+0x80/0x80
[ 1670.098857]  ? lock_acquire+0x197/0x470
[ 1670.099196]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1670.099575]  __skb_gso_segment+0x32d/0x6d0
[ 1670.099941]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1670.100387]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1670.100777]  __dev_queue_xmit+0x87b/0x2710
[ 1670.101148]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1670.101543]  ? mark_held_locks+0x9e/0xe0
[ 1670.101901]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1670.102357]  neigh_connected_output+0x382/0x4d0
[ 1670.102771]  ip_finish_output2+0x6f1/0x21f0
[ 1670.103142]  ? nf_hook_slow+0xfc/0x1e0
[ 1670.103476]  ? ip_frag_next+0x9e0/0x9e0
[ 1670.103815]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1670.104246]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1670.104666]  ? ip_fragment.constprop.0+0x240/0x240
[ 1670.105081]  ? nf_hook+0x510/0x510
[ 1670.105392]  ip_output+0x2f7/0x600
[ 1670.105701]  ip_send_skb+0xdd/0x260
[ 1670.106038]  udp_send_skb+0x6da/0x11d0
[ 1670.106380]  udp_sendmsg+0x139a/0x2160
[ 1670.106712]  ? mark_lock+0xf5/0x2df0
[ 1670.107033]  ? ip_frag_init+0x350/0x350
[ 1670.107373]  ? lock_chain_count+0x20/0x20
[ 1670.107731]  ? udp_setsockopt+0xc0/0xc0
[ 1670.108070]  ? mark_lock+0xf5/0x2df0
[ 1670.108387]  ? lock_acquire+0x197/0x470
[ 1670.108728]  ? lock_chain_count+0x20/0x20
[ 1670.109083]  ? mark_lock+0xf5/0x2df0
[ 1670.109403]  ? mark_lock+0xf5/0x2df0
[ 1670.109720]  ? lock_chain_count+0x20/0x20
[ 1670.110087]  ? __lock_acquire+0xbb1/0x5b00
[ 1670.110448]  ? lock_chain_count+0x20/0x20
[ 1670.110801]  ? lock_chain_count+0x20/0x20
[ 1670.111163]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.111619]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1670.111979]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1670.112422]  ? mark_lock+0xf5/0x2df0
[ 1670.112746]  ? lock_acquire+0x197/0x470
[ 1670.113085]  ? find_held_lock+0x2c/0x110
[ 1670.113435]  ? __might_fault+0xd3/0x180
[ 1670.113776]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.114147]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.114505]  ? sock_has_perm+0x1ea/0x280
[ 1670.114854]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1670.115296]  ? _copy_from_user+0xfb/0x1b0
[ 1670.115660]  ? __import_iovec+0x458/0x590
[ 1670.116015]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1670.116459]  inet6_sendmsg+0x105/0x140
[ 1670.116792]  ? inet6_compat_ioctl+0x320/0x320
[ 1670.117176]  __sock_sendmsg+0xf2/0x190
[ 1670.117510]  ____sys_sendmsg+0x70d/0x870
[ 1670.117858]  ? sock_write_iter+0x3d0/0x3d0
[ 1670.118235]  ? do_recvmmsg+0x6d0/0x6d0
[ 1670.118571]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.118928]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.119377]  ___sys_sendmsg+0xf3/0x170
[ 1670.119711]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1670.120104]  ? __fget_files+0x2cf/0x520
[ 1670.120444]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.120798]  ? find_held_lock+0x2c/0x110
[ 1670.121151]  ? __fget_files+0x2f8/0x520
[ 1670.121497]  ? __fget_light+0xea/0x290
[ 1670.121836]  __sys_sendmsg+0xe5/0x1b0
[ 1670.122172]  ? __sys_sendmsg_sock+0x40/0x40
[ 1670.122541]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1670.122949]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1670.123394]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1670.123831]  ? trace_hardirqs_on+0x5b/0x180
[ 1670.124200]  do_syscall_64+0x33/0x40
[ 1670.124519]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1670.124956] RIP: 0033:0x7f9e74c56b19
[ 1670.125274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.126834] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1670.127479] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1670.128089] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1670.128690] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1670.129294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1670.129910] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:10:20 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:10:20 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0)

21:10:20 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:10:20 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 41)

21:10:20 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 35)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:20 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x2700000000000000)

[ 1670.236708] FAULT_INJECTION: forcing a failure.
[ 1670.236708] name failslab, interval 1, probability 0, space 0, times 0
[ 1670.237739] CPU: 0 PID: 8795 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1670.238332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1670.239033] Call Trace:
[ 1670.239268]  dump_stack+0x107/0x167
[ 1670.239581]  should_fail.cold+0x5/0xa
[ 1670.239915]  should_failslab+0x5/0x20
[ 1670.240245]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1670.240671]  ? skb_segment+0x9d8/0x3aa0
[ 1670.241018]  __alloc_skb+0xb1/0x5b0
[ 1670.241334]  skb_segment+0x9d8/0x3aa0
[ 1670.241661]  ? lock_chain_count+0x20/0x20
[ 1670.242059]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1670.242487]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.242944]  __udp_gso_segment+0x11c6/0x1830
[ 1670.243317]  ? __sk_receive_skb+0x830/0x830
[ 1670.243692]  udp4_ufo_fragment+0x528/0x720
[ 1670.244056]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1670.244482]  inet_gso_segment+0x4fb/0x11a0
[ 1670.244857]  skb_mac_gso_segment+0x273/0x570
[ 1670.245233]  ? inet_sock_destruct+0x840/0x840
[ 1670.245616]  ? skb_network_protocol+0x650/0x650
[ 1670.246025]  ? skb_crc32c_csum_help+0x80/0x80
[ 1670.246406]  ? lock_acquire+0x197/0x470
[ 1670.246744]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1670.247122]  __skb_gso_segment+0x32d/0x6d0
[ 1670.247486]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1670.247933]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1670.248322]  __dev_queue_xmit+0x87b/0x2710
[ 1670.248688]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1670.249085]  ? mark_held_locks+0x9e/0xe0
[ 1670.249435]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1670.249894]  neigh_connected_output+0x382/0x4d0
[ 1670.250306]  ip_finish_output2+0x6f1/0x21f0
[ 1670.250677]  ? nf_hook_slow+0xfc/0x1e0
[ 1670.251011]  ? ip_frag_next+0x9e0/0x9e0
[ 1670.251352]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1670.251783]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1670.252205]  ? ip_fragment.constprop.0+0x240/0x240
[ 1670.252623]  ? nf_hook+0x510/0x510
[ 1670.252935]  ip_output+0x2f7/0x600
[ 1670.253244]  ip_send_skb+0xdd/0x260
[ 1670.253560]  udp_send_skb+0x6da/0x11d0
[ 1670.253919]  udp_sendmsg+0x139a/0x2160
[ 1670.254256]  ? mark_lock+0xf5/0x2df0
[ 1670.254571]  ? ip_frag_init+0x350/0x350
[ 1670.254907]  ? lock_chain_count+0x20/0x20
[ 1670.255262]  ? udp_setsockopt+0xc0/0xc0
[ 1670.255595]  ? mark_lock+0xf5/0x2df0
[ 1670.255909]  ? lock_acquire+0x197/0x470
[ 1670.256248]  ? lock_chain_count+0x20/0x20
[ 1670.256597]  ? mark_lock+0xf5/0x2df0
[ 1670.256913]  ? mark_lock+0xf5/0x2df0
[ 1670.257228]  ? lock_chain_count+0x20/0x20
[ 1670.257577]  ? __lock_acquire+0xbb1/0x5b00
[ 1670.257954]  ? lock_chain_count+0x20/0x20
[ 1670.258316]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.258769]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1670.259123]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1670.259563]  ? mark_lock+0xf5/0x2df0
[ 1670.259882]  ? lock_acquire+0x197/0x470
[ 1670.260216]  ? find_held_lock+0x2c/0x110
[ 1670.260564]  ? __might_fault+0xd3/0x180
[ 1670.260900]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.261253]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.261605]  ? sock_has_perm+0x1ea/0x280
[ 1670.261966]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1670.262406]  ? _copy_from_user+0xfb/0x1b0
[ 1670.262766]  ? __import_iovec+0x458/0x590
[ 1670.263117]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1670.263559]  inet6_sendmsg+0x105/0x140
[ 1670.263890]  ? inet6_compat_ioctl+0x320/0x320
[ 1670.264271]  __sock_sendmsg+0xf2/0x190
[ 1670.264600]  ____sys_sendmsg+0x70d/0x870
[ 1670.264951]  ? sock_write_iter+0x3d0/0x3d0
[ 1670.265308]  ? do_recvmmsg+0x6d0/0x6d0
[ 1670.265641]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.266012]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1670.266458]  ___sys_sendmsg+0xf3/0x170
[ 1670.266789]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1670.267181]  ? __fget_files+0x2cf/0x520
[ 1670.267517]  ? lock_downgrade+0x6d0/0x6d0
[ 1670.267869]  ? find_held_lock+0x2c/0x110
[ 1670.268222]  ? __fget_files+0x2f8/0x520
[ 1670.268564]  ? __fget_light+0xea/0x290
[ 1670.268903]  __sys_sendmsg+0xe5/0x1b0
[ 1670.269225]  ? __sys_sendmsg_sock+0x40/0x40
[ 1670.269591]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1670.270024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1670.270469]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1670.270906]  ? trace_hardirqs_on+0x5b/0x180
[ 1670.271269]  do_syscall_64+0x33/0x40
[ 1670.271584]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1670.272015] RIP: 0033:0x7f9e74c56b19
[ 1670.272331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.273865] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1670.274527] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1670.275138] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1670.275736] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1670.276336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1670.276933] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1670.277484] FAULT_INJECTION: forcing a failure.
[ 1670.277484] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1670.279238] CPU: 1 PID: 8799 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1670.279827] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1670.280526] Call Trace:
[ 1670.280759]  dump_stack+0x107/0x167
[ 1670.281072]  should_fail.cold+0x5/0xa
[ 1670.281401]  __alloc_pages_nodemask+0x182/0x600
[ 1670.281800]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1670.282324]  ? do_raw_spin_lock+0x121/0x260
[ 1670.282695]  ? kasan_unpoison_shadow+0x33/0x50
[ 1670.283091]  alloc_pages_current+0x187/0x280
[ 1670.283470]  __vmalloc_node_range+0x60a/0x9e0
[ 1670.283857]  ? __vmalloc_node+0x110/0x110
[ 1670.284216]  ? kernel_read_file+0x6b8/0x790
[ 1670.284582]  __vmalloc_node+0xb5/0x110
[ 1670.284913]  ? kernel_read_file+0x6b8/0x790
[ 1670.285282]  kernel_read_file+0x6b8/0x790
[ 1670.285636]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1670.286049]  kernel_read_file_from_fd+0xb8/0x110
[ 1670.286458]  __do_sys_finit_module+0xe8/0x180
[ 1670.286841]  ? __do_sys_init_module+0x230/0x230
[ 1670.287240]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1670.287663]  ? __ia32_sys_read+0xb0/0xb0
[ 1670.288014]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1670.288459]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1670.288896]  ? trace_hardirqs_on+0x5b/0x180
[ 1670.289264]  do_syscall_64+0x33/0x40
[ 1670.289582]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1670.290031] RIP: 0033:0x7f71c9c30b19
[ 1670.290350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.291897] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1670.292545] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1670.293146] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1670.293749] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1670.294367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1670.294972] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1670.318167] Module has invalid ELF structures
21:10:33 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0xf00, 0x0, 0x0, 0x0)

[ 1682.902089] FAULT_INJECTION: forcing a failure.
[ 1682.902089] name failslab, interval 1, probability 0, space 0, times 0
[ 1682.903231] CPU: 0 PID: 8820 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1682.903858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1682.904638] Call Trace:
[ 1682.904888]  dump_stack+0x107/0x167
[ 1682.905236]  should_fail.cold+0x5/0xa
[ 1682.905572]  ? create_object.isra.0+0x3a/0xa20
[ 1682.906003]  should_failslab+0x5/0x20
[ 1682.906377]  kmem_cache_alloc+0x5b/0x310
[ 1682.906788]  create_object.isra.0+0x3a/0xa20
[ 1682.907219]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1682.907695]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1682.908180]  ? skb_segment+0x9d8/0x3aa0
[ 1682.908547]  __alloc_skb+0xb1/0x5b0
[ 1682.908898]  skb_segment+0x9d8/0x3aa0
[ 1682.909272]  ? lock_chain_count+0x20/0x20
[ 1682.909701]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1682.910200]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1682.910700]  __udp_gso_segment+0x11c6/0x1830
[ 1682.911122]  ? __sk_receive_skb+0x830/0x830
[ 1682.911529]  udp4_ufo_fragment+0x528/0x720
[ 1682.911938]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1682.912408]  inet_gso_segment+0x4fb/0x11a0
[ 1682.912823]  skb_mac_gso_segment+0x273/0x570
[ 1682.913239]  ? inet_sock_destruct+0x840/0x840
[ 1682.913664]  ? skb_network_protocol+0x650/0x650
[ 1682.914125]  ? skb_crc32c_csum_help+0x80/0x80
[ 1682.914537]  ? lock_acquire+0x197/0x470
[ 1682.914914]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1682.915334]  __skb_gso_segment+0x32d/0x6d0
[ 1682.915740]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1682.916236]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1682.916666]  __dev_queue_xmit+0x87b/0x2710
[ 1682.917078]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1682.917921]  ? mark_held_locks+0x9e/0xe0
[ 1682.918330]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1682.918854]  neigh_connected_output+0x382/0x4d0
[ 1682.919307]  ip_finish_output2+0x6f1/0x21f0
[ 1682.919767]  ? nf_hook_slow+0xfc/0x1e0
[ 1682.920144]  ? ip_frag_next+0x9e0/0x9e0
[ 1682.920517]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1682.921078]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1682.921538]  ? ip_fragment.constprop.0+0x240/0x240
[ 1682.922066]  ? nf_hook+0x510/0x510
[ 1682.922413]  ip_output+0x2f7/0x600
[ 1682.922799]  ip_send_skb+0xdd/0x260
[ 1682.923165]  udp_send_skb+0x6da/0x11d0
[ 1682.923529]  udp_sendmsg+0x139a/0x2160
[ 1682.923945]  ? mark_lock+0xf5/0x2df0
[ 1682.924320]  ? ip_frag_init+0x350/0x350
[ 1682.924762]  ? lock_chain_count+0x20/0x20
[ 1682.925172]  ? udp_setsockopt+0xc0/0xc0
[ 1682.925534]  ? mark_lock+0xf5/0x2df0
[ 1682.925980]  ? lock_acquire+0x197/0x470
[ 1682.926380]  ? lock_chain_count+0x20/0x20
[ 1682.926814]  ? mark_lock+0xf5/0x2df0
[ 1682.927199]  ? mark_lock+0xf5/0x2df0
[ 1682.927563]  ? lock_chain_count+0x20/0x20
[ 1682.931377]  ? __lock_acquire+0xbb1/0x5b00
[ 1682.931844]  ? lock_chain_count+0x20/0x20
[ 1682.932264]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1682.932828]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1682.933247]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1682.933777]  ? mark_lock+0xf5/0x2df0
[ 1682.934162]  ? lock_acquire+0x197/0x470
[ 1682.934532]  ? find_held_lock+0x2c/0x110
[ 1682.934961]  ? __might_fault+0xd3/0x180
[ 1682.935351]  ? lock_downgrade+0x6d0/0x6d0
[ 1682.935793]  ? lock_downgrade+0x6d0/0x6d0
[ 1682.936202]  ? sock_has_perm+0x1ea/0x280
[ 1682.936644]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1682.937154]  ? _copy_from_user+0xfb/0x1b0
[ 1682.937553]  ? __import_iovec+0x458/0x590
[ 1682.937986]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1682.938508]  inet6_sendmsg+0x105/0x140
[ 1682.938922]  ? inet6_compat_ioctl+0x320/0x320
[ 1682.939358]  __sock_sendmsg+0xf2/0x190
[ 1682.939770]  ____sys_sendmsg+0x70d/0x870
[ 1682.940169]  ? sock_write_iter+0x3d0/0x3d0
[ 1682.940556]  ? do_recvmmsg+0x6d0/0x6d0
[ 1682.940999]  ? lock_downgrade+0x6d0/0x6d0
[ 1682.941114] FAULT_INJECTION: forcing a failure.
[ 1682.941114] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1682.941374]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1682.942978]  ___sys_sendmsg+0xf3/0x170
[ 1682.943330]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1682.943767]  ? __fget_files+0x2cf/0x520
[ 1682.944127]  ? lock_downgrade+0x6d0/0x6d0
[ 1682.944477]  ? find_held_lock+0x2c/0x110
[ 1682.944883]  ? __fget_files+0x2f8/0x520
[ 1682.945248]  ? __fget_light+0xea/0x290
[ 1682.945647]  __sys_sendmsg+0xe5/0x1b0
[ 1682.946011]  ? __sys_sendmsg_sock+0x40/0x40
[ 1682.946385]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1682.946840]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1682.947316]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1682.947798]  ? trace_hardirqs_on+0x5b/0x180
[ 1682.948186]  do_syscall_64+0x33/0x40
[ 1682.948513]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1682.949013] RIP: 0033:0x7f9e74c56b19
[ 1682.949350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1682.951131] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1682.951833] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1682.952445] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1682.953103] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1682.953740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1682.954384] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1682.955066] CPU: 1 PID: 8824 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1682.955703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1682.956489] Call Trace:
[ 1682.956751]  dump_stack+0x107/0x167
[ 1682.957168]  should_fail.cold+0x5/0xa
[ 1682.957522]  __alloc_pages_nodemask+0x182/0x600
21:10:33 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 36)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:33 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x0, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
[ 1682.958076]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1682.958644]  ? do_raw_spin_lock+0x121/0x260
[ 1682.959234]  ? kasan_unpoison_shadow+0x33/0x50
[ 1682.959817]  alloc_pages_current+0x187/0x280
[ 1682.960274]  __vmalloc_node_range+0x60a/0x9e0
[ 1682.960708]  ? __vmalloc_node+0x110/0x110
[ 1682.961171]  ? kernel_read_file+0x6b8/0x790
[ 1682.961565]  __vmalloc_node+0xb5/0x110
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:10:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

21:10:33 executing program 0:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f0000000400)=""/180, 0xb4}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/140, 0x8c}], 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0)

21:10:33 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x4f0c000000000000)

21:10:33 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 42)

21:10:33 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x87011, r1, 0x0)
sendfile(r0, r1, &(0x7f0000000100)=0x22643812, 0x1)
sendto(r1, &(0x7f0000000080)="b1a970ef199b887233e15691b91c7a4404a4d559bb596aa89926b301c29c32c5d9b1e59adf5a926ac2b5e9271dd2565f460bc382ef30ea4a4f6089ba96323eda28958fc00e09c605e8d9e2672b72e9b069fd3ef86cc682a64487ef22a6c7df44d44b246bd890350b581116dbcbaf285320b427692030966d5b37bb647e171474b7e023a04d986edfec73921af9f6c136f749311409424150cdddd5701b9ad2ab3d4b5ae945a23e752828679f877a55aa72af6adfeb4b7a2bb0b3a760f2577688c5005704cb3045ab70a3d6fb0ffbd815bd117f196870a87d80de0c2e255e2ae2046a6f78ab5acd86b260c368ba52db", 0xef, 0x1, &(0x7f0000000180)=@un=@abs={0xf52666bd5027d95e, 0x0, 0x4e24}, 0x80)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1682.961981]  ? kernel_read_file+0x6b8/0x790
[ 1682.962399]  kernel_read_file+0x6b8/0x790
[ 1682.962816]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1682.963327]  kernel_read_file_from_fd+0xb8/0x110
[ 1682.963774]  __do_sys_finit_module+0xe8/0x180
[ 1682.964231]  ? __do_sys_init_module+0x230/0x230
[ 1682.964668]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1682.965193]  ? __ia32_sys_read+0xb0/0xb0
[ 1682.965566]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1682.966131]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1682.966608]  ? trace_hardirqs_on+0x5b/0x180
[ 1682.967055]  do_syscall_64+0x33/0x40
[ 1682.967399]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1682.967876] RIP: 0033:0x7f71c9c30b19
[ 1682.968271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1682.970049] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1682.970748] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1682.971485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1682.972228] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1682.972882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1682.973583] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1683.005253] Module has invalid ELF structures
21:10:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

21:10:33 executing program 4:
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, &(0x7f00000000c0)={0x33, 0x2, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @calipso={0x7, 0x10, {0x3, 0x2, 0x7, 0x100, [0x19fb59a2]}}]}, 0x20)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
openat(r1, &(0x7f0000000080)='./file0\x00', 0x40a002, 0x18c)

21:10:33 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0xffffffff00000000)

21:10:33 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 43)

[ 1683.203738] Module has invalid ELF structures
21:10:33 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 37)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="010f040484790576"], 0x8)

21:10:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

[ 1683.243682] FAULT_INJECTION: forcing a failure.
[ 1683.243682] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1683.244950] CPU: 1 PID: 8840 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1683.245562] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1683.246324] Call Trace:
[ 1683.246574]  dump_stack+0x107/0x167
[ 1683.246913]  should_fail.cold+0x5/0xa
[ 1683.247279]  __alloc_pages_nodemask+0x182/0x600
[ 1683.247710]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1683.248269]  ? do_raw_spin_lock+0x121/0x260
[ 1683.248673]  ? kasan_unpoison_shadow+0x33/0x50
[ 1683.249116]  alloc_pages_current+0x187/0x280
[ 1683.249520]  __vmalloc_node_range+0x60a/0x9e0
[ 1683.249934]  ? __vmalloc_node+0x110/0x110
[ 1683.250349]  ? kernel_read_file+0x6b8/0x790
[ 1683.250741]  __vmalloc_node+0xb5/0x110
[ 1683.251127]  ? kernel_read_file+0x6b8/0x790
[ 1683.251564]  kernel_read_file+0x6b8/0x790
[ 1683.251972]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1683.252403]  kernel_read_file_from_fd+0xb8/0x110
[ 1683.252835]  __do_sys_finit_module+0xe8/0x180
[ 1683.253258]  ? __do_sys_init_module+0x230/0x230
[ 1683.253678]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1683.254159]  ? __ia32_sys_read+0xb0/0xb0
[ 1683.254529]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1683.255032]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1683.255538]  ? trace_hardirqs_on+0x5b/0x180
[ 1683.255927]  do_syscall_64+0x33/0x40
[ 1683.256255]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1683.256692] RIP: 0033:0x7f71c9c30b19
[ 1683.257019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.258591] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1683.259270] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1683.259916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1683.260571] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1683.261227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1683.261866] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:10:33 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x0, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1683.282290] FAULT_INJECTION: forcing a failure.
[ 1683.282290] name failslab, interval 1, probability 0, space 0, times 0
[ 1683.283355] CPU: 0 PID: 8846 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1683.284052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1683.284793] Call Trace:
[ 1683.285092]  dump_stack+0x107/0x167
[ 1683.285431]  should_fail.cold+0x5/0xa
[ 1683.285788]  ? trace_hardirqs_on+0x5b/0x180
[ 1683.286249]  ? __alloc_skb+0x6d/0x5b0
[ 1683.286585]  should_failslab+0x5/0x20
[ 1683.286910]  kmem_cache_alloc_node+0x55/0x330
[ 1683.287333]  __alloc_skb+0x6d/0x5b0
[ 1683.287670]  skb_segment+0x9d8/0x3aa0
[ 1683.288070]  ? lock_chain_count+0x20/0x20
[ 1683.288489]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1683.289028]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1683.289520]  __udp_gso_segment+0x11c6/0x1830
[ 1683.289925]  ? __sk_receive_skb+0x830/0x830
[ 1683.290392]  udp4_ufo_fragment+0x528/0x720
[ 1683.290787]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1683.291295]  inet_gso_segment+0x4fb/0x11a0
[ 1683.291702]  skb_mac_gso_segment+0x273/0x570
[ 1683.292154]  ? inet_sock_destruct+0x840/0x840
[ 1683.292563]  ? skb_network_protocol+0x650/0x650
[ 1683.293042]  ? skb_crc32c_csum_help+0x80/0x80
[ 1683.293452]  ? lock_acquire+0x197/0x470
[ 1683.293811]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1683.294315]  __skb_gso_segment+0x32d/0x6d0
[ 1683.294711]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1683.295242]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1683.295664]  __dev_queue_xmit+0x87b/0x2710
[ 1683.296110]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1683.296544]  ? mark_held_locks+0x9e/0xe0
[ 1683.296924]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1683.297466]  neigh_connected_output+0x382/0x4d0
[ 1683.297912]  ip_finish_output2+0x6f1/0x21f0
[ 1683.298367]  ? nf_hook_slow+0xfc/0x1e0
[ 1683.298710]  ? ip_frag_next+0x9e0/0x9e0
[ 1683.299134]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1683.299573]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1683.300051]  ? ip_fragment.constprop.0+0x240/0x240
[ 1683.300459]  ? nf_hook+0x510/0x510
[ 1683.300783]  ip_output+0x2f7/0x600
[ 1683.301161]  ip_send_skb+0xdd/0x260
[ 1683.301505]  udp_send_skb+0x6da/0x11d0
[ 1683.301880]  udp_sendmsg+0x139a/0x2160
[ 1683.302301]  ? mark_lock+0xf5/0x2df0
[ 1683.302639]  ? ip_frag_init+0x350/0x350
[ 1683.303051]  ? lock_chain_count+0x20/0x20
[ 1683.303424]  ? udp_setsockopt+0xc0/0xc0
[ 1683.303783]  ? mark_lock+0xf5/0x2df0
[ 1683.304202]  ? lock_acquire+0x197/0x470
[ 1683.304554]  ? lock_chain_count+0x20/0x20
[ 1683.304927]  ? mark_lock+0xf5/0x2df0
[ 1683.305475]  ? mark_lock+0xf5/0x2df0
[ 1683.305818]  ? lock_chain_count+0x20/0x20
[ 1683.306258]  ? __lock_acquire+0xbb1/0x5b00
[ 1683.306646]  ? lock_chain_count+0x20/0x20
[ 1683.307121]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1683.307611]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1683.308046]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1683.308527]  ? mark_lock+0xf5/0x2df0
[ 1683.308874]  ? lock_acquire+0x197/0x470
[ 1683.309285]  ? find_held_lock+0x2c/0x110
[ 1683.309662]  ? __might_fault+0xd3/0x180
[ 1683.310088]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.310555]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.311014]  ? sock_has_perm+0x1ea/0x280
[ 1683.311396]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1683.311872]  ? _copy_from_user+0xfb/0x1b0
[ 1683.312303]  ? __import_iovec+0x458/0x590
[ 1683.312681]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1683.313205]  inet6_sendmsg+0x105/0x140
[ 1683.313575]  ? inet6_compat_ioctl+0x320/0x320
[ 1683.314048]  __sock_sendmsg+0xf2/0x190
[ 1683.314417]  ____sys_sendmsg+0x70d/0x870
[ 1683.314794]  ? sock_write_iter+0x3d0/0x3d0
[ 1683.315226]  ? do_recvmmsg+0x6d0/0x6d0
[ 1683.315591]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.316057]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1683.316536]  ___sys_sendmsg+0xf3/0x170
[ 1683.316880]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1683.317318]  ? __fget_files+0x2cf/0x520
[ 1683.317672]  ? lock_downgrade+0x6d0/0x6d0
[ 1683.318107]  ? find_held_lock+0x2c/0x110
[ 1683.318489]  ? __fget_files+0x2f8/0x520
[ 1683.318864]  ? __fget_light+0xea/0x290
[ 1683.319279]  __sys_sendmsg+0xe5/0x1b0
[ 1683.319632]  ? __sys_sendmsg_sock+0x40/0x40
[ 1683.320075]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1683.320518]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1683.321074]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1683.321544]  ? trace_hardirqs_on+0x5b/0x180
[ 1683.321984]  do_syscall_64+0x33/0x40
[ 1683.322348]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1683.322811] RIP: 0033:0x7f9e74c56b19
[ 1683.323206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.324843] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1683.325611] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1683.326317] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1683.327010] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1683.327652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1683.328342] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:10:33 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 44)

21:10:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)

21:10:33 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

21:10:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={0x0, 0x3, r3, 0x5})
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
r5 = openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r5, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r7}}, 0x7)
bind$bt_hci(r5, &(0x7f0000000000), 0x6)

21:10:33 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x2000, 0x0, 0x0, 0x0)

[ 1683.449309] FAULT_INJECTION: forcing a failure.
[ 1683.449309] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1683.451711] CPU: 0 PID: 8853 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1683.452474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1683.453375] Call Trace:
[ 1683.453679]  dump_stack+0x107/0x167
[ 1683.454137]  should_fail.cold+0x5/0xa
[ 1683.454564]  __alloc_pages_nodemask+0x182/0x600
[ 1683.455129]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1683.455768]  ? do_raw_spin_lock+0x121/0x260
[ 1683.456894]  ? kasan_unpoison_shadow+0x33/0x50
[ 1683.458061]  alloc_pages_current+0x187/0x280
[ 1683.459184]  __vmalloc_node_range+0x60a/0x9e0
[ 1683.460360]  ? __vmalloc_node+0x110/0x110
[ 1683.464064]  ? kernel_read_file+0x6b8/0x790
[ 1683.465339]  __vmalloc_node+0xb5/0x110
[ 1683.466358]  ? kernel_read_file+0x6b8/0x790
[ 1683.467460]  kernel_read_file+0x6b8/0x790
[ 1683.468469]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1683.469704]  kernel_read_file_from_fd+0xb8/0x110
[ 1683.471072]  __do_sys_finit_module+0xe8/0x180
[ 1683.472385]  ? __do_sys_init_module+0x230/0x230
[ 1683.473717]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1683.475210]  ? __ia32_sys_read+0xb0/0xb0
[ 1683.476369]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1683.477874]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1683.479343]  ? trace_hardirqs_on+0x5b/0x180
[ 1683.480542]  do_syscall_64+0x33/0x40
[ 1683.481611]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1683.483259] RIP: 0033:0x7f71c9c30b19
[ 1683.484310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1683.489309] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1683.491516] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1683.493427] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1683.495500] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
21:10:33 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r3)
splice(r3, &(0x7f0000000240)=0x2, r0, &(0x7f0000000280)=0x4, 0x7, 0x4)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
finit_module(r1, 0x0, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r6, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r5, r6)
openat(r2, &(0x7f00000001c0)='./file0\x00', 0x42000, 0xc4)
ioctl$AUTOFS_IOC_FAIL(r6, 0x9361, 0x400)

[ 1683.497454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1683.499675] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1683.569657] Module has invalid ELF structures
21:10:46 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x4000, 0x0, 0x0, 0x0)

21:10:46 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 38)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:46 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="92b3cb45e095108c81c17801", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c653000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r4, r5)
sendfile(r3, r4, &(0x7f0000000040), 0x1)

21:10:46 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:10:46 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_open_dev$vcsa(&(0x7f0000000100), 0x100000001, 0x400000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
stat(&(0x7f0000000080)='./file1\x00', &(0x7f00000001c0))
write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r1)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000140)={0xffffffffffffffff, 0x6, "007f00", 0x5, 0x3})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

21:10:46 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)

21:10:46 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x0, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:10:46 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 45)

[ 1696.346641] FAULT_INJECTION: forcing a failure.
[ 1696.346641] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1696.347745] CPU: 1 PID: 8883 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1696.348324] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1696.349021] Call Trace:
[ 1696.349256]  dump_stack+0x107/0x167
[ 1696.349568]  should_fail.cold+0x5/0xa
[ 1696.349899]  __alloc_pages_nodemask+0x182/0x600
[ 1696.350331]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1696.350842]  ? do_raw_spin_lock+0x121/0x260
[ 1696.351215]  ? kasan_unpoison_shadow+0x33/0x50
[ 1696.351610]  alloc_pages_current+0x187/0x280
[ 1696.351988]  __vmalloc_node_range+0x60a/0x9e0
[ 1696.352376]  ? __vmalloc_node+0x110/0x110
[ 1696.352734]  ? kernel_read_file+0x6b8/0x790
[ 1696.353101]  __vmalloc_node+0xb5/0x110
[ 1696.353432]  ? kernel_read_file+0x6b8/0x790
[ 1696.353800]  kernel_read_file+0x6b8/0x790
[ 1696.354169]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1696.354571]  kernel_read_file_from_fd+0xb8/0x110
[ 1696.354979]  __do_sys_finit_module+0xe8/0x180
[ 1696.355362]  ? __do_sys_init_module+0x230/0x230
[ 1696.355758]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1696.356182]  ? __ia32_sys_read+0xb0/0xb0
[ 1696.356531]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1696.356975]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1696.357413]  ? trace_hardirqs_on+0x5b/0x180
[ 1696.357780]  do_syscall_64+0x33/0x40
[ 1696.358098]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1696.358549] RIP: 0033:0x7f71c9c30b19
[ 1696.358868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1696.360414] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1696.361059] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1696.361662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1696.362295] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1696.362894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1696.363496] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1696.375346] FAULT_INJECTION: forcing a failure.
[ 1696.375346] name failslab, interval 1, probability 0, space 0, times 0
[ 1696.376376] CPU: 0 PID: 8888 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1696.376960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1696.377665] Call Trace:
[ 1696.377902]  dump_stack+0x107/0x167
[ 1696.378237]  should_fail.cold+0x5/0xa
[ 1696.378570]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1696.379018]  ? create_object.isra.0+0x3a/0xa20
[ 1696.379413]  should_failslab+0x5/0x20
[ 1696.379739]  kmem_cache_alloc+0x5b/0x310
[ 1696.380089]  ? mark_held_locks+0x9e/0xe0
[ 1696.380439]  create_object.isra.0+0x3a/0xa20
[ 1696.380820]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1696.381257]  kmem_cache_alloc_node+0x169/0x330
[ 1696.381652]  __alloc_skb+0x6d/0x5b0
[ 1696.381972]  skb_segment+0x9d8/0x3aa0
[ 1696.382319]  ? lock_chain_count+0x20/0x20
[ 1696.382699]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1696.383125]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1696.383575]  __udp_gso_segment+0x11c6/0x1830
[ 1696.383947]  ? __sk_receive_skb+0x830/0x830
[ 1696.384317]  udp4_ufo_fragment+0x528/0x720
[ 1696.384679]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1696.385102]  inet_gso_segment+0x4fb/0x11a0
[ 1696.385469]  skb_mac_gso_segment+0x273/0x570
[ 1696.385840]  ? inet_sock_destruct+0x840/0x840
[ 1696.386259]  ? skb_network_protocol+0x650/0x650
[ 1696.386650]  ? skb_crc32c_csum_help+0x80/0x80
[ 1696.387031]  ? lock_acquire+0x197/0x470
[ 1696.387369]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1696.387745]  __skb_gso_segment+0x32d/0x6d0
[ 1696.388108]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1696.388551]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1696.388940]  __dev_queue_xmit+0x87b/0x2710
[ 1696.389306]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1696.389700]  ? mark_held_locks+0x9e/0xe0
[ 1696.390049]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1696.390514]  neigh_connected_output+0x382/0x4d0
[ 1696.390917]  ip_finish_output2+0x6f1/0x21f0
[ 1696.391283]  ? nf_hook_slow+0xfc/0x1e0
[ 1696.391614]  ? ip_frag_next+0x9e0/0x9e0
[ 1696.391952]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1696.392380]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1696.392796]  ? ip_fragment.constprop.0+0x240/0x240
[ 1696.393209]  ? nf_hook+0x510/0x510
[ 1696.393521]  ip_output+0x2f7/0x600
[ 1696.393826]  ip_send_skb+0xdd/0x260
[ 1696.394149]  udp_send_skb+0x6da/0x11d0
[ 1696.394503]  udp_sendmsg+0x139a/0x2160
[ 1696.394833]  ? mark_lock+0xf5/0x2df0
[ 1696.395149]  ? ip_frag_init+0x350/0x350
[ 1696.395487]  ? lock_chain_count+0x20/0x20
[ 1696.395842]  ? udp_setsockopt+0xc0/0xc0
[ 1696.396178]  ? mark_lock+0xf5/0x2df0
[ 1696.396494]  ? lock_acquire+0x197/0x470
[ 1696.396833]  ? lock_chain_count+0x20/0x20
[ 1696.397187]  ? mark_lock+0xf5/0x2df0
[ 1696.397505]  ? mark_lock+0xf5/0x2df0
[ 1696.397823]  ? lock_chain_count+0x20/0x20
[ 1696.398191]  ? __lock_acquire+0xbb1/0x5b00
[ 1696.398559]  ? lock_chain_count+0x20/0x20
[ 1696.398921]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1696.399371]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1696.399724]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1696.400164]  ? mark_lock+0xf5/0x2df0
[ 1696.400487]  ? lock_acquire+0x197/0x470
[ 1696.400824]  ? find_held_lock+0x2c/0x110
[ 1696.401170]  ? __might_fault+0xd3/0x180
[ 1696.401506]  ? lock_downgrade+0x6d0/0x6d0
[ 1696.401860]  ? lock_downgrade+0x6d0/0x6d0
[ 1696.402221]  ? sock_has_perm+0x1ea/0x280
[ 1696.402570]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1696.402904] Module has invalid ELF structures
[ 1696.403015]  ? _copy_from_user+0xfb/0x1b0
[ 1696.403789]  ? __import_iovec+0x458/0x590
[ 1696.404143]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1696.404583]  inet6_sendmsg+0x105/0x140
[ 1696.404917]  ? inet6_compat_ioctl+0x320/0x320
[ 1696.405296]  __sock_sendmsg+0xf2/0x190
[ 1696.405627]  ____sys_sendmsg+0x70d/0x870
[ 1696.405976]  ? sock_write_iter+0x3d0/0x3d0
[ 1696.406343]  ? do_recvmmsg+0x6d0/0x6d0
[ 1696.406677]  ? lock_downgrade+0x6d0/0x6d0
[ 1696.407031]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1696.407477]  ___sys_sendmsg+0xf3/0x170
[ 1696.407808]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1696.408200]  ? __fget_files+0x2cf/0x520
[ 1696.408537]  ? lock_downgrade+0x6d0/0x6d0
[ 1696.408890]  ? find_held_lock+0x2c/0x110
[ 1696.409245]  ? __fget_files+0x2f8/0x520
[ 1696.409592]  ? __fget_light+0xea/0x290
[ 1696.409929]  __sys_sendmsg+0xe5/0x1b0
[ 1696.410264]  ? __sys_sendmsg_sock+0x40/0x40
[ 1696.410630]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1696.411038]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1696.411483]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1696.411919]  ? trace_hardirqs_on+0x5b/0x180
[ 1696.412291]  do_syscall_64+0x33/0x40
[ 1696.412607]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1696.413040] RIP: 0033:0x7f9e74c56b19
[ 1696.413362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1696.414921] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1696.415558] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1696.416154] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1696.416750] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1696.417346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1696.417943] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:10:46 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @remote_oob_data_reply={{0x430, 0x26}, {@any, "6c8a04a94fc0f11097d0a99ff5323517", "8a4bda2c16241216332b22af0ba816c1"}}}, 0x2a)

21:10:46 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})

21:10:46 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:10:46 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 46)

21:10:46 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:10:46 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:10:46 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

[ 1696.553223] FAULT_INJECTION: forcing a failure.
[ 1696.553223] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1696.554404] CPU: 1 PID: 8906 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1696.554987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1696.555678] Call Trace:
[ 1696.555910]  dump_stack+0x107/0x167
[ 1696.556222]  should_fail.cold+0x5/0xa
[ 1696.556553]  __alloc_pages_nodemask+0x182/0x600
[ 1696.556954]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1696.557462]  ? do_raw_spin_lock+0x121/0x260
[ 1696.557841]  ? kasan_unpoison_shadow+0x33/0x50
[ 1696.558256]  alloc_pages_current+0x187/0x280
[ 1696.558636]  __vmalloc_node_range+0x60a/0x9e0
[ 1696.559026]  ? __vmalloc_node+0x110/0x110
[ 1696.559384]  ? kernel_read_file+0x6b8/0x790
[ 1696.559750]  __vmalloc_node+0xb5/0x110
[ 1696.560082]  ? kernel_read_file+0x6b8/0x790
[ 1696.560450]  kernel_read_file+0x6b8/0x790
[ 1696.560810]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1696.561208]  kernel_read_file_from_fd+0xb8/0x110
[ 1696.561617]  __do_sys_finit_module+0xe8/0x180
[ 1696.562001]  ? __do_sys_init_module+0x230/0x230
[ 1696.562416]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1696.562839]  ? __ia32_sys_read+0xb0/0xb0
[ 1696.563188]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1696.563636]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1696.564073]  ? trace_hardirqs_on+0x5b/0x180
[ 1696.564439]  do_syscall_64+0x33/0x40
[ 1696.564756]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1696.565191] RIP: 0033:0x7f71c9c30b19
[ 1696.565508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1696.567068] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1696.567711] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1696.568316] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1696.568916] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1696.569517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1696.570114] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:10:46 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
syz_io_uring_setup(0x27ef, &(0x7f00000000c0)={0x0, 0x27ce, 0x2, 0x2, 0xc2}, &(0x7f00003e7000/0x4000)=nil, &(0x7f0000732000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180))

[ 1696.664763] Module has invalid ELF structures
[ 1709.659660] FAULT_INJECTION: forcing a failure.
[ 1709.659660] name failslab, interval 1, probability 0, space 0, times 0
[ 1709.660618] CPU: 0 PID: 8926 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1709.661140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.661785] Call Trace:
[ 1709.662012]  dump_stack+0x107/0x167
[ 1709.662286]  should_fail.cold+0x5/0xa
[ 1709.662594]  should_failslab+0x5/0x20
[ 1709.662926]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1709.663314]  ? skb_segment+0x9d8/0x3aa0
[ 1709.663631]  __alloc_skb+0xb1/0x5b0
[ 1709.663899]  skb_segment+0x9d8/0x3aa0
[ 1709.664231]  ? lock_chain_count+0x20/0x20
[ 1709.664556]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1709.664936]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.665345]  __udp_gso_segment+0x11c6/0x1830
[ 1709.665710]  ? __sk_receive_skb+0x830/0x830
[ 1709.666056]  udp4_ufo_fragment+0x528/0x720
[ 1709.666393]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1709.666818]  inet_gso_segment+0x4fb/0x11a0
[ 1709.667207]  skb_mac_gso_segment+0x273/0x570
[ 1709.667579]  ? inet_sock_destruct+0x840/0x840
[ 1709.667971]  ? skb_network_protocol+0x650/0x650
[ 1709.668314]  ? skb_crc32c_csum_help+0x80/0x80
[ 1709.668658]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1709.669096]  ? trace_hardirqs_on+0x5b/0x180
[ 1709.669424]  __skb_gso_segment+0x32d/0x6d0
[ 1709.669753]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1709.670157]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1709.670539]  __dev_queue_xmit+0x87b/0x2710
[ 1709.670939]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1709.671322]  ? mark_held_locks+0x9e/0xe0
[ 1709.671677]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1709.672192]  neigh_connected_output+0x382/0x4d0
[ 1709.672579]  ip_finish_output2+0x6f1/0x21f0
[ 1709.672939]  ? nf_hook_slow+0xfc/0x1e0
[ 1709.673269]  ? ip_frag_next+0x9e0/0x9e0
[ 1709.673585]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1709.673975]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1709.674354]  ? ip_fragment.constprop.0+0x240/0x240
[ 1709.674726]  ? nf_hook+0x510/0x510
[ 1709.675059]  ip_output+0x2f7/0x600
[ 1709.675390]  ip_send_skb+0xdd/0x260
[ 1709.675735]  udp_send_skb+0x6da/0x11d0
[ 1709.676100]  udp_sendmsg+0x139a/0x2160
[ 1709.676453]  ? mark_lock+0xf5/0x2df0
[ 1709.676808]  ? ip_frag_init+0x350/0x350
[ 1709.677177]  ? lock_chain_count+0x20/0x20
[ 1709.677556]  ? udp_setsockopt+0xc0/0xc0
[ 1709.677879]  ? mark_lock+0xf5/0x2df0
[ 1709.678166]  ? lock_acquire+0x197/0x470
[ 1709.678486]  ? lock_chain_count+0x20/0x20
[ 1709.678865]  ? mark_lock+0xf5/0x2df0
[ 1709.679159]  ? mark_lock+0xf5/0x2df0
[ 1709.679430]  ? lock_chain_count+0x20/0x20
[ 1709.679748]  ? __lock_acquire+0xbb1/0x5b00
[ 1709.680115]  ? lock_chain_count+0x20/0x20
[ 1709.680469]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.680888]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1709.681202]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1709.681589]  ? mark_lock+0xf5/0x2df0
[ 1709.681909]  ? lock_acquire+0x197/0x470
[ 1709.682216]  ? find_held_lock+0x2c/0x110
[ 1709.682545]  ? __might_fault+0xd3/0x180
[ 1709.682882]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.683261]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.684061]  ? sock_has_perm+0x1ea/0x280
[ 1709.684538]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1709.684962]  ? _copy_from_user+0xfb/0x1b0
[ 1709.685282]  ? __import_iovec+0x458/0x590
[ 1709.685599]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1709.685993]  inet6_sendmsg+0x105/0x140
[ 1709.686341]  ? inet6_compat_ioctl+0x320/0x320
[ 1709.686688]  __sock_sendmsg+0xf2/0x190
[ 1709.686993]  ____sys_sendmsg+0x70d/0x870
[ 1709.687325]  ? sock_write_iter+0x3d0/0x3d0
[ 1709.687687]  ? do_recvmmsg+0x6d0/0x6d0
[ 1709.688033]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.688396]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.688852]  ___sys_sendmsg+0xf3/0x170
[ 1709.689196]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1709.689600]  ? __fget_files+0x2cf/0x520
[ 1709.689974]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.690424]  ? find_held_lock+0x2c/0x110
[ 1709.690858]  ? __fget_files+0x2f8/0x520
[ 1709.691245]  ? __fget_light+0xea/0x290
[ 1709.691683]  __sys_sendmsg+0xe5/0x1b0
[ 1709.692039]  ? __sys_sendmsg_sock+0x40/0x40
[ 1709.692418]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1709.692825]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.693235]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.693618]  ? trace_hardirqs_on+0x5b/0x180
[ 1709.693963]  do_syscall_64+0x33/0x40
[ 1709.694233]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.694629] RIP: 0033:0x7f9e74c56b19
[ 1709.694954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.696519] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1709.697179] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1709.697791] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1709.698487] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.699144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.699840] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:10:59 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

21:10:59 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:10:59 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0200000093001ec423ea39002e2f66696c6530000700cf28ffc6531a28b23eec3f8ee6e093df9c47f3322e3454d07c3fc1e9b9c7ddf6b89fa9e5cc726025420b68601077f82d276cbcf6160322f42f5859331d4692ad4b418371eaf60cd668751997f984d94b33295e2dbba4a1d5bf11abd17b70d6a5337576e6ca6887ea91de9d12929b126f97486b5b544ea491062db277a853280e15bd1b0e8e89f773f6ac1aed3f7f0d2209e11e40d1a114fa7dbcb244ddcdbde0c50b21ae6b5c13f730e1c36c66cb40b7fbaa0ffcc55ee1af013bcb1f8634c44e1fe520bf87aa9056836e55e1"])
mmap$IORING_OFF_CQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000004, 0x40010, 0xffffffffffffffff, 0x8000000)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:10:59 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x40000, 0x0, 0x0, 0x0)

21:10:59 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 39)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:10:59 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
r2 = openat(r0, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r2, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r4}}, 0x7)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x3}, 0x6)

21:10:59 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
sendfile(r0, r2, &(0x7f0000000000)=0x400, 0x3)

21:10:59 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 47)

[ 1709.713358] FAULT_INJECTION: forcing a failure.
[ 1709.713358] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1709.715409] CPU: 0 PID: 8928 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1709.716185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.717056] Call Trace:
[ 1709.717310]  dump_stack+0x107/0x167
[ 1709.717817]  should_fail.cold+0x5/0xa
[ 1709.718182]  __alloc_pages_nodemask+0x182/0x600
[ 1709.718797]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1709.719399]  ? do_raw_spin_lock+0x121/0x260
[ 1709.723082]  ? kasan_unpoison_shadow+0x33/0x50
[ 1709.723999]  alloc_pages_current+0x187/0x280
[ 1709.724914]  __vmalloc_node_range+0x60a/0x9e0
[ 1709.725856]  ? __vmalloc_node+0x110/0x110
[ 1709.726495]  ? kernel_read_file+0x6b8/0x790
[ 1709.727238]  __vmalloc_node+0xb5/0x110
[ 1709.727677]  ? kernel_read_file+0x6b8/0x790
[ 1709.728434]  kernel_read_file+0x6b8/0x790
[ 1709.728899]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1709.729623]  kernel_read_file_from_fd+0xb8/0x110
[ 1709.730303]  __do_sys_finit_module+0xe8/0x180
[ 1709.731198]  ? __do_sys_init_module+0x230/0x230
[ 1709.732051]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1709.732989]  ? __ia32_sys_read+0xb0/0xb0
[ 1709.733791]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.734652]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.735365]  ? trace_hardirqs_on+0x5b/0x180
[ 1709.735898]  do_syscall_64+0x33/0x40
[ 1709.736449]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.737085] RIP: 0033:0x7f71c9c30b19
[ 1709.737688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.739888] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1709.740889] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1709.742050] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1709.742725] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.743286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.743843] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1709.755506] Module has invalid ELF structures
21:11:00 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 48)

21:11:00 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:11:00 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
r2 = openat(r0, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r2, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r4}}, 0x7)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r2, 0x89fb, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={'ip6gre0\x00', 0x0, 0x29, 0x81, 0x0, 0x401, 0x8, @mcast2, @mcast2, 0x20, 0x1, 0x4, 0x3ac}})
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000000000)={0x2, 'caif0\x00', {}, 0x8})
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1709.819555] FAULT_INJECTION: forcing a failure.
[ 1709.819555] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1709.820973] CPU: 1 PID: 8941 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1709.821700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.822519] Call Trace:
[ 1709.822784]  dump_stack+0x107/0x167
[ 1709.823130]  should_fail.cold+0x5/0xa
[ 1709.823497]  __alloc_pages_nodemask+0x182/0x600
[ 1709.823934]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1709.824502]  ? do_raw_spin_lock+0x121/0x260
[ 1709.824927]  ? kasan_unpoison_shadow+0x33/0x50
[ 1709.825367]  alloc_pages_current+0x187/0x280
[ 1709.825788]  __vmalloc_node_range+0x60a/0x9e0
[ 1709.826220]  ? __vmalloc_node+0x110/0x110
[ 1709.826664]  ? kernel_read_file+0x6b8/0x790
[ 1709.827334]  __vmalloc_node+0xb5/0x110
[ 1709.828063]  ? kernel_read_file+0x6b8/0x790
[ 1709.828867]  kernel_read_file+0x6b8/0x790
[ 1709.829642]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1709.830585]  kernel_read_file_from_fd+0xb8/0x110
[ 1709.831475]  __do_sys_finit_module+0xe8/0x180
[ 1709.832311]  ? __do_sys_init_module+0x230/0x230
[ 1709.833178]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1709.834097]  ? __ia32_sys_read+0xb0/0xb0
[ 1709.834591]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.835081]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.835560]  ? trace_hardirqs_on+0x5b/0x180
[ 1709.835962]  do_syscall_64+0x33/0x40
[ 1709.836311]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.836783] RIP: 0033:0x7f71c9c30b19
[ 1709.837137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.838817] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1709.839523] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1709.840180] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1709.840832] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.841487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.842208] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:11:00 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 40)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1709.884916] FAULT_INJECTION: forcing a failure.
[ 1709.884916] name failslab, interval 1, probability 0, space 0, times 0
[ 1709.886031] CPU: 1 PID: 8947 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1709.886674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1709.887431] Call Trace:
[ 1709.887686]  dump_stack+0x107/0x167
[ 1709.888030]  should_fail.cold+0x5/0xa
[ 1709.888387]  ? ___slab_alloc+0x155/0x700
[ 1709.888767]  ? create_object.isra.0+0x3a/0xa20
[ 1709.889202]  should_failslab+0x5/0x20
[ 1709.889559]  kmem_cache_alloc+0x5b/0x310
[ 1709.889944]  create_object.isra.0+0x3a/0xa20
[ 1709.890365]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1709.890847]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1709.891318]  ? skb_segment+0x9d8/0x3aa0
[ 1709.891694]  __alloc_skb+0xb1/0x5b0
[ 1709.892042]  skb_segment+0x9d8/0x3aa0
[ 1709.892401]  ? lock_chain_count+0x20/0x20
[ 1709.892833]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1709.893304]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.893808]  __udp_gso_segment+0x11c6/0x1830
[ 1709.894219]  ? __sk_receive_skb+0x830/0x830
[ 1709.894649]  udp4_ufo_fragment+0x528/0x720
[ 1709.895051]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1709.895518]  inet_gso_segment+0x4fb/0x11a0
[ 1709.895924]  skb_mac_gso_segment+0x273/0x570
[ 1709.896334]  ? inet_sock_destruct+0x840/0x840
[ 1709.896746]  ? skb_network_protocol+0x650/0x650
[ 1709.897179]  ? skb_crc32c_csum_help+0x80/0x80
[ 1709.897593]  ? lock_acquire+0x197/0x470
[ 1709.897968]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1709.898402]  __skb_gso_segment+0x32d/0x6d0
[ 1709.898806]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1709.899292]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1709.899718]  __dev_queue_xmit+0x87b/0x2710
[ 1709.900127]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1709.900566]  ? mark_held_locks+0x9e/0xe0
[ 1709.900955]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1709.901461]  neigh_connected_output+0x382/0x4d0
[ 1709.901915]  ip_finish_output2+0x6f1/0x21f0
[ 1709.902331]  ? nf_hook_slow+0xfc/0x1e0
[ 1709.902700]  ? ip_frag_next+0x9e0/0x9e0
[ 1709.903074]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1709.903551]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1709.904019]  ? ip_fragment.constprop.0+0x240/0x240
[ 1709.904471]  ? nf_hook+0x510/0x510
[ 1709.904818]  ip_output+0x2f7/0x600
[ 1709.905155]  ip_send_skb+0xdd/0x260
[ 1709.905503]  udp_send_skb+0x6da/0x11d0
[ 1709.905885]  udp_sendmsg+0x139a/0x2160
[ 1709.906255]  ? mark_lock+0xf5/0x2df0
[ 1709.906623]  ? ip_frag_init+0x350/0x350
[ 1709.907002]  ? lock_chain_count+0x20/0x20
[ 1709.907403]  ? udp_setsockopt+0xc0/0xc0
[ 1709.907776]  ? mark_lock+0xf5/0x2df0
[ 1709.908132]  ? lock_acquire+0x197/0x470
[ 1709.908516]  ? lock_chain_count+0x20/0x20
[ 1709.908911]  ? mark_lock+0xf5/0x2df0
[ 1709.909268]  ? mark_lock+0xf5/0x2df0
[ 1709.909625]  ? lock_chain_count+0x20/0x20
[ 1709.910023]  ? __lock_acquire+0xbb1/0x5b00
[ 1709.910431]  ? lock_chain_count+0x20/0x20
[ 1709.910837]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.911346]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1709.911742]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1709.912229]  ? mark_lock+0xf5/0x2df0
[ 1709.912590]  ? lock_acquire+0x197/0x470
[ 1709.912965]  ? find_held_lock+0x2c/0x110
[ 1709.913352]  ? __might_fault+0xd3/0x180
[ 1709.913725]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.914118]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.914529]  ? sock_has_perm+0x1ea/0x280
[ 1709.914908]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1709.915394]  ? _copy_from_user+0xfb/0x1b0
[ 1709.915794]  ? __import_iovec+0x458/0x590
[ 1709.916182]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1709.916667]  inet6_sendmsg+0x105/0x140
[ 1709.917036]  ? inet6_compat_ioctl+0x320/0x320
[ 1709.917452]  __sock_sendmsg+0xf2/0x190
[ 1709.917817]  ____sys_sendmsg+0x70d/0x870
[ 1709.918201]  ? sock_write_iter+0x3d0/0x3d0
[ 1709.918605]  ? do_recvmmsg+0x6d0/0x6d0
[ 1709.918976]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.919365]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1709.919862]  ___sys_sendmsg+0xf3/0x170
[ 1709.920228]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1709.920661]  ? __fget_files+0x2cf/0x520
[ 1709.921033]  ? lock_downgrade+0x6d0/0x6d0
[ 1709.921420]  ? find_held_lock+0x2c/0x110
[ 1709.921810]  ? __fget_files+0x2f8/0x520
[ 1709.922200]  ? __fget_light+0xea/0x290
[ 1709.922598]  __sys_sendmsg+0xe5/0x1b0
[ 1709.922959]  ? __sys_sendmsg_sock+0x40/0x40
[ 1709.923362]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1709.923812]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1709.924299]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1709.924774]  ? trace_hardirqs_on+0x5b/0x180
[ 1709.925180]  do_syscall_64+0x33/0x40
[ 1709.925528]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1709.926008] RIP: 0033:0x7f9e74c56b19
[ 1709.926369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1709.928040] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1709.928741] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1709.929394] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1709.930045] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1709.930719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1709.931373] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:11:14 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x80000, 0x0, 0x0, 0x0)

21:11:14 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 41)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:11:14 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)

21:11:14 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:14 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:11:14 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 49)

21:11:14 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

21:11:14 executing program 5:
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x900000, &(0x7f0000000100)={'trans=unix,', {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x3}}, {@cachetag={'cachetag', 0x3d, '\xae\xeb'}}], [{@subj_type={'subj_type', 0x3d, '\''}}, {@seclabel}, {@smackfsroot}]}})
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f00000001c0)='\x06\xff\xa6\x00\x00\x00\x00\x00\x00\x9b\xbe\vl\xcd:Qn\x82)\x03\\\x85\xd4\xb5o\x91\xce\xc9\xd6\xef\xb4\x0f\xd2\x135r\xec\x0e\x93oF:\b}\\\xa6K\x9d\xea\xd7\xb0rN)YO\xb6E\x82\x182\x94\xab\xa1FZ\xd4*\x92\xbb\xd6\xbf/\xe9\x17e\xea\x84\x00/C\xda\xe4u\xf3\xe4\xfc6\aa\x9el\x8c\xc0\x95\x03\x99\vt\xbc\xff\xbc\x87\xf6b\xa4\xc94\x84u\x0e\xa8?\rp\xa09nJ\x8f\xa2\x10P\xe8\xe2-\xbb\xc4-\xff\xa2\x06`\\`\xed+\x8aI\x10\x13\xc1\xd9\xb6>\xb6#\xbb\xce\x88\xd4A\xb2\xaeU\xf1\x04\xe8\xec\x8avE\xde;\xf8EQ[\xac8\x80{K\xbe\b\x14a\x1a\'\x19\xe9\x93\xb2\xf4\xa6x\xd5P|\xae\xe6!$\x88G\xceK', 0x6)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
lseek(r2, 0x7f, 0x3)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000393596d409000000", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c653000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:11:14 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0)
write$bt_hci(r1, &(0x7f0000000080)={0x1, @le_start_enc={{0x2019, 0x1c}, {0xc9, 0x400, 0x4, "ac937735b0c5a32d6d89cc3270807ec0"}}}, 0x20)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1724.222053] FAULT_INJECTION: forcing a failure.
[ 1724.222053] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.223039] CPU: 1 PID: 8975 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1724.223627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.225091] Call Trace:
[ 1724.225332]  dump_stack+0x107/0x167
[ 1724.226033]  should_fail.cold+0x5/0xa
[ 1724.226807]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.227632]  ? __alloc_skb+0x6d/0x5b0
[ 1724.228421]  should_failslab+0x5/0x20
[ 1724.229143]  kmem_cache_alloc_node+0x55/0x330
[ 1724.229987]  __alloc_skb+0x6d/0x5b0
[ 1724.230664]  skb_segment+0x9d8/0x3aa0
[ 1724.231403]  ? lock_chain_count+0x20/0x20
[ 1724.232252]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1724.233195]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.234216]  __udp_gso_segment+0x11c6/0x1830
[ 1724.235120]  ? __sk_receive_skb+0x830/0x830
[ 1724.235944]  udp4_ufo_fragment+0x528/0x720
[ 1724.236788]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1724.237736]  inet_gso_segment+0x4fb/0x11a0
[ 1724.238590]  skb_mac_gso_segment+0x273/0x570
[ 1724.239534]  ? inet_sock_destruct+0x840/0x840
[ 1724.240378]  ? skb_network_protocol+0x650/0x650
[ 1724.241318]  ? skb_crc32c_csum_help+0x80/0x80
[ 1724.242181]  ? lock_acquire+0x197/0x470
[ 1724.242550]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1724.243401]  __skb_gso_segment+0x32d/0x6d0
[ 1724.244245]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1724.245283]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1724.246157]  __dev_queue_xmit+0x87b/0x2710
[ 1724.246937]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1724.247799]  ? mark_held_locks+0x9e/0xe0
[ 1724.248555]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1724.249526]  neigh_connected_output+0x382/0x4d0
[ 1724.250407]  ip_finish_output2+0x6f1/0x21f0
[ 1724.251224]  ? nf_hook_slow+0xfc/0x1e0
[ 1724.251935]  ? ip_frag_next+0x9e0/0x9e0
[ 1724.252679]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1724.253650]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1724.254522]  ? ip_fragment.constprop.0+0x240/0x240
[ 1724.255018]  ? nf_hook+0x510/0x510
[ 1724.255510]  ip_output+0x2f7/0x600
[ 1724.255872]  ip_send_skb+0xdd/0x260
[ 1724.256329]  udp_send_skb+0x6da/0x11d0
[ 1724.256733]  udp_sendmsg+0x139a/0x2160
[ 1724.257125]  ? mark_lock+0xf5/0x2df0
[ 1724.257623]  ? ip_frag_init+0x350/0x350
[ 1724.258027]  ? lock_chain_count+0x20/0x20
[ 1724.258589]  ? udp_setsockopt+0xc0/0xc0
[ 1724.258986]  ? mark_lock+0xf5/0x2df0
[ 1724.259448]  ? lock_acquire+0x197/0x470
[ 1724.260045]  ? lock_chain_count+0x20/0x20
[ 1724.262848]  ? mark_lock+0xf5/0x2df0
[ 1724.264243]  ? mark_lock+0xf5/0x2df0
[ 1724.265614]  ? lock_chain_count+0x20/0x20
[ 1724.266531]  ? __lock_acquire+0xbb1/0x5b00
[ 1724.266973]  ? lock_chain_count+0x20/0x20
[ 1724.267699]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.268231]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1724.268640]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1724.269165]  ? mark_lock+0xf5/0x2df0
[ 1724.269536]  ? lock_acquire+0x197/0x470
[ 1724.269931]  ? find_held_lock+0x2c/0x110
[ 1724.270348]  ? __might_fault+0xd3/0x180
[ 1724.270745]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.271172]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.271575]  ? sock_has_perm+0x1ea/0x280
[ 1724.271981]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1724.272531]  ? _copy_from_user+0xfb/0x1b0
[ 1724.272980]  ? __import_iovec+0x458/0x590
[ 1724.273416]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1724.273937]  inet6_sendmsg+0x105/0x140
[ 1724.274336]  ? inet6_compat_ioctl+0x320/0x320
[ 1724.274703]  __sock_sendmsg+0xf2/0x190
[ 1724.275008]  ____sys_sendmsg+0x70d/0x870
[ 1724.275372]  ? sock_write_iter+0x3d0/0x3d0
[ 1724.275692]  ? do_recvmmsg+0x6d0/0x6d0
[ 1724.276000]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.276341]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.276748]  ___sys_sendmsg+0xf3/0x170
[ 1724.277092]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1724.277463]  ? __fget_files+0x2cf/0x520
[ 1724.277755]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.278067]  ? find_held_lock+0x2c/0x110
[ 1724.278393]  ? __fget_files+0x2f8/0x520
[ 1724.278749]  ? __fget_light+0xea/0x290
[ 1724.279104]  __sys_sendmsg+0xe5/0x1b0
[ 1724.279377]  ? __sys_sendmsg_sock+0x40/0x40
[ 1724.279756]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1724.280260]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.280696]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.281260]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.281630]  do_syscall_64+0x33/0x40
[ 1724.281902]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.282482] RIP: 0033:0x7f9e74c56b19
[ 1724.283313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.284777] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1724.285562] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1724.286203] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1724.286744] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.287412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.287920] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1724.305953] FAULT_INJECTION: forcing a failure.
[ 1724.305953] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1724.307187] CPU: 0 PID: 8971 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1724.307803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.308555] Call Trace:
[ 1724.308797]  dump_stack+0x107/0x167
[ 1724.309111]  should_fail.cold+0x5/0xa
[ 1724.309453]  __alloc_pages_nodemask+0x182/0x600
[ 1724.309880]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1724.310406]  ? do_raw_spin_lock+0x121/0x260
[ 1724.310826]  ? kasan_unpoison_shadow+0x33/0x50
[ 1724.311257]  alloc_pages_current+0x187/0x280
[ 1724.311669]  __vmalloc_node_range+0x60a/0x9e0
[ 1724.312100]  ? __vmalloc_node+0x110/0x110
[ 1724.312491]  ? kernel_read_file+0x6b8/0x790
[ 1724.312891]  __vmalloc_node+0xb5/0x110
[ 1724.313249]  ? kernel_read_file+0x6b8/0x790
[ 1724.313646]  kernel_read_file+0x6b8/0x790
[ 1724.314035]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1724.314475]  kernel_read_file_from_fd+0xb8/0x110
[ 1724.314930]  __do_sys_finit_module+0xe8/0x180
[ 1724.315345]  ? __do_sys_init_module+0x230/0x230
[ 1724.315776]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1724.315784] Module has invalid ELF structures
[ 1724.316646]  ? __ia32_sys_read+0xb0/0xb0
[ 1724.317032]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.317514]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.317990]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.318391]  do_syscall_64+0x33/0x40
[ 1724.318758]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.319225] RIP: 0033:0x7f71c9c30b19
[ 1724.319570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.321216] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1724.321906] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1724.322553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1724.323188] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.323826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.324478] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:11:14 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})

21:11:14 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:14 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 42)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:11:14 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000080)={0x1, 0x44, "13b40e5fc24e12044c5d5244e94a78cf5be0ddf81ad183493bcbf8c59ac532106221fc45bb82dc58b5a7d973a7efffc37e5907aedd9d5b7857fb2fb0b97592bada97d840"})

21:11:14 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
madvise(&(0x7f00004c3000/0x4000)=nil, 0x4000, 0x11)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=<r2=>0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x3f, 0x1, 0x81, 0x3, 0x0, 0x4, 0x100, 0x6, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x80000001, 0x4, @perf_config_ext={0x0, 0x9}, 0x828, 0x100, 0x22, 0xb, 0x1, 0xc147, 0x7fff, 0x0, 0x2f, 0x0, 0x5}, r2, 0x4, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r4=>r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
copy_file_range(r0, &(0x7f0000000040)=0x7, r4, &(0x7f00000000c0)=0xe7f, 0x80000001, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0)
sendfile(r5, r6, &(0x7f0000000100)=0x22643812, 0x1)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r5)

21:11:14 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 50)

[ 1724.485222] Module has invalid ELF structures
[ 1724.493175] FAULT_INJECTION: forcing a failure.
[ 1724.493175] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.494249] CPU: 0 PID: 8996 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1724.494862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.495554] Call Trace:
[ 1724.495784]  dump_stack+0x107/0x167
[ 1724.496095]  should_fail.cold+0x5/0xa
[ 1724.496422]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1724.496867]  ? create_object.isra.0+0x3a/0xa20
[ 1724.497256]  should_failslab+0x5/0x20
[ 1724.497580]  kmem_cache_alloc+0x5b/0x310
[ 1724.497924]  ? mark_held_locks+0x9e/0xe0
[ 1724.498278]  create_object.isra.0+0x3a/0xa20
[ 1724.498705]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1724.499176]  kmem_cache_alloc_node+0x169/0x330
[ 1724.499615]  __alloc_skb+0x6d/0x5b0
[ 1724.499960]  skb_segment+0x9d8/0x3aa0
[ 1724.500310]  ? lock_chain_count+0x20/0x20
[ 1724.500729]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1724.501189]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.501678]  __udp_gso_segment+0x11c6/0x1830
[ 1724.502079]  ? __sk_receive_skb+0x830/0x830
[ 1724.502500]  udp4_ufo_fragment+0x528/0x720
[ 1724.502910]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1724.503360]  inet_gso_segment+0x4fb/0x11a0
[ 1724.503764]  skb_mac_gso_segment+0x273/0x570
[ 1724.504164]  ? inet_sock_destruct+0x840/0x840
[ 1724.504570]  ? skb_network_protocol+0x650/0x650
[ 1724.504991]  ? skb_crc32c_csum_help+0x80/0x80
[ 1724.505414]  ? lock_acquire+0x197/0x470
[ 1724.505785]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1724.506193]  __skb_gso_segment+0x32d/0x6d0
[ 1724.510623]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1724.511100]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1724.511512]  __dev_queue_xmit+0x87b/0x2710
[ 1724.511901]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1724.512322]  ? mark_held_locks+0x9e/0xe0
[ 1724.512703]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1724.513189]  neigh_connected_output+0x382/0x4d0
[ 1724.513638]  ip_finish_output2+0x6f1/0x21f0
[ 1724.514044]  ? nf_hook_slow+0xfc/0x1e0
[ 1724.514410]  ? ip_frag_next+0x9e0/0x9e0
[ 1724.514801]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1724.515279]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1724.515740]  ? ip_fragment.constprop.0+0x240/0x240
[ 1724.516190]  ? nf_hook+0x510/0x510
[ 1724.516536]  ip_output+0x2f7/0x600
[ 1724.516874]  ip_send_skb+0xdd/0x260
[ 1724.517227]  udp_send_skb+0x6da/0x11d0
[ 1724.517599]  udp_sendmsg+0x139a/0x2160
[ 1724.517962]  ? mark_lock+0xf5/0x2df0
[ 1724.518312]  ? ip_frag_init+0x350/0x350
[ 1724.518697]  ? lock_chain_count+0x20/0x20
[ 1724.519084]  ? udp_setsockopt+0xc0/0xc0
[ 1724.519441]  ? mark_lock+0xf5/0x2df0
[ 1724.519773]  ? lock_acquire+0x197/0x470
[ 1724.520143]  ? lock_chain_count+0x20/0x20
[ 1724.520537]  ? mark_lock+0xf5/0x2df0
[ 1724.520900]  ? mark_lock+0xf5/0x2df0
[ 1724.521251]  ? lock_chain_count+0x20/0x20
[ 1724.521636]  ? __lock_acquire+0xbb1/0x5b00
[ 1724.522032]  ? lock_chain_count+0x20/0x20
[ 1724.522450]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.522957]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1724.523331]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1724.523813]  ? mark_lock+0xf5/0x2df0
[ 1724.524164]  ? lock_acquire+0x197/0x470
[ 1724.524534]  ? find_held_lock+0x2c/0x110
[ 1724.524916]  ? __might_fault+0xd3/0x180
[ 1724.525291]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.525679]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.526068]  ? sock_has_perm+0x1ea/0x280
[ 1724.526461]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1724.526919]  ? _copy_from_user+0xfb/0x1b0
[ 1724.527228]  ? __import_iovec+0x458/0x590
[ 1724.527556]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1724.528023]  inet6_sendmsg+0x105/0x140
[ 1724.528314]  ? inet6_compat_ioctl+0x320/0x320
[ 1724.528682]  __sock_sendmsg+0xf2/0x190
[ 1724.528964]  ____sys_sendmsg+0x70d/0x870
[ 1724.529258]  ? sock_write_iter+0x3d0/0x3d0
[ 1724.529565]  ? do_recvmmsg+0x6d0/0x6d0
[ 1724.529922]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.530229]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1724.530675]  ___sys_sendmsg+0xf3/0x170
[ 1724.531009]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1724.531404]  ? __fget_files+0x2cf/0x520
[ 1724.531739]  ? lock_downgrade+0x6d0/0x6d0
[ 1724.532090]  ? find_held_lock+0x2c/0x110
[ 1724.532440]  ? __fget_files+0x2f8/0x520
[ 1724.532781]  ? __fget_light+0xea/0x290
[ 1724.533117]  __sys_sendmsg+0xe5/0x1b0
[ 1724.533445]  ? __sys_sendmsg_sock+0x40/0x40
[ 1724.533808]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1724.534212]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.534700]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.535168]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.535569]  do_syscall_64+0x33/0x40
[ 1724.535914]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.536347] RIP: 0033:0x7f9e74c56b19
[ 1724.536666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.538195] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1724.538854] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1724.539450] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1724.540048] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.540644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.541241] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1724.557938] FAULT_INJECTION: forcing a failure.
[ 1724.557938] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1724.559072] CPU: 1 PID: 8997 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1724.559608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.560222] Call Trace:
[ 1724.560423]  dump_stack+0x107/0x167
[ 1724.560701]  should_fail.cold+0x5/0xa
[ 1724.561007]  __alloc_pages_nodemask+0x182/0x600
[ 1724.561346]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1724.561799]  ? do_raw_spin_lock+0x121/0x260
[ 1724.562145]  ? kasan_unpoison_shadow+0x33/0x50
[ 1724.562494]  alloc_pages_current+0x187/0x280
[ 1724.562832]  __vmalloc_node_range+0x60a/0x9e0
[ 1724.563162]  ? __vmalloc_node+0x110/0x110
[ 1724.563467]  ? kernel_read_file+0x6b8/0x790
[ 1724.563789]  __vmalloc_node+0xb5/0x110
[ 1724.564073]  ? kernel_read_file+0x6b8/0x790
[ 1724.564387]  kernel_read_file+0x6b8/0x790
[ 1724.564689]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1724.565032]  kernel_read_file_from_fd+0xb8/0x110
[ 1724.565377]  __do_sys_finit_module+0xe8/0x180
[ 1724.565701]  ? __do_sys_init_module+0x230/0x230
[ 1724.566049]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1724.566409]  ? __ia32_sys_read+0xb0/0xb0
[ 1724.566721]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.567109]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.567479]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.570594]  do_syscall_64+0x33/0x40
[ 1724.570862]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.571347] RIP: 0033:0x7f71c9c30b19
[ 1724.571615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.573149] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1724.573701] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1724.574474] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1724.574983] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1724.575498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.576002] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:11:28 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:28 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x400000, 0x0, 0x0, 0x0)

21:11:28 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 43)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:11:28 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:28 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:11:28 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x81, 0x684380)
write$bt_hci(r1, &(0x7f0000000080)={0x1, @le_set_ext_scan_rsp_data={{0x2038, 0x23}, {0x7, 0x7, 0x3, 0x1, "4aff83d387d664c3bec00fc1695845565622b3595e774e207c186a0ace7e61"}}}, 0x27)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r2, 0x8000000)
openat(r2, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r2)
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0x0, 0x2}, 0x6)

21:11:28 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x5, 0x0, 0x0, 0x9, 0x8, 0x0, {0x0, 0x0, r1}}, 0x3)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:11:28 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 51)

21:11:28 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10)
pidfd_getfd(0xffffffffffffffff, r1, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)

[ 1738.663592] FAULT_INJECTION: forcing a failure.
[ 1738.663592] name failslab, interval 1, probability 0, space 0, times 0
[ 1738.665728] CPU: 0 PID: 9012 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1738.666457] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1738.667775] Call Trace:
[ 1738.668416]  dump_stack+0x107/0x167
[ 1738.669341]  should_fail.cold+0x5/0xa
[ 1738.670328]  should_failslab+0x5/0x20
[ 1738.671317]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1738.672610]  ? skb_segment+0x9d8/0x3aa0
[ 1738.673656]  __alloc_skb+0xb1/0x5b0
[ 1738.674609]  skb_segment+0x9d8/0x3aa0
[ 1738.675571]  ? lock_chain_count+0x20/0x20
[ 1738.676687]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1738.677967]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1738.679333]  __udp_gso_segment+0x11c6/0x1830
[ 1738.680435]  ? __sk_receive_skb+0x830/0x830
[ 1738.681502]  udp4_ufo_fragment+0x528/0x720
[ 1738.682530]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1738.683751]  inet_gso_segment+0x4fb/0x11a0
[ 1738.684769]  skb_mac_gso_segment+0x273/0x570
[ 1738.685836]  ? inet_sock_destruct+0x840/0x840
[ 1738.686925]  ? skb_network_protocol+0x650/0x650
[ 1738.688053]  ? skb_crc32c_csum_help+0x80/0x80
[ 1738.689192]  ? lock_acquire+0x197/0x470
[ 1738.690205]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1738.690916] FAULT_INJECTION: forcing a failure.
[ 1738.690916] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1738.691275]  __skb_gso_segment+0x32d/0x6d0
[ 1738.691295]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1738.694817]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1738.695862]  __dev_queue_xmit+0x87b/0x2710
[ 1738.696833]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1738.697890]  ? mark_held_locks+0x9e/0xe0
[ 1738.698842]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1738.700049]  neigh_connected_output+0x382/0x4d0
[ 1738.701133]  ip_finish_output2+0x6f1/0x21f0
[ 1738.702125]  ? nf_hook_slow+0xfc/0x1e0
[ 1738.703034]  ? ip_frag_next+0x9e0/0x9e0
[ 1738.703950]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1738.705094]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1738.706221]  ? ip_fragment.constprop.0+0x240/0x240
[ 1738.707351]  ? nf_hook+0x510/0x510
[ 1738.708171]  ip_output+0x2f7/0x600
[ 1738.708987]  ip_send_skb+0xdd/0x260
[ 1738.709814]  udp_send_skb+0x6da/0x11d0
[ 1738.710720]  udp_sendmsg+0x139a/0x2160
[ 1738.711609]  ? mark_lock+0xf5/0x2df0
[ 1738.712458]  ? ip_frag_init+0x350/0x350
[ 1738.713372]  ? lock_chain_count+0x20/0x20
[ 1738.714320]  ? udp_setsockopt+0xc0/0xc0
[ 1738.715238]  ? mark_lock+0xf5/0x2df0
[ 1738.716086]  ? lock_acquire+0x197/0x470
[ 1738.717006]  ? lock_chain_count+0x20/0x20
[ 1738.717950]  ? mark_lock+0xf5/0x2df0
[ 1738.718804]  ? mark_lock+0xf5/0x2df0
[ 1738.719651]  ? lock_chain_count+0x20/0x20
[ 1738.720598]  ? __lock_acquire+0xbb1/0x5b00
[ 1738.721560]  ? lock_chain_count+0x20/0x20
[ 1738.722523]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1738.723739]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1738.724675]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1738.725861]  ? mark_lock+0xf5/0x2df0
[ 1738.726724]  ? lock_acquire+0x197/0x470
[ 1738.727634]  ? find_held_lock+0x2c/0x110
[ 1738.728561]  ? __might_fault+0xd3/0x180
[ 1738.729467]  ? lock_downgrade+0x6d0/0x6d0
[ 1738.730413]  ? lock_downgrade+0x6d0/0x6d0
[ 1738.731365]  ? sock_has_perm+0x1ea/0x280
[ 1738.732286]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1738.733465]  ? _copy_from_user+0xfb/0x1b0
[ 1738.734418]  ? __import_iovec+0x458/0x590
[ 1738.735373]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1738.736560]  inet6_sendmsg+0x105/0x140
[ 1738.737451]  ? inet6_compat_ioctl+0x320/0x320
[ 1738.738469]  __sock_sendmsg+0xf2/0x190
[ 1738.739365]  ____sys_sendmsg+0x70d/0x870
[ 1738.740290]  ? sock_write_iter+0x3d0/0x3d0
[ 1738.741255]  ? do_recvmmsg+0x6d0/0x6d0
[ 1738.742162]  ? lock_downgrade+0x6d0/0x6d0
[ 1738.743117]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1738.744318]  ___sys_sendmsg+0xf3/0x170
[ 1738.745213]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1738.746262]  ? __fget_files+0x2cf/0x520
[ 1738.747179]  ? lock_downgrade+0x6d0/0x6d0
[ 1738.748129]  ? find_held_lock+0x2c/0x110
[ 1738.749064]  ? __fget_files+0x2f8/0x520
[ 1738.749977]  ? __fget_light+0xea/0x290
[ 1738.750883]  __sys_sendmsg+0xe5/0x1b0
[ 1738.751745]  ? __sys_sendmsg_sock+0x40/0x40
[ 1738.752736]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1738.753818]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.755023]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1738.756193]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.757189]  do_syscall_64+0x33/0x40
[ 1738.758038]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1738.759215] RIP: 0033:0x7f9e74c56b19
[ 1738.760071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1738.764283] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1738.766021] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1738.767658] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1738.769277] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1738.770928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1738.772544] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1738.774200] CPU: 1 PID: 9026 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1738.775861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1738.777915] Call Trace:
[ 1738.778569]  dump_stack+0x107/0x167
[ 1738.779468]  should_fail.cold+0x5/0xa
[ 1738.779878]  __alloc_pages_nodemask+0x182/0x600
[ 1738.781033]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1738.781657]  ? do_raw_spin_lock+0x121/0x260
[ 1738.782749]  ? kasan_unpoison_shadow+0x33/0x50
[ 1738.783249]  alloc_pages_current+0x187/0x280
[ 1738.784344]  __vmalloc_node_range+0x60a/0x9e0
[ 1738.785413]  ? __vmalloc_node+0x110/0x110
[ 1738.785859]  ? kernel_read_file+0x6b8/0x790
[ 1738.786892]  __vmalloc_node+0xb5/0x110
[ 1738.787299]  ? kernel_read_file+0x6b8/0x790
[ 1738.788322]  kernel_read_file+0x6b8/0x790
[ 1738.789345]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1738.789830]  kernel_read_file_from_fd+0xb8/0x110
[ 1738.790996]  __do_sys_finit_module+0xe8/0x180
[ 1738.791489]  ? __do_sys_init_module+0x230/0x230
[ 1738.792600]  ? __mutex_unlock_slowpath+0xe1/0x600
21:11:28 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

[ 1738.793113]  ? __ia32_sys_read+0xb0/0xb0
[ 1738.794052]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.795429]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1738.796054]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.797155]  do_syscall_64+0x33/0x40
[ 1738.797629]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1738.799025] RIP: 0033:0x7f71c9c30b19
[ 1738.799504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1738.804854] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1738.805767] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1738.807923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1738.809873] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1738.811730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1738.813588] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
[ 1738.814269] Module has invalid ELF structures
21:11:29 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:29 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e4, &(0x7f00000001c0)="51a6a2159ffc4af672892a18cf6a2edcfc001868411037f163a8d462a2781beb54d4c0cd03719d24c676bf752bab884ade447dabc3de38e6e6fc112119e2e86ac21b4de5d3b582ac229d7d34310b808dcc621a09d331ca3cda")
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x3}, 0xfffffffffffffe39)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff, 0xee01}}, './file1\x00'})
write$bt_hci(r1, &(0x7f00000002c0)={0x1, @le_add_to_accept_list={{0x2011, 0x7}, {0x46, @none}}}, 0xb)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x781, 0x1ff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r3, 0x8000000)
r5 = openat(r3, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r5, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r7}}, 0x7)
write$bt_hci(r5, &(0x7f0000000300)={0x1, @le_create_conn={{0x200d, 0x19}, {0x80, 0x0, 0x1, 0x1, @none, 0x7f, 0x1, 0x7ff, 0x1, 0x518, 0x81, 0x200}}}, 0x1d)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r2, 0x8000000)
openat(r2, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r2)
getsockname$unix(r2, &(0x7f0000000080), &(0x7f0000000100)=0x6e)
write$bt_hci(r2, &(0x7f0000000000)={0x1, @le_del_from_resolv_list={{0x2028, 0x7}, {0x4, @none}}}, 0xb)

21:11:29 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)

21:11:29 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:29 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9fc, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\xd8\xf8\xde\xff\xff\xfb\xff\x00\x00\x00\x00\xb3\xf4-%\xf4Q\xb6k\xc9\xcd\x06\xaa\x86\xa3\xc8=yv\x01o\xcfM\xb5 \xf1m\xed\xdc\x81\xcbN\x04\xe4\xa7\xf4_\xe8\v\xb6\xd2}[U\x9c8:Mnv\x918\xdc\xe7\x97\xeb\xfe\xa0\xddCl\x93', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
syz_io_uring_setup(0x43, &(0x7f00000000c0)={0x0, 0x8fc7, 0x0, 0x2, 0x1e7, 0x0, r2}, &(0x7f0000357000/0x3000)=nil, &(0x7f0000173000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180))
finit_module(r1, 0x0, 0x0)

21:11:29 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:11:42 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:11:42 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x800000, 0x0, 0x0, 0x0)

21:11:42 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:42 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:11:42 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:11:42 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 52)

21:11:42 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 44)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1752.502187] FAULT_INJECTION: forcing a failure.
[ 1752.502187] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1752.503547] CPU: 1 PID: 9068 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1752.504297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1752.505195] Call Trace:
[ 1752.505479]  dump_stack+0x107/0x167
[ 1752.505867]  should_fail.cold+0x5/0xa
[ 1752.506323]  __alloc_pages_nodemask+0x182/0x600
[ 1752.506849]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1752.507604]  ? do_raw_spin_lock+0x121/0x260
[ 1752.508105]  ? kasan_unpoison_shadow+0x33/0x50
[ 1752.508584]  alloc_pages_current+0x187/0x280
[ 1752.509091]  __vmalloc_node_range+0x60a/0x9e0
[ 1752.509555]  ? __vmalloc_node+0x110/0x110
[ 1752.510034]  ? kernel_read_file+0x6b8/0x790
[ 1752.511123]  __vmalloc_node+0xb5/0x110
[ 1752.511526]  ? kernel_read_file+0x6b8/0x790
[ 1752.511966]  kernel_read_file+0x6b8/0x790
[ 1752.512463]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1752.513544]  kernel_read_file_from_fd+0xb8/0x110
[ 1752.514090]  __do_sys_finit_module+0xe8/0x180
[ 1752.515146]  ? __do_sys_init_module+0x230/0x230
[ 1752.515634]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1752.516275]  ? __ia32_sys_read+0xb0/0xb0
[ 1752.516706]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1752.517569]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1752.519541]  ? trace_hardirqs_on+0x5b/0x180
[ 1752.520653]  do_syscall_64+0x33/0x40
[ 1752.521574]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1752.526821] RIP: 0033:0x7f71c9c30b19
[ 1752.527739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1752.529923] Module has invalid ELF structures
[ 1752.532205] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1752.532222] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1752.532230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1752.532238] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1752.532251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1752.542225] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:11:42 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
r3 = openat(r1, &(0x7f0000000240)='./file1\x00', 0x2700, 0x2c)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x1ff, 0x0, 0x0, 0x5}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000100)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x1ff, 0x0, 0x0, 0x5}, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000004, 0x11, r4, 0x0)
syz_io_uring_submit(r6, r9, &(0x7f0000001300)=@IORING_OP_WRITEV={0x2, 0x5, 0x4007, @fd_index, 0x5, &(0x7f00000012c0)=[{&(0x7f0000000280)="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", 0x1000}, {&(0x7f0000000180)="01cebb7e326193b709bf9e9ea9bc178a5ac36e5c71fcaeadfe91d688fce2b8c0930fedff4d0fcd91c4b8e8bc2c6be6c23e", 0x31}, {&(0x7f0000001280)="9e0e2dd4ddb87865778068f8e42b892455e6f21440a0", 0x16}], 0x3, 0x1e, 0x1, {0x1, r10}}, 0x6)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r3, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r5}}, 0x7)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0x3, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0xfffffffffffffffb)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)

[ 1752.567984] FAULT_INJECTION: forcing a failure.
21:11:42 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:42 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

[ 1752.567984] name failslab, interval 1, probability 0, space 0, times 0
[ 1752.571371] CPU: 0 PID: 9067 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1752.573217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1752.575519] Call Trace:
[ 1752.576291]  dump_stack+0x107/0x167
[ 1752.577311]  should_fail.cold+0x5/0xa
[ 1752.578376]  ? create_object.isra.0+0x3a/0xa20
[ 1752.579631]  should_failslab+0x5/0x20
[ 1752.580683]  kmem_cache_alloc+0x5b/0x310
[ 1752.581752]  create_object.isra.0+0x3a/0xa20
[ 1752.582951]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1752.584355]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1752.585693]  ? skb_segment+0x9d8/0x3aa0
[ 1752.586800]  __alloc_skb+0xb1/0x5b0
[ 1752.587775]  skb_segment+0x9d8/0x3aa0
[ 1752.588824]  ? lock_chain_count+0x20/0x20
[ 1752.589940]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1752.591268]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1752.592681]  __udp_gso_segment+0x11c6/0x1830
[ 1752.593852]  ? __sk_receive_skb+0x830/0x830
[ 1752.595082]  udp4_ufo_fragment+0x528/0x720
[ 1752.596257]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1752.597626]  inet_gso_segment+0x4fb/0x11a0
[ 1752.598844]  skb_mac_gso_segment+0x273/0x570
[ 1752.600047]  ? inet_sock_destruct+0x840/0x840
[ 1752.601284]  ? skb_network_protocol+0x650/0x650
[ 1752.602547]  ? skb_crc32c_csum_help+0x80/0x80
[ 1752.603806]  ? lock_acquire+0x197/0x470
[ 1752.604914]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1752.606182]  __skb_gso_segment+0x32d/0x6d0
[ 1752.607341]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1752.608665]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1752.609752]  __dev_queue_xmit+0x87b/0x2710
[ 1752.610765]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1752.611859]  ? mark_held_locks+0x9e/0xe0
[ 1752.612826]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1752.614201]  neigh_connected_output+0x382/0x4d0
[ 1752.615329]  ip_finish_output2+0x6f1/0x21f0
[ 1752.616319]  ? nf_hook_slow+0xfc/0x1e0
[ 1752.617216]  ? ip_frag_next+0x9e0/0x9e0
[ 1752.618122]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1752.619271]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1752.620389]  ? ip_fragment.constprop.0+0x240/0x240
[ 1752.621496]  ? nf_hook+0x510/0x510
[ 1752.622313]  ip_output+0x2f7/0x600
[ 1752.623125]  ip_send_skb+0xdd/0x260
[ 1752.623925]  udp_send_skb+0x6da/0x11d0
[ 1752.624785]  udp_sendmsg+0x139a/0x2160
[ 1752.625634]  ? mark_lock+0xf5/0x2df0
[ 1752.626453]  ? ip_frag_init+0x350/0x350
[ 1752.627336]  ? lock_chain_count+0x20/0x20
[ 1752.628246]  ? udp_setsockopt+0xc0/0xc0
[ 1752.629111]  ? mark_lock+0xf5/0x2df0
[ 1752.629923]  ? lock_acquire+0x197/0x470
[ 1752.630797]  ? lock_chain_count+0x20/0x20
[ 1752.631707]  ? mark_lock+0xf5/0x2df0
[ 1752.632521]  ? mark_lock+0xf5/0x2df0
[ 1752.633330]  ? lock_chain_count+0x20/0x20
[ 1752.634234]  ? __lock_acquire+0xbb1/0x5b00
[ 1752.635170]  ? lock_chain_count+0x20/0x20
[ 1752.636088]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1752.637244]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1752.638148]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1752.639286]  ? mark_lock+0xf5/0x2df0
[ 1752.640106]  ? lock_acquire+0x197/0x470
[ 1752.640974]  ? find_held_lock+0x2c/0x110
[ 1752.641866]  ? __might_fault+0xd3/0x180
[ 1752.642739]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.643650]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.644559]  ? sock_has_perm+0x1ea/0x280
[ 1752.645445]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1752.646579]  ? _copy_from_user+0xfb/0x1b0
[ 1752.647499]  ? __import_iovec+0x458/0x590
[ 1752.648417]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1752.649542]  inet6_sendmsg+0x105/0x140
[ 1752.650395]  ? inet6_compat_ioctl+0x320/0x320
[ 1752.651378]  __sock_sendmsg+0xf2/0x190
[ 1752.652230]  ____sys_sendmsg+0x70d/0x870
[ 1752.653116]  ? sock_write_iter+0x3d0/0x3d0
[ 1752.654036]  ? do_recvmmsg+0x6d0/0x6d0
[ 1752.654893]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.655797]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1752.656952]  ___sys_sendmsg+0xf3/0x170
[ 1752.657799]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1752.658811]  ? __fget_files+0x2cf/0x520
[ 1752.659680]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.660583]  ? find_held_lock+0x2c/0x110
[ 1752.661479]  ? __fget_files+0x2f8/0x520
[ 1752.662355]  ? __fget_light+0xea/0x290
[ 1752.663215]  __sys_sendmsg+0xe5/0x1b0
[ 1752.664050]  ? __sys_sendmsg_sock+0x40/0x40
[ 1752.664985]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1752.666016]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1752.667170]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1752.668296]  ? trace_hardirqs_on+0x5b/0x180
[ 1752.669235]  do_syscall_64+0x33/0x40
[ 1752.670048]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1752.671180] RIP: 0033:0x7f9e74c56b19
[ 1752.671999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1752.676025] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1752.677680] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1752.679240] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1752.680787] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1752.682344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1752.683911] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:11:42 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:11:42 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:11:43 executing program 4:
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = signalfd4(r0, &(0x7f0000000000)={[0x7f]}, 0x8, 0x0)
getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000080)=0xfff, &(0x7f00000000c0)=0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
sendfile(r2, r3, &(0x7f0000000100)=0x22643812, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:11:43 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 53)

21:11:43 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:43 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1752.878645] FAULT_INJECTION: forcing a failure.
21:11:43 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 45)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1752.878645] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1752.881767] CPU: 1 PID: 9088 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1752.883433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1752.885472] Call Trace:
[ 1752.886108]  dump_stack+0x107/0x167
[ 1752.887038]  should_fail.cold+0x5/0xa
[ 1752.887960]  __alloc_pages_nodemask+0x182/0x600
[ 1752.889080]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1752.890580]  ? do_raw_spin_lock+0x121/0x260
[ 1752.891670]  ? kasan_unpoison_shadow+0x33/0x50
[ 1752.892787]  alloc_pages_current+0x187/0x280
[ 1752.893888]  __vmalloc_node_range+0x60a/0x9e0
[ 1752.895013]  ? __vmalloc_node+0x110/0x110
[ 1752.896041]  ? kernel_read_file+0x6b8/0x790
[ 1752.897125]  __vmalloc_node+0xb5/0x110
[ 1752.898107]  ? kernel_read_file+0x6b8/0x790
[ 1752.899202]  kernel_read_file+0x6b8/0x790
[ 1752.900247]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1752.901337]  kernel_read_file_from_fd+0xb8/0x110
[ 1752.902541]  __do_sys_finit_module+0xe8/0x180
[ 1752.903657]  ? __do_sys_init_module+0x230/0x230
[ 1752.904794]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1752.905974]  ? __ia32_sys_read+0xb0/0xb0
[ 1752.906982]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1752.908212]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1752.909410]  ? trace_hardirqs_on+0x5b/0x180
[ 1752.910413]  do_syscall_64+0x33/0x40
[ 1752.911292]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1752.912489] RIP: 0033:0x7f71c9c30b19
[ 1752.913374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1752.917829] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1752.919673] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1752.921412] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1752.923170] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1752.924973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1752.926750] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1752.951089] FAULT_INJECTION: forcing a failure.
[ 1752.951089] name failslab, interval 1, probability 0, space 0, times 0
[ 1752.952270] CPU: 0 PID: 9092 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1752.952971] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1752.953822] Call Trace:
[ 1752.954105]  dump_stack+0x107/0x167
[ 1752.954491]  should_fail.cold+0x5/0xa
[ 1752.954899]  ? trace_hardirqs_on+0x5b/0x180
[ 1752.955352]  ? __alloc_skb+0x6d/0x5b0
[ 1752.955758]  should_failslab+0x5/0x20
[ 1752.956158]  kmem_cache_alloc_node+0x55/0x330
[ 1752.956624]  __alloc_skb+0x6d/0x5b0
[ 1752.957484]  skb_segment+0x9d8/0x3aa0
[ 1752.957896]  ? lock_chain_count+0x20/0x20
[ 1752.958987]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1752.959517]  ? mark_lock+0xf5/0x2df0
[ 1752.960465]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1752.961030]  __udp_gso_segment+0x11c6/0x1830
[ 1752.962129]  ? __sk_receive_skb+0x830/0x830
[ 1752.962599]  udp4_ufo_fragment+0x528/0x720
[ 1752.963665]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1752.964188]  inet_gso_segment+0x4fb/0x11a0
[ 1752.965258]  skb_mac_gso_segment+0x273/0x570
[ 1752.965726]  ? inet_sock_destruct+0x840/0x840
[ 1752.966843]  ? skb_network_protocol+0x650/0x650
[ 1752.967335]  ? skb_crc32c_csum_help+0x80/0x80
[ 1752.968464]  ? netif_skb_features+0x5ef/0xbe0
[ 1752.968948]  __skb_gso_segment+0x32d/0x6d0
[ 1752.970025]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1752.970579]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1752.971751]  __dev_queue_xmit+0x87b/0x2710
[ 1752.972214]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1752.973370]  ? mark_held_locks+0x9e/0xe0
[ 1752.973808]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1752.975113]  neigh_connected_output+0x382/0x4d0
[ 1752.975619]  ip_finish_output2+0x6f1/0x21f0
[ 1752.976699]  ? nf_hook_slow+0xfc/0x1e0
[ 1752.977111]  ? ip_frag_next+0x9e0/0x9e0
[ 1752.978106]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1752.978638]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1752.979865]  ? ip_fragment.constprop.0+0x240/0x240
[ 1752.980381]  ? nf_hook+0x510/0x510
[ 1752.981266]  ip_output+0x2f7/0x600
[ 1752.981653]  ip_send_skb+0xdd/0x260
[ 1752.982566]  udp_send_skb+0x6da/0x11d0
[ 1752.983002]  udp_sendmsg+0x139a/0x2160
[ 1752.983964]  ? mark_lock+0xf5/0x2df0
[ 1752.984365]  ? ip_frag_init+0x350/0x350
[ 1752.985358]  ? lock_chain_count+0x20/0x20
[ 1752.985801]  ? udp_setsockopt+0xc0/0xc0
[ 1752.986773]  ? mark_lock+0xf5/0x2df0
[ 1752.987176]  ? lock_acquire+0x197/0x470
[ 1752.988173]  ? lock_chain_count+0x20/0x20
[ 1752.988613]  ? mark_lock+0xf5/0x2df0
[ 1752.989544]  ? mark_lock+0xf5/0x2df0
[ 1752.989947]  ? lock_chain_count+0x20/0x20
[ 1752.990953]  ? __lock_acquire+0xbb1/0x5b00
[ 1752.991410]  ? lock_chain_count+0x20/0x20
[ 1752.992409]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1752.992978]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1752.993984]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1752.994530]  ? mark_lock+0xf5/0x2df0
[ 1752.995487]  ? lock_acquire+0x197/0x470
[ 1752.995908]  ? find_held_lock+0x2c/0x110
[ 1752.996943]  ? __might_fault+0xd3/0x180
[ 1752.997368]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.998407]  ? lock_downgrade+0x6d0/0x6d0
[ 1752.998858]  ? sock_has_perm+0x1ea/0x280
[ 1752.999883]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1753.000432]  ? _copy_from_user+0xfb/0x1b0
[ 1753.001464]  ? __import_iovec+0x458/0x590
[ 1753.001906]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1753.003242]  inet6_sendmsg+0x105/0x140
[ 1753.003661]  ? inet6_compat_ioctl+0x320/0x320
[ 1753.004794]  __sock_sendmsg+0xf2/0x190
[ 1753.005214]  ____sys_sendmsg+0x70d/0x870
[ 1753.006217]  ? sock_write_iter+0x3d0/0x3d0
[ 1753.006670]  ? do_recvmmsg+0x6d0/0x6d0
[ 1753.007669]  ? lock_downgrade+0x6d0/0x6d0
[ 1753.008115]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1753.009438]  ___sys_sendmsg+0xf3/0x170
[ 1753.009862]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1753.011024]  ? __fget_files+0x2cf/0x520
[ 1753.011449]  ? lock_downgrade+0x6d0/0x6d0
[ 1753.012495]  ? find_held_lock+0x2c/0x110
[ 1753.012936]  ? __fget_files+0x2f8/0x520
[ 1753.013919]  ? __fget_light+0xea/0x290
[ 1753.014345]  __sys_sendmsg+0xe5/0x1b0
[ 1753.015309]  ? __sys_sendmsg_sock+0x40/0x40
[ 1753.015772]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1753.016964]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1753.017519]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1753.018791]  ? trace_hardirqs_on+0x5b/0x180
[ 1753.019254]  do_syscall_64+0x33/0x40
[ 1753.020203]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1753.020743] RIP: 0033:0x7f9e74c56b19
[ 1753.021690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1753.026297] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1753.027105] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1753.027844] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1753.028584] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1753.029319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1753.030071] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:11:56 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:11:56 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, 0x0, 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:56 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r3, r4)
pidfd_getfd(r2, r4, 0x0)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:11:56 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 46)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1766.584879] FAULT_INJECTION: forcing a failure.
[ 1766.584879] name failslab, interval 1, probability 0, space 0, times 0
[ 1766.586174] FAULT_INJECTION: forcing a failure.
[ 1766.586174] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1766.587838] CPU: 0 PID: 9109 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1766.587855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.598354] Call Trace:
[ 1766.599060]  dump_stack+0x107/0x167
[ 1766.599975]  should_fail.cold+0x5/0xa
[ 1766.600898]  ? create_object.isra.0+0x3a/0xa20
[ 1766.602094]  should_failslab+0x5/0x20
[ 1766.603117]  kmem_cache_alloc+0x5b/0x310
[ 1766.604144]  ? mark_held_locks+0x9e/0xe0
[ 1766.605191]  create_object.isra.0+0x3a/0xa20
[ 1766.606302]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1766.607635]  kmem_cache_alloc_node+0x169/0x330
[ 1766.608864]  __alloc_skb+0x6d/0x5b0
[ 1766.616031]  skb_segment+0x9d8/0x3aa0
[ 1766.617043]  ? lock_chain_count+0x20/0x20
[ 1766.618174]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1766.619503]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.621544]  __udp_gso_segment+0x11c6/0x1830
[ 1766.622015]  ? __sk_receive_skb+0x830/0x830
[ 1766.622536]  udp4_ufo_fragment+0x528/0x720
[ 1766.623000]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1766.623602]  inet_gso_segment+0x4fb/0x11a0
[ 1766.624044]  skb_mac_gso_segment+0x273/0x570
[ 1766.624539]  ? inet_sock_destruct+0x840/0x840
[ 1766.624973]  ? skb_network_protocol+0x650/0x650
[ 1766.625501]  ? skb_crc32c_csum_help+0x80/0x80
[ 1766.625964]  ? lock_acquire+0x197/0x470
[ 1766.626434]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1766.626901]  __skb_gso_segment+0x32d/0x6d0
[ 1766.627388]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1766.627942]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1766.628477]  __dev_queue_xmit+0x87b/0x2710
[ 1766.628938]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1766.629451]  ? mark_held_locks+0x9e/0xe0
[ 1766.629889]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1766.630465]  neigh_connected_output+0x382/0x4d0
[ 1766.630975]  ip_finish_output2+0x6f1/0x21f0
[ 1766.631458]  ? nf_hook_slow+0xfc/0x1e0
[ 1766.631876]  ? ip_frag_next+0x9e0/0x9e0
[ 1766.632353]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1766.632885]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1766.633422]  ? ip_fragment.constprop.0+0x240/0x240
[ 1766.633934]  ? nf_hook+0x510/0x510
[ 1766.634446]  ip_output+0x2f7/0x600
[ 1766.634810]  ip_send_skb+0xdd/0x260
[ 1766.635250]  udp_send_skb+0x6da/0x11d0
[ 1766.635648]  udp_sendmsg+0x139a/0x2160
[ 1766.636137]  ? mark_lock+0xf5/0x2df0
[ 1766.636516]  ? ip_frag_init+0x350/0x350
[ 1766.636914]  ? lock_chain_count+0x20/0x20
[ 1766.637396]  ? udp_setsockopt+0xc0/0xc0
[ 1766.637790]  ? mark_lock+0xf5/0x2df0
[ 1766.638226]  ? lock_acquire+0x197/0x470
[ 1766.638622]  ? lock_chain_count+0x20/0x20
[ 1766.639084]  ? mark_lock+0xf5/0x2df0
[ 1766.639480]  ? mark_lock+0xf5/0x2df0
[ 1766.639851]  ? lock_chain_count+0x20/0x20
[ 1766.640328]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.640747]  ? lock_chain_count+0x20/0x20
[ 1766.641271]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.641817]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1766.642276]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1766.642811]  ? mark_lock+0xf5/0x2df0
[ 1766.643241]  ? lock_acquire+0x197/0x470
[ 1766.643658]  ? find_held_lock+0x2c/0x110
[ 1766.644119]  ? __might_fault+0xd3/0x180
[ 1766.644535]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.644960]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.645422]  ? sock_has_perm+0x1ea/0x280
[ 1766.645849]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1766.646432]  ? _copy_from_user+0xfb/0x1b0
[ 1766.646889]  ? __import_iovec+0x458/0x590
[ 1766.647338]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1766.647874]  inet6_sendmsg+0x105/0x140
[ 1766.648304]  ? inet6_compat_ioctl+0x320/0x320
[ 1766.648773]  __sock_sendmsg+0xf2/0x190
[ 1766.649215]  ____sys_sendmsg+0x70d/0x870
[ 1766.649620]  ? sock_write_iter+0x3d0/0x3d0
[ 1766.650104]  ? do_recvmmsg+0x6d0/0x6d0
[ 1766.650491]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.650936]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.651530]  ___sys_sendmsg+0xf3/0x170
[ 1766.651941]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1766.652446]  ? __fget_files+0x2cf/0x520
[ 1766.652847]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.653336]  ? find_held_lock+0x2c/0x110
[ 1766.653755]  ? __fget_files+0x2f8/0x520
[ 1766.657612]  ? __fget_light+0xea/0x290
[ 1766.658064]  __sys_sendmsg+0xe5/0x1b0
[ 1766.658473]  ? __sys_sendmsg_sock+0x40/0x40
[ 1766.658913]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.659459]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.660022]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.660562]  ? trace_hardirqs_on+0x5b/0x180
[ 1766.661034]  do_syscall_64+0x33/0x40
[ 1766.661415]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.661945] RIP: 0033:0x7f9e74c56b19
[ 1766.662389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.664305] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1766.665115] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1766.665834] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1766.666593] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.667333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.668083] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1766.668818] CPU: 1 PID: 9116 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1766.669464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.670278] Call Trace:
[ 1766.670585]  dump_stack+0x107/0x167
[ 1766.670952]  should_fail.cold+0x5/0xa
[ 1766.671315]  __alloc_pages_nodemask+0x182/0x600
[ 1766.671822]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1766.672381]  ? do_raw_spin_lock+0x121/0x260
[ 1766.672867]  ? kasan_unpoison_shadow+0x33/0x50
[ 1766.673353]  alloc_pages_current+0x187/0x280
[ 1766.673833]  __vmalloc_node_range+0x60a/0x9e0
[ 1766.674287]  ? __vmalloc_node+0x110/0x110
[ 1766.674730]  ? kernel_read_file+0x6b8/0x790
[ 1766.675142]  __vmalloc_node+0xb5/0x110
[ 1766.675506]  ? kernel_read_file+0x6b8/0x790
[ 1766.675979]  kernel_read_file+0x6b8/0x790
[ 1766.676368]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1766.676847]  kernel_read_file_from_fd+0xb8/0x110
[ 1766.677301]  __do_sys_finit_module+0xe8/0x180
[ 1766.677782]  ? __do_sys_init_module+0x230/0x230
[ 1766.678221]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.678739]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.679127]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.679701]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.680173]  ? trace_hardirqs_on+0x5b/0x180
[ 1766.680628]  do_syscall_64+0x33/0x40
[ 1766.680974]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.681461] RIP: 0033:0x7f71c9c30b19
[ 1766.681865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.683695] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1766.684423] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1766.685139] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1766.685883] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.686594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.687281] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:11:56 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x10002, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
ioctl$CDROMSEEK(0xffffffffffffffff, 0x5316, &(0x7f0000000080)={0xbe, 0x1, 0x80, 0x36, 0xfa, 0x81})
write$binfmt_aout(r1, &(0x7f0000000140)={{0xcc, 0x81, 0x1, 0x30, 0x2ec, 0x80000000, 0x1d9, 0x1000}, "a95ac2b4fdf5601cb99ca9efa82dee26e36dc52dcdf3ba528cdf3077a2afbf7eb7845f14600e7964b9505bf492a577504ef8050beac82f05eddd11766d45cf197052a9f22e", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x565)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x4, 0x3}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:11:56 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x1000000, 0x0, 0x0, 0x0)

21:11:56 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
dup2(r0, r1)

21:11:56 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 54)

[ 1766.738409] Module has invalid ELF structures
21:11:56 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, 0x0, 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:11:57 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

21:11:57 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:11:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

21:11:57 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 47)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:11:57 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 55)

[ 1766.869130] FAULT_INJECTION: forcing a failure.
[ 1766.869130] name failslab, interval 1, probability 0, space 0, times 0
[ 1766.870355] CPU: 1 PID: 9130 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1766.871061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.871896] Call Trace:
[ 1766.872162]  dump_stack+0x107/0x167
[ 1766.872515]  should_fail.cold+0x5/0xa
[ 1766.872976]  should_failslab+0x5/0x20
[ 1766.873344]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1766.873885]  ? skb_segment+0x9d8/0x3aa0
[ 1766.874268]  __alloc_skb+0xb1/0x5b0
[ 1766.874682]  skb_segment+0x9d8/0x3aa0
[ 1766.875065]  ? lock_chain_count+0x20/0x20
[ 1766.875500]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1766.876032]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.876618]  __udp_gso_segment+0x11c6/0x1830
[ 1766.877059]  ? __sk_receive_skb+0x830/0x830
[ 1766.877505]  udp4_ufo_fragment+0x528/0x720
[ 1766.878002]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1766.878489]  inet_gso_segment+0x4fb/0x11a0
[ 1766.879491]  skb_mac_gso_segment+0x273/0x570
[ 1766.880400]  ? inet_sock_destruct+0x840/0x840
[ 1766.880956]  ? skb_network_protocol+0x650/0x650
[ 1766.881409]  ? skb_crc32c_csum_help+0x80/0x80
[ 1766.881897]  ? lock_acquire+0x197/0x470
[ 1766.882279]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1766.882755]  __skb_gso_segment+0x32d/0x6d0
[ 1766.883170]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1766.883757]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1766.884192]  __dev_queue_xmit+0x87b/0x2710
[ 1766.884676]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1766.885113]  ? mark_held_locks+0x9e/0xe0
[ 1766.885508]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1766.886049]  neigh_connected_output+0x382/0x4d0
[ 1766.886522]  ip_finish_output2+0x6f1/0x21f0
[ 1766.887009]  ? nf_hook_slow+0xfc/0x1e0
[ 1766.887401]  ? ip_frag_next+0x9e0/0x9e0
[ 1766.887856]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1766.888329]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1766.888852]  ? ip_fragment.constprop.0+0x240/0x240
[ 1766.889310]  ? nf_hook+0x510/0x510
[ 1766.889711]  ip_output+0x2f7/0x600
[ 1766.890053]  ip_send_skb+0xdd/0x260
[ 1766.890433]  udp_send_skb+0x6da/0x11d0
[ 1766.890868]  udp_sendmsg+0x139a/0x2160
[ 1766.891237]  ? mark_lock+0xf5/0x2df0
[ 1766.891677]  ? ip_frag_init+0x350/0x350
[ 1766.892053]  ? lock_chain_count+0x20/0x20
[ 1766.892455]  ? udp_setsockopt+0xc0/0xc0
[ 1766.892895]  ? mark_lock+0xf5/0x2df0
[ 1766.893240]  ? lock_acquire+0x197/0x470
[ 1766.893682]  ? lock_chain_count+0x20/0x20
[ 1766.894078]  ? mark_lock+0xf5/0x2df0
[ 1766.894445]  ? mark_lock+0xf5/0x2df0
[ 1766.894844]  ? lock_chain_count+0x20/0x20
[ 1766.895243]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.895732]  ? lock_chain_count+0x20/0x20
[ 1766.898938]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.899489]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1766.899968]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1766.900467]  ? mark_lock+0xf5/0x2df0
[ 1766.900875]  ? lock_acquire+0x197/0x470
[ 1766.901293]  ? find_held_lock+0x2c/0x110
[ 1766.901736]  ? __might_fault+0xd3/0x180
[ 1766.902106]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.902497]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.902992]  ? sock_has_perm+0x1ea/0x280
[ 1766.903384]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1766.904007]  ? _copy_from_user+0xfb/0x1b0
[ 1766.904412]  ? __import_iovec+0x458/0x590
[ 1766.904862]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1766.905343]  inet6_sendmsg+0x105/0x140
[ 1766.905765]  ? inet6_compat_ioctl+0x320/0x320
[ 1766.906179]  __sock_sendmsg+0xf2/0x190
[ 1766.906593]  ____sys_sendmsg+0x70d/0x870
[ 1766.906997]  ? sock_write_iter+0x3d0/0x3d0
[ 1766.907408]  ? do_recvmmsg+0x6d0/0x6d0
[ 1766.907855]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.908243]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.908822]  ___sys_sendmsg+0xf3/0x170
[ 1766.909187]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1766.909672]  ? __fget_files+0x2cf/0x520
[ 1766.910086]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.910480]  ? find_held_lock+0x2c/0x110
[ 1766.910932]  ? __fget_files+0x2f8/0x520
[ 1766.911310]  ? __fget_light+0xea/0x290
[ 1766.911757]  __sys_sendmsg+0xe5/0x1b0
[ 1766.912117]  ? __sys_sendmsg_sock+0x40/0x40
[ 1766.912525]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.913024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.913514]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.914044]  ? trace_hardirqs_on+0x5b/0x180
[ 1766.914525]  do_syscall_64+0x33/0x40
[ 1766.914981]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.915507] RIP: 0033:0x7f9e74c56b19
[ 1766.915943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.917665] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1766.918323] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1766.918986] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1766.919657] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.920257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.920903] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:11:57 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

[ 1766.946903] FAULT_INJECTION: forcing a failure.
[ 1766.946903] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1766.948169] CPU: 1 PID: 9133 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1766.948887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.950528] Call Trace:
[ 1766.950822]  dump_stack+0x107/0x167
[ 1766.951173]  should_fail.cold+0x5/0xa
[ 1766.951621]  __alloc_pages_nodemask+0x182/0x600
[ 1766.952079]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1766.952717]  ? do_raw_spin_lock+0x121/0x260
[ 1766.953129]  ? kasan_unpoison_shadow+0x33/0x50
[ 1766.953621]  alloc_pages_current+0x187/0x280
[ 1766.954049]  __vmalloc_node_range+0x60a/0x9e0
[ 1766.954484]  ? __vmalloc_node+0x110/0x110
[ 1766.954985]  ? kernel_read_file+0x6b8/0x790
[ 1766.955405]  __vmalloc_node+0xb5/0x110
21:11:57 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c6530d4"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

[ 1766.955850]  ? kernel_read_file+0x6b8/0x790
[ 1766.956453]  kernel_read_file+0x6b8/0x790
[ 1766.956940]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1766.957387]  kernel_read_file_from_fd+0xb8/0x110
[ 1766.957908]  __do_sys_finit_module+0xe8/0x180
[ 1766.958375]  ? __do_sys_init_module+0x230/0x230
[ 1766.958890]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.959411]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.959902]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.960422]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.960968]  ? trace_hardirqs_on+0x5b/0x180
[ 1766.961392]  do_syscall_64+0x33/0x40
[ 1766.961805]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.962309] RIP: 0033:0x7f71c9c30b19
[ 1766.962727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.964584] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1766.965306] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1766.966023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1766.966724] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.967388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.968132] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1767.008195] Module has invalid ELF structures
21:12:10 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:12:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x2000000, 0x0, 0x0, 0x0)

21:12:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000180)='\x06\xff\xff\xe0\x01\x00\x00\x00\xc7\x11\xe4I0\x86\xc8\rd\xca\xea\x8f\x1b\xcf\x83=\xe1u])\xfe\xf6h\xc8Z(L\xb0\xe3\f%{&\x86\n)\',u\xb99G\xf2\xc5\x1fh{\xaf\x80\x06\x04\x00\x00\x00J\xa7J\x17\x11$\xe9\xe4E\n\xae\xf4\xa6\x8e\x92\xa2\xfc\xa9;\a\xc7\x00\x00\x00\xa0\xb4Y\xb1\xbe\xb7@Kx\xeb\xff\x03\xc8\x97\xb7\x1c\x83\xf5zV\xf1\xf6\\n.\xe0\xecw\xe5\x11\b]\xdf\x18f\x94\xa0U\xbe/\xe3Y\xda\xf9\xedtn!\x88;\n-\xba\r\xb4\x10\a%\x89\x8b7\x84<\x80\xfb*TR\x87\xae<\x8d\x99*\xe3\x03\xd76\xdbBh\x90\x066\xa5;\x8c\xb5\xff\x94\x9bO\x05\xa6\x8b\xc1\xf1J\xacs\x1d\x91s\xae\xf6}\xec\x8bp\x14\xf1\xf2\xe6t\xf1\xe2m\xbeQ\x94\x9cP\xcf\xe6\x1eV\xb6\xbaQX\xe9\x94\x1bC\xd6d\xa0*\x03\x81\xf7\xa3K\xf7d\x8a>\xda\n\xf6}\xf95w\xa8L\xa7v\xc3\x90\xf8>\x95\x83\xb9\xb6\xce\xb4\x9c\'\xc9\xfb:\x03v\x9f\x89\x00'/287, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
pwrite64(r2, &(0x7f00000002c0)="a49c60db0537a0945be7ce3d6377599b31b82ab2c1165779cc4e3afeb59dbb60fac06e7995db448f85c0ec81b63876d24b7a21d16b6befc39cef452188ea8dc4fbad7bc5333669e75a87b6ab0320adc1c5134ced24906f915111f7c5af9ed8408f50e9513f04ee1734c9779c13e198aa873d97341a57e7034b200cc01118eebe99e22afced9678239a16a2c849c61a28935403a1ece525c364eb4bb89ee91022111aea0b5e680e7273c761a9ca14e678a95579d717f09af268c7f06bdf45a051df", 0xc1, 0x1763)
finit_module(r1, 0x0, 0x0)

21:12:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 56)

21:12:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_elf32(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0x4, 0x3f, 0x2, 0x9, 0x0, 0x6, 0x0, 0x51, 0x38, 0x2bf, 0x7fffffff, 0x1ff, 0x20, 0x2, 0x1f6, 0x9c0, 0xfc3c}, [], "8cc104701a953f48f54d01a60280456a9532e693662ceea505383cf25285a4eb15e276010f94eac2c0cd73aaa2f8fe8bdfa8113d6d1d67d5ca4090556222a1e9d4968c28be633bbd2417a8d0ac5e9dbbfb90d52217422602c47040e609a154593f295686f4ed91ce53d3f4a238289d4afbda098f56940c55e2b9844a", ['\x00']}, 0x1b4)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:12:10 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

21:12:10 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 48)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1779.980595] FAULT_INJECTION: forcing a failure.
[ 1779.980595] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1779.981780] CPU: 0 PID: 9148 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1779.982401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1779.983172] Call Trace:
[ 1779.983426]  dump_stack+0x107/0x167
[ 1779.983765]  should_fail.cold+0x5/0xa
[ 1779.984124]  __alloc_pages_nodemask+0x182/0x600
[ 1779.984558]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1779.985110]  ? do_raw_spin_lock+0x121/0x260
[ 1779.985514]  ? kasan_unpoison_shadow+0x33/0x50
[ 1779.985945]  alloc_pages_current+0x187/0x280
[ 1779.986360]  __vmalloc_node_range+0x60a/0x9e0
[ 1779.986783]  ? __vmalloc_node+0x110/0x110
[ 1779.987194]  ? kernel_read_file+0x6b8/0x790
[ 1779.987593]  __vmalloc_node+0xb5/0x110
[ 1779.987945]  ? kernel_read_file+0x6b8/0x790
[ 1779.988336]  kernel_read_file+0x6b8/0x790
[ 1779.988720]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1779.989149]  kernel_read_file_from_fd+0xb8/0x110
[ 1779.989594]  __do_sys_finit_module+0xe8/0x180
[ 1779.990009]  ? __do_sys_init_module+0x230/0x230
[ 1779.990434]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1779.990898]  ? __ia32_sys_read+0xb0/0xb0
[ 1779.991295]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1779.991776]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1779.992243]  ? trace_hardirqs_on+0x5b/0x180
[ 1779.992637]  do_syscall_64+0x33/0x40
[ 1779.992979]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1779.993410] RIP: 0033:0x7f71c9c30b19
[ 1779.993742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1779.995406] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1779.996098] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1779.996742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1779.997387] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1779.998023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1779.998668] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1780.000951] FAULT_INJECTION: forcing a failure.
[ 1780.000951] name failslab, interval 1, probability 0, space 0, times 0
[ 1780.001966] CPU: 0 PID: 9156 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1780.002584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1780.003361] Call Trace:
[ 1780.003612]  dump_stack+0x107/0x167
[ 1780.003962]  should_fail.cold+0x5/0xa
[ 1780.004314]  ? create_object.isra.0+0x3a/0xa20
[ 1780.004738]  should_failslab+0x5/0x20
[ 1780.005099]  kmem_cache_alloc+0x5b/0x310
[ 1780.005483]  create_object.isra.0+0x3a/0xa20
[ 1780.005886]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1780.006367]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1780.006826]  ? skb_segment+0x9d8/0x3aa0
[ 1780.007218]  __alloc_skb+0xb1/0x5b0
[ 1780.007566]  skb_segment+0x9d8/0x3aa0
[ 1780.007922]  ? lock_chain_count+0x20/0x20
[ 1780.008334]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1780.008794]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1780.009280]  __udp_gso_segment+0x11c6/0x1830
[ 1780.009691]  ? __sk_receive_skb+0x830/0x830
[ 1780.010098]  udp4_ufo_fragment+0x528/0x720
[ 1780.010497]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1780.010961]  inet_gso_segment+0x4fb/0x11a0
[ 1780.011380]  skb_mac_gso_segment+0x273/0x570
[ 1780.011781]  ? inet_sock_destruct+0x840/0x840
[ 1780.012191]  ? skb_network_protocol+0x650/0x650
[ 1780.012608]  ? skb_crc32c_csum_help+0x80/0x80
[ 1780.013027]  ? lock_acquire+0x197/0x470
[ 1780.013394]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1780.013812]  __skb_gso_segment+0x32d/0x6d0
[ 1780.014206]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1780.014680]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1780.015127]  __dev_queue_xmit+0x87b/0x2710
[ 1780.015525]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1780.015959]  ? mark_held_locks+0x9e/0xe0
[ 1780.016350]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1780.016838]  neigh_connected_output+0x382/0x4d0
[ 1780.017287]  ip_finish_output2+0x6f1/0x21f0
[ 1780.017689]  ? nf_hook_slow+0xfc/0x1e0
[ 1780.018053]  ? ip_frag_next+0x9e0/0x9e0
[ 1780.018423]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1780.018892]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1780.019371]  ? ip_fragment.constprop.0+0x240/0x240
[ 1780.019822]  ? nf_hook+0x510/0x510
[ 1780.020166]  ip_output+0x2f7/0x600
[ 1780.020504]  ip_send_skb+0xdd/0x260
[ 1780.020847]  udp_send_skb+0x6da/0x11d0
[ 1780.021221]  udp_sendmsg+0x139a/0x2160
[ 1780.021581]  ? mark_lock+0xf5/0x2df0
[ 1780.021932]  ? ip_frag_init+0x350/0x350
[ 1780.022304]  ? lock_chain_count+0x20/0x20
[ 1780.022692]  ? udp_setsockopt+0xc0/0xc0
[ 1780.023072]  ? mark_lock+0xf5/0x2df0
[ 1780.023416]  ? lock_acquire+0x197/0x470
[ 1780.023778]  ? lock_chain_count+0x20/0x20
[ 1780.024163]  ? mark_lock+0xf5/0x2df0
[ 1780.024512]  ? mark_lock+0xf5/0x2df0
[ 1780.024858]  ? lock_chain_count+0x20/0x20
[ 1780.025240]  ? __lock_acquire+0xbb1/0x5b00
[ 1780.025628]  ? lock_chain_count+0x20/0x20
[ 1780.026021]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1780.026509]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1780.026889]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1780.027392]  ? mark_lock+0xf5/0x2df0
[ 1780.027737]  ? lock_acquire+0x197/0x470
[ 1780.028103]  ? find_held_lock+0x2c/0x110
[ 1780.028486]  ? __might_fault+0xd3/0x180
[ 1780.028851]  ? lock_downgrade+0x6d0/0x6d0
[ 1780.029234]  ? lock_downgrade+0x6d0/0x6d0
[ 1780.029619]  ? sock_has_perm+0x1ea/0x280
[ 1780.029996]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1780.030468]  ? _copy_from_user+0xfb/0x1b0
[ 1780.030865]  ? __import_iovec+0x458/0x590
[ 1780.031261]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1780.031734]  inet6_sendmsg+0x105/0x140
[ 1780.032092]  ? inet6_compat_ioctl+0x320/0x320
[ 1780.032503]  __sock_sendmsg+0xf2/0x190
[ 1780.032868]  ____sys_sendmsg+0x70d/0x870
[ 1780.033246]  ? sock_write_iter+0x3d0/0x3d0
[ 1780.033634]  ? do_recvmmsg+0x6d0/0x6d0
[ 1780.033999]  ? lock_downgrade+0x6d0/0x6d0
[ 1780.034384]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1780.034868]  ___sys_sendmsg+0xf3/0x170
[ 1780.035245]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1780.035669]  ? __fget_files+0x2cf/0x520
[ 1780.036040]  ? lock_downgrade+0x6d0/0x6d0
[ 1780.036427]  ? find_held_lock+0x2c/0x110
[ 1780.036807]  ? __fget_files+0x2f8/0x520
[ 1780.037184]  ? __fget_light+0xea/0x290
[ 1780.037535]  __sys_sendmsg+0xe5/0x1b0
[ 1780.037862]  ? __sys_sendmsg_sock+0x40/0x40
[ 1780.038257]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1780.038699]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1780.039181]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1780.039639]  ? trace_hardirqs_on+0x5b/0x180
[ 1780.040041]  do_syscall_64+0x33/0x40
[ 1780.040386]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1780.040854] RIP: 0033:0x7f9e74c56b19
[ 1780.041197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1780.042833] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1780.043546] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1780.044198] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1780.044859] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1780.045501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1780.046140] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:12:10 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, 0x0, 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:12:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:10 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
io_uring_enter(r0, 0x1640, 0xf3f, 0x3, &(0x7f0000000000)={[0x8001]}, 0x8)
r2 = openat(r0, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r2, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r4}}, 0x7)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x3}, 0x2)

21:12:10 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:12:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x8, 0x30, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x4)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
statfs(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/101)

21:12:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1780.127911] Module has invalid ELF structures
21:12:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @write_page_scan_activity={{0xc1c, 0x4}, {0x1, 0x5}}}, 0x8)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:12:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 57)

[ 1780.268474] FAULT_INJECTION: forcing a failure.
[ 1780.268474] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1780.269674] CPU: 0 PID: 9184 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1780.270295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1780.271062] Call Trace:
[ 1780.271321]  dump_stack+0x107/0x167
[ 1780.271661]  should_fail.cold+0x5/0xa
[ 1780.272023]  __alloc_pages_nodemask+0x182/0x600
[ 1780.272459]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1780.273011]  ? do_raw_spin_lock+0x121/0x260
[ 1780.273412]  ? kasan_unpoison_shadow+0x33/0x50
[ 1780.273837]  alloc_pages_current+0x187/0x280
[ 1780.274245]  __vmalloc_node_range+0x60a/0x9e0
[ 1780.274665]  ? __vmalloc_node+0x110/0x110
[ 1780.275071]  ? kernel_read_file+0x6b8/0x790
[ 1780.275472]  __vmalloc_node+0xb5/0x110
[ 1780.275833]  ? kernel_read_file+0x6b8/0x790
[ 1780.276235]  kernel_read_file+0x6b8/0x790
[ 1780.276620]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1780.277048]  kernel_read_file_from_fd+0xb8/0x110
[ 1780.277492]  __do_sys_finit_module+0xe8/0x180
[ 1780.277907]  ? __do_sys_init_module+0x230/0x230
[ 1780.278334]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1780.278785]  ? __ia32_sys_read+0xb0/0xb0
[ 1780.279178]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1780.279660]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1780.280133]  ? trace_hardirqs_on+0x5b/0x180
[ 1780.280533]  do_syscall_64+0x33/0x40
[ 1780.280877]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1780.281343] RIP: 0033:0x7f71c9c30b19
[ 1780.281689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1780.283346] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1780.284037] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1780.284687] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1780.285334] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1780.285981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1780.286630] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:12:23 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0xf000000, 0x0, 0x0, 0x0)

21:12:23 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:23 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 58)

21:12:23 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:12:23 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue0\x00'})
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:12:23 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:23 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 49)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:12:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = accept4(r0, 0x0, &(0x7f0000000640), 0x0)
bind$inet(r1, &(0x7f0000000680)={0x2, 0x4e24, @local}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
sendfile(r2, r3, &(0x7f0000000100)=0x22643812, 0x1)
write(r3, &(0x7f0000000080)="23927f0832fe9a929c244e8f70150f7efe97f2b18fd58176a122ffb7972add718e98b74593", 0x25)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000600)={0x0, r2, 0xcc, 0x8e9, 0x1, 0x4})
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x2001, 0x0)
write$binfmt_elf32(r4, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x21, 0x0, 0xff, 0x4, 0x7fff, 0x2, 0x3e, 0x7, 0x24c, 0x38, 0x6, 0x6, 0x6, 0x20, 0x1, 0x3f, 0x1, 0x7}, [{0x7, 0xa0, 0x6, 0x5, 0x9, 0x4, 0x3, 0xec63}], "76e2c8d116b9984addd92e75ddb0afae29e0a7a23be79c39549276719c700fe82c23883b63640cec3272200662ac3f7529be19b023306a19ba4d5ee6b8a43a683f0674c1ff90cadba01a179ad0049339ae241f073097b11b7185fb853bf987939e", ['\x00', '\x00', '\x00', '\x00']}, 0x4b9)
fsmount(r2, 0x0, 0x84)

[ 1792.818245] FAULT_INJECTION: forcing a failure.
[ 1792.818245] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1792.819352] CPU: 0 PID: 9194 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1792.819930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1792.820641] Call Trace:
[ 1792.820875]  dump_stack+0x107/0x167
[ 1792.821197]  should_fail.cold+0x5/0xa
[ 1792.821527]  __alloc_pages_nodemask+0x182/0x600
[ 1792.821928]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1792.822448]  ? do_raw_spin_lock+0x121/0x260
[ 1792.822823]  ? kasan_unpoison_shadow+0x33/0x50
[ 1792.823236]  alloc_pages_current+0x187/0x280
[ 1792.823615]  __vmalloc_node_range+0x60a/0x9e0
[ 1792.824004]  ? __vmalloc_node+0x110/0x110
[ 1792.824374]  ? kernel_read_file+0x6b8/0x790
[ 1792.824740]  __vmalloc_node+0xb5/0x110
[ 1792.825077]  ? kernel_read_file+0x6b8/0x790
[ 1792.825456]  kernel_read_file+0x6b8/0x790
[ 1792.825810]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1792.826204]  kernel_read_file_from_fd+0xb8/0x110
[ 1792.826621]  __do_sys_finit_module+0xe8/0x180
[ 1792.827003]  ? __do_sys_init_module+0x230/0x230
[ 1792.827427]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1792.827859]  ? __ia32_sys_read+0xb0/0xb0
[ 1792.828208]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1792.828663]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1792.829102]  ? trace_hardirqs_on+0x5b/0x180
[ 1792.829480]  do_syscall_64+0x33/0x40
[ 1792.829798]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1792.830240] RIP: 0033:0x7f71c9c30b19
[ 1792.830566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1792.832354] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1792.833012] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1792.833614] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1792.834220] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1792.834820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1792.835449] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1792.869960] FAULT_INJECTION: forcing a failure.
[ 1792.869960] name failslab, interval 1, probability 0, space 0, times 0
[ 1792.870983] CPU: 0 PID: 9208 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1792.871575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1792.872289] Call Trace:
[ 1792.872518]  dump_stack+0x107/0x167
[ 1792.872833]  should_fail.cold+0x5/0xa
[ 1792.873169]  ? trace_hardirqs_on+0x5b/0x180
[ 1792.873541]  ? __alloc_skb+0x6d/0x5b0
[ 1792.873871]  should_failslab+0x5/0x20
[ 1792.874206]  kmem_cache_alloc_node+0x55/0x330
[ 1792.874591]  __alloc_skb+0x6d/0x5b0
[ 1792.874910]  skb_segment+0x9d8/0x3aa0
[ 1792.875264]  ? lock_chain_count+0x20/0x20
[ 1792.875646]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1792.876085]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1792.876537]  __udp_gso_segment+0x11c6/0x1830
[ 1792.876910]  ? __sk_receive_skb+0x830/0x830
[ 1792.877296]  udp4_ufo_fragment+0x528/0x720
[ 1792.877660]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1792.878087]  inet_gso_segment+0x4fb/0x11a0
[ 1792.878472]  skb_mac_gso_segment+0x273/0x570
[ 1792.878849]  ? inet_sock_destruct+0x840/0x840
[ 1792.879243]  ? skb_network_protocol+0x650/0x650
[ 1792.879648]  ? skb_crc32c_csum_help+0x80/0x80
[ 1792.880030]  ? lock_acquire+0x197/0x470
[ 1792.880377]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1792.880754]  __skb_gso_segment+0x32d/0x6d0
[ 1792.881120]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1792.881577]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1792.881968]  __dev_queue_xmit+0x87b/0x2710
[ 1792.882340]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1792.882621] Module has invalid ELF structures
[ 1792.882746]  ? mark_held_locks+0x9e/0xe0
[ 1792.883579]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1792.884031]  neigh_connected_output+0x382/0x4d0
[ 1792.884438]  ip_finish_output2+0x6f1/0x21f0
[ 1792.884817]  ? nf_hook_slow+0xfc/0x1e0
[ 1792.885155]  ? ip_frag_next+0x9e0/0x9e0
[ 1792.885494]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1792.885938]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1792.886357]  ? ip_fragment.constprop.0+0x240/0x240
[ 1792.886780]  ? nf_hook+0x510/0x510
[ 1792.887094]  ip_output+0x2f7/0x600
[ 1792.887416]  ip_send_skb+0xdd/0x260
[ 1792.887741]  udp_send_skb+0x6da/0x11d0
[ 1792.888085]  udp_sendmsg+0x139a/0x2160
[ 1792.888422]  ? mark_lock+0xf5/0x2df0
[ 1792.888742]  ? ip_frag_init+0x350/0x350
[ 1792.889093]  ? lock_chain_count+0x20/0x20
[ 1792.889449]  ? udp_setsockopt+0xc0/0xc0
[ 1792.889786]  ? mark_lock+0xf5/0x2df0
[ 1792.890116]  ? __lockdep_reset_lock+0x180/0x180
[ 1792.890511]  ? lock_chain_count+0x20/0x20
[ 1792.890867]  ? mark_lock+0xf5/0x2df0
[ 1792.891250]  ? mark_lock+0xf5/0x2df0
[ 1792.891567]  ? lock_chain_count+0x20/0x20
[ 1792.891920]  ? __lock_acquire+0xbb1/0x5b00
[ 1792.892294]  ? lock_chain_count+0x20/0x20
[ 1792.892655]  ? perf_trace_lock+0xac/0x490
[ 1792.893019]  ? __lockdep_reset_lock+0x180/0x180
[ 1792.893424]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1792.893783]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1792.894238]  ? mark_lock+0xf5/0x2df0
[ 1792.894558]  ? lock_acquire+0x197/0x470
[ 1792.894898]  ? find_held_lock+0x2c/0x110
[ 1792.895270]  ? __might_fault+0xd3/0x180
[ 1792.895610]  ? lock_downgrade+0x6d0/0x6d0
[ 1792.895967]  ? lock_downgrade+0x6d0/0x6d0
[ 1792.896332]  ? sock_has_perm+0x1ea/0x280
[ 1792.896678]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1792.897125]  ? _copy_from_user+0xfb/0x1b0
[ 1792.897499]  ? __import_iovec+0x458/0x590
[ 1792.897855]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1792.898305]  inet6_sendmsg+0x105/0x140
[ 1792.898637]  ? inet6_compat_ioctl+0x320/0x320
[ 1792.899022]  __sock_sendmsg+0xf2/0x190
[ 1792.899376]  ____sys_sendmsg+0x70d/0x870
[ 1792.899725]  ? sock_write_iter+0x3d0/0x3d0
[ 1792.900086]  ? do_recvmmsg+0x6d0/0x6d0
[ 1792.900432]  ? lock_downgrade+0x6d0/0x6d0
[ 1792.900787]  ? __lockdep_reset_lock+0x180/0x180
[ 1792.901193]  ___sys_sendmsg+0xf3/0x170
[ 1792.901536]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1792.901932]  ? __fget_files+0x2cf/0x520
[ 1792.902275]  ? lock_downgrade+0x6d0/0x6d0
[ 1792.902638]  ? find_held_lock+0x2c/0x110
[ 1792.902994]  ? __fget_files+0x2f8/0x520
[ 1792.903355]  ? __fget_light+0xea/0x290
[ 1792.903703]  __sys_sendmsg+0xe5/0x1b0
[ 1792.904030]  ? __sys_sendmsg_sock+0x40/0x40
[ 1792.904398]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1792.904818]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1792.905266]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1792.905709]  ? trace_hardirqs_on+0x5b/0x180
[ 1792.906080]  do_syscall_64+0x33/0x40
[ 1792.906396]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1792.906838] RIP: 0033:0x7f9e74c56b19
[ 1792.907169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1792.908718] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1792.909373] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1792.909984] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1792.910583] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1792.911206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1792.911805] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:12:23 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={<r1=>r0, 0x30a3, 0x1, 0x1})
write$bt_hci(r1, &(0x7f00000000c0)={0x1, @write_def_link_policy={{0x80f, 0x2}, {0xfff}}}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000000)={0x6, [0x3f94b4ec, 0x3561], 0x8000}, 0x10)

21:12:23 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 59)

21:12:23 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 50)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:12:23 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:23 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:23 executing program 4:
set_tid_address(&(0x7f0000000000))
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
set_tid_address(&(0x7f0000000080))
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

[ 1793.047779] FAULT_INJECTION: forcing a failure.
[ 1793.047779] name failslab, interval 1, probability 0, space 0, times 0
[ 1793.050636] CPU: 1 PID: 9221 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1793.052359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1793.054436] Call Trace:
[ 1793.055089]  dump_stack+0x107/0x167
[ 1793.056004]  should_fail.cold+0x5/0xa
[ 1793.056951]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1793.058251]  ? create_object.isra.0+0x3a/0xa20
[ 1793.059396]  should_failslab+0x5/0x20
[ 1793.060335]  kmem_cache_alloc+0x5b/0x310
[ 1793.061330]  ? mark_held_locks+0x9e/0xe0
[ 1793.062316] FAULT_INJECTION: forcing a failure.
[ 1793.062316] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1793.065217]  create_object.isra.0+0x3a/0xa20
[ 1793.066300]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1793.067563]  kmem_cache_alloc_node+0x169/0x330
[ 1793.068688]  __alloc_skb+0x6d/0x5b0
[ 1793.069595]  skb_segment+0x9d8/0x3aa0
[ 1793.070521]  ? lock_chain_count+0x20/0x20
[ 1793.071585]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1793.072812]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1793.074103]  __udp_gso_segment+0x11c6/0x1830
[ 1793.075179]  ? __sk_receive_skb+0x830/0x830
[ 1793.076242]  udp4_ufo_fragment+0x528/0x720
[ 1793.077265]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1793.078471]  inet_gso_segment+0x4fb/0x11a0
[ 1793.079518]  skb_mac_gso_segment+0x273/0x570
[ 1793.080592]  ? inet_sock_destruct+0x840/0x840
[ 1793.081671]  ? skb_network_protocol+0x650/0x650
[ 1793.082796]  ? skb_crc32c_csum_help+0x80/0x80
[ 1793.083889]  ? lock_acquire+0x197/0x470
[ 1793.084855]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1793.085913]  __skb_gso_segment+0x32d/0x6d0
[ 1793.086947]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1793.088223]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1793.089332]  __dev_queue_xmit+0x87b/0x2710
[ 1793.090363]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1793.091494]  ? mark_held_locks+0x9e/0xe0
[ 1793.092476]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1793.093754]  neigh_connected_output+0x382/0x4d0
[ 1793.094889]  ip_finish_output2+0x6f1/0x21f0
[ 1793.095953]  ? nf_hook_slow+0xfc/0x1e0
[ 1793.096889]  ? ip_frag_next+0x9e0/0x9e0
[ 1793.097855]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1793.099070]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1793.100275]  ? ip_fragment.constprop.0+0x240/0x240
[ 1793.101453]  ? nf_hook+0x510/0x510
[ 1793.102332]  ip_output+0x2f7/0x600
[ 1793.103201]  ip_send_skb+0xdd/0x260
[ 1793.104083]  udp_send_skb+0x6da/0x11d0
[ 1793.105028]  udp_sendmsg+0x139a/0x2160
[ 1793.105981]  ? mark_lock+0xf5/0x2df0
[ 1793.106886]  ? ip_frag_init+0x350/0x350
[ 1793.107873]  ? lock_chain_count+0x20/0x20
[ 1793.108887]  ? udp_setsockopt+0xc0/0xc0
[ 1793.109853]  ? mark_lock+0xf5/0x2df0
[ 1793.110746]  ? lock_acquire+0x197/0x470
[ 1793.111735]  ? lock_chain_count+0x20/0x20
[ 1793.112735]  ? mark_lock+0xf5/0x2df0
[ 1793.113644]  ? mark_lock+0xf5/0x2df0
[ 1793.114547]  ? lock_chain_count+0x20/0x20
[ 1793.115587]  ? __lock_acquire+0xbb1/0x5b00
[ 1793.116624]  ? lock_chain_count+0x20/0x20
[ 1793.117649]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1793.118933]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1793.119954]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1793.121216]  ? mark_lock+0xf5/0x2df0
[ 1793.122130]  ? lock_acquire+0x197/0x470
[ 1793.123101]  ? find_held_lock+0x2c/0x110
[ 1793.124118]  ? __might_fault+0xd3/0x180
[ 1793.125091]  ? lock_downgrade+0x6d0/0x6d0
[ 1793.126121]  ? lock_downgrade+0x6d0/0x6d0
[ 1793.127134]  ? sock_has_perm+0x1ea/0x280
[ 1793.128136]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1793.129404]  ? _copy_from_user+0xfb/0x1b0
[ 1793.130429]  ? __import_iovec+0x458/0x590
[ 1793.131449]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1793.132726]  inet6_sendmsg+0x105/0x140
[ 1793.133669]  ? inet6_compat_ioctl+0x320/0x320
[ 1793.134770]  __sock_sendmsg+0xf2/0x190
[ 1793.135730]  ____sys_sendmsg+0x70d/0x870
[ 1793.136735]  ? sock_write_iter+0x3d0/0x3d0
[ 1793.137765]  ? do_recvmmsg+0x6d0/0x6d0
[ 1793.138722]  ? lock_downgrade+0x6d0/0x6d0
[ 1793.139746]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1793.141057]  ___sys_sendmsg+0xf3/0x170
[ 1793.141999]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1793.143127]  ? __fget_files+0x2cf/0x520
[ 1793.144138]  ? lock_downgrade+0x6d0/0x6d0
[ 1793.145156]  ? find_held_lock+0x2c/0x110
[ 1793.145605]  ? __fget_files+0x2f8/0x520
[ 1793.146055]  ? __fget_light+0xea/0x290
[ 1793.146968]  __sys_sendmsg+0xe5/0x1b0
[ 1793.147418]  ? __sys_sendmsg_sock+0x40/0x40
[ 1793.147892]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1793.148438]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1793.149021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1793.149597]  ? trace_hardirqs_on+0x5b/0x180
[ 1793.150087]  do_syscall_64+0x33/0x40
[ 1793.150512]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1793.151080] RIP: 0033:0x7f9e74c56b19
[ 1793.151515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1793.156660] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1793.157500] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1793.158309] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1793.160062] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1793.161813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1793.162573] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1793.164315] CPU: 0 PID: 9224 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1793.165022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1793.165826] Call Trace:
[ 1793.166087]  dump_stack+0x107/0x167
[ 1793.166444]  should_fail.cold+0x5/0xa
[ 1793.166831]  __alloc_pages_nodemask+0x182/0x600
[ 1793.167285]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1793.167861]  ? do_raw_spin_lock+0x121/0x260
[ 1793.168277]  ? kasan_unpoison_shadow+0x33/0x50
[ 1793.168719]  alloc_pages_current+0x187/0x280
[ 1793.169159]  __vmalloc_node_range+0x60a/0x9e0
[ 1793.169594]  ? __vmalloc_node+0x110/0x110
[ 1793.169997]  ? kernel_read_file+0x6b8/0x790
[ 1793.170407]  __vmalloc_node+0xb5/0x110
[ 1793.170775]  ? kernel_read_file+0x6b8/0x790
[ 1793.171208]  kernel_read_file+0x6b8/0x790
[ 1793.171608]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1793.172063]  kernel_read_file_from_fd+0xb8/0x110
[ 1793.172535]  __do_sys_finit_module+0xe8/0x180
[ 1793.172956]  ? __do_sys_init_module+0x230/0x230
[ 1793.174055]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1793.174525]  ? __ia32_sys_read+0xb0/0xb0
[ 1793.174927]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1793.175436]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1793.176457]  ? trace_hardirqs_on+0x5b/0x180
[ 1793.177435]  do_syscall_64+0x33/0x40
[ 1793.177808]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1793.178785] RIP: 0033:0x7f71c9c30b19
[ 1793.179178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1793.180933] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1793.182641] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1793.184231] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1793.184908] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1793.185593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1793.186273] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:12:23 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x4}, 0x0, 0xfffffffffffffffc}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000100)=ANY=[@ANYBLOB="0000000005000200180000002c173de091d053776d09ffa5f0941ce24e4e571ade9e23a158378151e6229d738a7b3da3c642ad8c33fd1bd197bf03637e7d5ffdccce", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c653000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
memfd_create(&(0x7f0000000080)='!/\x00', 0x4)

[ 1793.279315] Module has invalid ELF structures
21:12:36 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:36 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r4, r5)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r5, 0x80489439, &(0x7f00000001c0))
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r2, r3)
ftruncate(r2, 0x0)

21:12:36 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x20000000, 0x0, 0x0, 0x0)

21:12:36 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 51)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:12:36 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:36 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:12:36 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 60)

21:12:36 executing program 4:
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001640)={0x53, 0xffffffffffffffff, 0xcf, 0x6, @scatter={0x7, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000080)=""/4096, 0x1000}, {&(0x7f0000001080)=""/157, 0x9d}, {&(0x7f0000001140)=""/75, 0x4b}, {}, {&(0x7f00000011c0)=""/253, 0xfd}, {&(0x7f00000012c0)=""/162, 0xa2}, {&(0x7f0000001380)=""/34, 0x22}]}, &(0x7f0000001440)="3003a83585d0558406c1bcf0b3ce57bd54577fe33669758273b5ae4f653bd0ebcb8916cf2f67da3f628795e6648033ebca0553c714e8f3ca07569d011a88635ee078fea0197c0f7fffd8cafefeab5f6183bbc88ecba9d950d597ae8f6c74920ddf3cdc52eb0a3a8662e55e3f2a25ce3ab62fc4fcfcd45fab80c586b487a175efd1fd73c6bfd00eb9e877fa9834364223c20895013256df995d235236cbe39df20392b91c5127aaab53081c3f847de505b34ae633988eb6fef795fbe8922ed3f4327d1d1141f6ebc80838c88f0d9d36", &(0x7f0000001540)=""/146, 0x5, 0xe, 0xffffffffffffffff, &(0x7f0000001600)})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000004e00)={&(0x7f0000002980), 0x6e, &(0x7f0000004d00)=[{&(0x7f0000002a00)=""/90, 0x5a}, {&(0x7f0000002a80)=""/4096, 0x1000}, {&(0x7f0000003a80)=""/226, 0xe2}, {&(0x7f0000003b80)=""/40, 0x28}, {&(0x7f0000003bc0)=""/158, 0x9e}, {&(0x7f0000003c80)=""/58, 0x3a}, {&(0x7f0000003cc0)=""/8, 0x8}, {&(0x7f0000003d00)=""/4096, 0x1000}], 0x8, &(0x7f0000004fc0)=ANY=[@ANYBLOB="38000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r1=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000fa6cf64a5d5e39ff352182647cf933bc90f55f75af52c04da701ab20df578694c2d67b011a08579031551f8e82cb4c1c71575202189ffa", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x58}, 0x0)
r2 = perf_event_open$cgroup(&(0x7f0000004e40)={0x0, 0x80, 0x5, 0x5, 0x8, 0x9, 0x0, 0x4, 0xc01, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x24, 0x1, @perf_config_ext={0x7, 0x3}, 0x800, 0x3, 0x200, 0x0, 0x7f, 0x7ff, 0x9, 0x0, 0x80000000, 0x0, 0x8}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000002900)='./file0\x00', &(0x7f0000002940), 0x58b552e0555e15f7, &(0x7f0000004ec0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@loose}, {@msize={'msize', 0x3d, 0x2}}, {@cache_mmap}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x16}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@euid_gt={'euid>', 0xffffffffffffffff}}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_measure}]}})
bind$bt_hci(r0, &(0x7f00000028c0)={0x1f, 0x103, 0x4}, 0x6)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002840)={0x0, 0xffffffffffffffff, 0x1000, 0x3, @scatter={0x1, 0x0, &(0x7f0000000000)=[{&(0x7f00000016c0)=""/181, 0xb5}]}, &(0x7f0000001780)="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", &(0x7f0000002780)=""/124, 0x0, 0x4, 0x3, &(0x7f0000002800)})
r3 = dup3(r0, r0, 0x80000)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6)

[ 1805.957196] FAULT_INJECTION: forcing a failure.
[ 1805.957196] name failslab, interval 1, probability 0, space 0, times 0
[ 1805.958256] CPU: 1 PID: 9248 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1805.958869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1805.959639] Call Trace:
[ 1805.959893]  dump_stack+0x107/0x167
[ 1805.960231]  should_fail.cold+0x5/0xa
[ 1805.960595]  should_failslab+0x5/0x20
[ 1805.960952]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1805.961406]  ? skb_segment+0x9d8/0x3aa0
[ 1805.961795]  __alloc_skb+0xb1/0x5b0
[ 1805.962137]  skb_segment+0x9d8/0x3aa0
[ 1805.962493]  ? lock_chain_count+0x20/0x20
[ 1805.962926]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1805.963407]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1805.963915]  __udp_gso_segment+0x11c6/0x1830
[ 1805.964320]  ? __sk_receive_skb+0x830/0x830
[ 1805.964742]  udp4_ufo_fragment+0x528/0x720
[ 1805.965143]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1805.965616]  inet_gso_segment+0x4fb/0x11a0
[ 1805.966024]  skb_mac_gso_segment+0x273/0x570
[ 1805.966430]  ? inet_sock_destruct+0x840/0x840
[ 1805.966854]  ? skb_network_protocol+0x650/0x650
[ 1805.967289]  ? skb_crc32c_csum_help+0x80/0x80
[ 1805.967721]  ? lock_acquire+0x197/0x470
[ 1805.968087]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1805.968496]  __skb_gso_segment+0x32d/0x6d0
[ 1805.968901]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1805.969383]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1805.969823]  __dev_queue_xmit+0x87b/0x2710
[ 1805.970223]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1805.970669]  ? mark_held_locks+0x9e/0xe0
[ 1805.971051]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1805.971552]  neigh_connected_output+0x382/0x4d0
[ 1805.972006]  ip_finish_output2+0x6f1/0x21f0
[ 1805.972407]  ? nf_hook_slow+0xfc/0x1e0
[ 1805.972775]  ? ip_frag_next+0x9e0/0x9e0
[ 1805.973149]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1805.973633]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1805.974090]  ? ip_fragment.constprop.0+0x240/0x240
[ 1805.974538]  ? nf_hook+0x510/0x510
[ 1805.974903]  ip_output+0x2f7/0x600
[ 1805.975241]  ip_send_skb+0xdd/0x260
[ 1805.975616]  udp_send_skb+0x6da/0x11d0
[ 1805.975991]  udp_sendmsg+0x139a/0x2160
[ 1805.976351]  ? mark_lock+0xf5/0x2df0
[ 1805.976713]  ? ip_frag_init+0x350/0x350
[ 1805.977086]  ? lock_chain_count+0x20/0x20
[ 1805.977475]  ? udp_setsockopt+0xc0/0xc0
[ 1805.977853]  ? mark_lock+0xf5/0x2df0
[ 1805.978201]  ? lock_acquire+0x197/0x470
[ 1805.978581]  ? lock_chain_count+0x20/0x20
[ 1805.978975]  ? mark_lock+0xf5/0x2df0
[ 1805.979338]  ? mark_lock+0xf5/0x2df0
[ 1805.979703]  ? lock_chain_count+0x20/0x20
[ 1805.980081]  ? __lock_acquire+0xbb1/0x5b00
[ 1805.980466]  ? lock_chain_count+0x20/0x20
[ 1805.980878]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1805.981373]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1805.981775]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1805.982261]  ? mark_lock+0xf5/0x2df0
[ 1805.982624]  ? lock_acquire+0x197/0x470
[ 1805.982984]  ? find_held_lock+0x2c/0x110
[ 1805.983369]  ? __might_fault+0xd3/0x180
[ 1805.983751]  ? lock_downgrade+0x6d0/0x6d0
[ 1805.984138]  ? lock_downgrade+0x6d0/0x6d0
[ 1805.984522]  ? sock_has_perm+0x1ea/0x280
[ 1805.984913]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1805.985389]  ? _copy_from_user+0xfb/0x1b0
[ 1805.985796]  ? __import_iovec+0x458/0x590
[ 1805.986179]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1805.986667]  inet6_sendmsg+0x105/0x140
[ 1805.987029]  ? inet6_compat_ioctl+0x320/0x320
[ 1805.987445]  __sock_sendmsg+0xf2/0x190
[ 1805.987821]  ____sys_sendmsg+0x70d/0x870
[ 1805.988205]  ? sock_write_iter+0x3d0/0x3d0
[ 1805.988606]  ? do_recvmmsg+0x6d0/0x6d0
[ 1805.988971]  ? lock_downgrade+0x6d0/0x6d0
[ 1805.989356]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1805.989852]  ___sys_sendmsg+0xf3/0x170
[ 1805.990217]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1805.990656]  ? __fget_files+0x2cf/0x520
21:12:36 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
connect(r0, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @multicast, 'macvlan1\x00'}}, 0x80)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:12:36 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1805.991023]  ? lock_downgrade+0x6d0/0x6d0
[ 1805.991415]  ? find_held_lock+0x2c/0x110
[ 1805.991780]  ? __fget_files+0x2f8/0x520
[ 1805.992139]  ? __fget_light+0xea/0x290
[ 1805.992637]  __sys_sendmsg+0xe5/0x1b0
[ 1805.993000]  ? __sys_sendmsg_sock+0x40/0x40
[ 1805.993391]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1805.993954]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1805.994434]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1805.994916]  ? trace_hardirqs_on+0x5b/0x180
[ 1805.995362]  do_syscall_64+0x33/0x40
[ 1805.995736]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1805.996205] RIP: 0033:0x7f9e74c56b19
[ 1805.996553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1805.998209] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1805.998913] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1805.999581] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1806.000224] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1806.000877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1806.001514] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1806.006327] FAULT_INJECTION: forcing a failure.
[ 1806.006327] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1806.007526] CPU: 1 PID: 9250 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1806.008152] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1806.008907] Call Trace:
[ 1806.009156]  dump_stack+0x107/0x167
[ 1806.009494]  should_fail.cold+0x5/0xa
[ 1806.009862]  __alloc_pages_nodemask+0x182/0x600
[ 1806.010290]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1806.010844]  ? do_raw_spin_lock+0x121/0x260
[ 1806.011247]  ? kasan_unpoison_shadow+0x33/0x50
[ 1806.011709]  alloc_pages_current+0x187/0x280
[ 1806.012130]  __vmalloc_node_range+0x60a/0x9e0
[ 1806.012551]  ? __vmalloc_node+0x110/0x110
[ 1806.012958]  ? kernel_read_file+0x6b8/0x790
[ 1806.013345]  __vmalloc_node+0xb5/0x110
[ 1806.013696]  ? kernel_read_file+0x6b8/0x790
[ 1806.014090]  kernel_read_file+0x6b8/0x790
[ 1806.014468]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1806.014894]  kernel_read_file_from_fd+0xb8/0x110
[ 1806.015354]  __do_sys_finit_module+0xe8/0x180
[ 1806.015776]  ? __do_sys_init_module+0x230/0x230
[ 1806.016204]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1806.016678]  ? __ia32_sys_read+0xb0/0xb0
[ 1806.017058]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1806.017541]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1806.018012]  ? trace_hardirqs_on+0x5b/0x180
[ 1806.018417]  do_syscall_64+0x33/0x40
[ 1806.018758]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1806.019223] RIP: 0033:0x7f71c9c30b19
[ 1806.019580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1806.021215] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1806.021910] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1806.022549] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1806.023193] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1806.023856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1806.024492] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1806.059436] Module has invalid ELF structures
21:12:36 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

21:12:36 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 61)

21:12:36 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000008b12d4c297fcb9eb1696f18c910100000018000000", @ANYRES32=<r2=>r1, @ANYBLOB="02000000000000002e2f66696c653000"])
r3 = syz_open_dev$hiddev(&(0x7f0000000040), 0x9, 0x80800)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r4, r5)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r8, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r7, r8)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000540)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r9=>r2, @ANYBLOB="06000000000000002e2f66696c6530004f97c0a1c2c2dcacf90231bf3a675951e6dfb694a5398b370ff7df7a64de1336326efbbefbbd4ab55c2642db498a1c7dfeaea9c4a1baa35dac14b494cec6a936be01fd169f82625f80a4b3952d149ec3745dd76a5f543a7db400ac4b20bcdcda76f9d9930fa80bfca7b8d4eb40008ad2a38f6cbb72d494aa17269dbe47b100c0c2129441b798f6a88ae09a0ecf8e1a6f194b44f53d6f01c6dc94c995e20aa8d461062290494a895c91ce0b742a3a5ff065015d549d803fbd45a00da80569aa37420e9145d841b0149dcda91e958dde4605a1f22bd1612ac4df23ba5eb90f7671f8ed21644f2272c315602059352f9057a21ed5f37288e6e03ee98e30d15c452a4265aea1a18692b5717508f609989f2ba6048eb31a104155017777e6603ba0619955535cee1e9ed0e2efd4e40f1bdcc4bb18fdb97464aac7837d9ea126845106a6f200a5bd3a416c555308fa90a30a2ebf92dfcfd4ecd83e108752050000002e74c9010000085956b00b68c02d16815dde812cbaf051a0116fe9b17ef805e3a1b85b3d12dd866881a321834e5f9b2970fa59466585a3893efd05029e95ac649fa029a1a0ecd70f40d098d42d1816c79f45e8c92d7be26d870c1ba0beeda63e2c889a3978302f01638f8219b126e46b3f61e07e0b293f1f29f474a13a6b08981f76287af8272b49eae6d64a8cbad35cf4c4977c0b000000"])
poll(&(0x7f0000000100)=[{0xffffffffffffffff, 0xa060}, {r3, 0x2000}, {r0, 0x3}, {r4, 0x4}, {r6, 0xc022}, {r8, 0x8}, {r9, 0x4000}], 0x7, 0x5)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

[ 1806.170607] FAULT_INJECTION: forcing a failure.
21:12:36 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1806.170607] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1806.171774] CPU: 1 PID: 9265 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1806.172381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1806.173195] Call Trace:
[ 1806.173437]  dump_stack+0x107/0x167
[ 1806.173770]  should_fail.cold+0x5/0xa
[ 1806.174131]  __alloc_pages_nodemask+0x182/0x600
[ 1806.174563]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1806.175112]  ? do_raw_spin_lock+0x121/0x260
[ 1806.175555]  ? kasan_unpoison_shadow+0x33/0x50
[ 1806.175977]  alloc_pages_current+0x187/0x280
[ 1806.176392]  __vmalloc_node_range+0x60a/0x9e0
[ 1806.176818]  ? __vmalloc_node+0x110/0x110
[ 1806.177216]  ? kernel_read_file+0x6b8/0x790
[ 1806.177611]  __vmalloc_node+0xb5/0x110
[ 1806.177973]  ? kernel_read_file+0x6b8/0x790
[ 1806.178374]  kernel_read_file+0x6b8/0x790
[ 1806.178754]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1806.179181]  kernel_read_file_from_fd+0xb8/0x110
[ 1806.179641]  __do_sys_finit_module+0xe8/0x180
[ 1806.180053]  ? __do_sys_init_module+0x230/0x230
[ 1806.180485]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1806.180941]  ? __ia32_sys_read+0xb0/0xb0
[ 1806.181323]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1806.181807]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1806.182272]  ? trace_hardirqs_on+0x5b/0x180
[ 1806.182668]  do_syscall_64+0x33/0x40
21:12:36 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0xfffffffffffffffd)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80800)
sendfile(r3, r2, &(0x7f0000000080)=0x1, 0x1)
write$bt_hci(r2, &(0x7f0000000000)={0x1, @delete_reserved_lt_addr={{0xc75, 0x1}, {0x8}}}, 0x5)

[ 1806.183011]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1806.183485] RIP: 0033:0x7f71c9c30b19
[ 1806.183828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1806.185467] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1806.186222] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1806.186861] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1806.187536] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1806.188180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1806.188824] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:12:36 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:12:36 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

21:12:36 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 52)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:12:36 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1806.308493] Module has invalid ELF structures
[ 1806.332010] FAULT_INJECTION: forcing a failure.
[ 1806.332010] name failslab, interval 1, probability 0, space 0, times 0
[ 1806.333093] CPU: 1 PID: 9279 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1806.333712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1806.334459] Call Trace:
[ 1806.334719]  dump_stack+0x107/0x167
[ 1806.335064]  should_fail.cold+0x5/0xa
[ 1806.335439]  ? create_object.isra.0+0x3a/0xa20
[ 1806.335863]  should_failslab+0x5/0x20
[ 1806.336222]  kmem_cache_alloc+0x5b/0x310
[ 1806.336602]  create_object.isra.0+0x3a/0xa20
[ 1806.337009]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1806.337487]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1806.337951]  ? skb_segment+0x9d8/0x3aa0
[ 1806.338329]  __alloc_skb+0xb1/0x5b0
[ 1806.338681]  skb_segment+0x9d8/0x3aa0
[ 1806.339036]  ? lock_chain_count+0x20/0x20
[ 1806.339474]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1806.339936]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1806.340426]  __udp_gso_segment+0x11c6/0x1830
[ 1806.340833]  ? __sk_receive_skb+0x830/0x830
[ 1806.341247]  udp4_ufo_fragment+0x528/0x720
[ 1806.341647]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1806.342106]  inet_gso_segment+0x4fb/0x11a0
[ 1806.342511]  skb_mac_gso_segment+0x273/0x570
[ 1806.342923]  ? inet_sock_destruct+0x840/0x840
[ 1806.343345]  ? skb_network_protocol+0x650/0x650
[ 1806.343785]  ? skb_crc32c_csum_help+0x80/0x80
[ 1806.344199]  ? lock_acquire+0x197/0x470
[ 1806.344561]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1806.344977]  __skb_gso_segment+0x32d/0x6d0
[ 1806.345376]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1806.345861]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1806.346289]  __dev_queue_xmit+0x87b/0x2710
[ 1806.346693]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1806.347125]  ? mark_held_locks+0x9e/0xe0
[ 1806.347521]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1806.348010]  neigh_connected_output+0x382/0x4d0
[ 1806.348455]  ip_finish_output2+0x6f1/0x21f0
[ 1806.348858]  ? nf_hook_slow+0xfc/0x1e0
[ 1806.349221]  ? ip_frag_next+0x9e0/0x9e0
[ 1806.349587]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1806.350062]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1806.350523]  ? ip_fragment.constprop.0+0x240/0x240
[ 1806.350976]  ? nf_hook+0x510/0x510
[ 1806.351332]  ip_output+0x2f7/0x600
[ 1806.351680]  ip_send_skb+0xdd/0x260
[ 1806.352025]  udp_send_skb+0x6da/0x11d0
[ 1806.352401]  udp_sendmsg+0x139a/0x2160
[ 1806.352755]  ? mark_lock+0xf5/0x2df0
[ 1806.353105]  ? ip_frag_init+0x350/0x350
[ 1806.353478]  ? lock_chain_count+0x20/0x20
[ 1806.353870]  ? udp_setsockopt+0xc0/0xc0
[ 1806.354239]  ? mark_lock+0xf5/0x2df0
[ 1806.354586]  ? lock_acquire+0x197/0x470
[ 1806.354951]  ? lock_chain_count+0x20/0x20
[ 1806.355345]  ? mark_lock+0xf5/0x2df0
[ 1806.355699]  ? mark_lock+0xf5/0x2df0
[ 1806.356047]  ? lock_chain_count+0x20/0x20
[ 1806.356430]  ? __lock_acquire+0xbb1/0x5b00
[ 1806.356826]  ? lock_chain_count+0x20/0x20
[ 1806.357216]  ? lock_chain_count+0x20/0x20
[ 1806.357613]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1806.358112]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1806.358500]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1806.358984]  ? mark_lock+0xf5/0x2df0
[ 1806.359352]  ? lock_acquire+0x197/0x470
[ 1806.359722]  ? find_held_lock+0x2c/0x110
[ 1806.360104]  ? __might_fault+0xd3/0x180
[ 1806.360468]  ? lock_downgrade+0x6d0/0x6d0
[ 1806.360854]  ? lock_downgrade+0x6d0/0x6d0
[ 1806.361238]  ? sock_has_perm+0x1ea/0x280
[ 1806.361609]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1806.362084]  ? _copy_from_user+0xfb/0x1b0
[ 1806.362471]  ? __import_iovec+0x458/0x590
[ 1806.362853]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1806.363320]  inet6_sendmsg+0x105/0x140
[ 1806.363698]  ? inet6_compat_ioctl+0x320/0x320
[ 1806.364114]  __sock_sendmsg+0xf2/0x190
[ 1806.364478]  ____sys_sendmsg+0x70d/0x870
[ 1806.364860]  ? sock_write_iter+0x3d0/0x3d0
[ 1806.365249]  ? do_recvmmsg+0x6d0/0x6d0
[ 1806.365616]  ? lock_downgrade+0x6d0/0x6d0
[ 1806.366004]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1806.366490]  ___sys_sendmsg+0xf3/0x170
[ 1806.366852]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1806.367279]  ? __fget_files+0x2cf/0x520
[ 1806.367661]  ? lock_downgrade+0x6d0/0x6d0
[ 1806.368040]  ? find_held_lock+0x2c/0x110
[ 1806.368422]  ? __fget_files+0x2f8/0x520
[ 1806.368794]  ? __fget_light+0xea/0x290
[ 1806.369160]  __sys_sendmsg+0xe5/0x1b0
[ 1806.369513]  ? __sys_sendmsg_sock+0x40/0x40
[ 1806.369908]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1806.370349]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1806.370828]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1806.371309]  ? trace_hardirqs_on+0x5b/0x180
[ 1806.371714]  do_syscall_64+0x33/0x40
[ 1806.372060]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1806.372523] RIP: 0033:0x7f9e74c56b19
[ 1806.372872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1806.374502] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1806.375171] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1806.375822] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1806.376455] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1806.377090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1806.377731] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:12:49 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 62)

21:12:49 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:49 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$null(0xffffffffffffff9c, &(0x7f0000001540), 0x145000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
sendfile(r0, r1, &(0x7f0000000100)=0x22643812, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xfef7, 0x2}, 0x6)

21:12:49 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="020000000000000059bd7b2e01040000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:12:49 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 53)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:12:49 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r0)

21:12:49 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0xeaffffff, 0x0, 0x0, 0x0)

21:12:49 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1819.315076] FAULT_INJECTION: forcing a failure.
[ 1819.315076] name failslab, interval 1, probability 0, space 0, times 0
[ 1819.317277] CPU: 0 PID: 9297 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1819.318847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1819.320787] Call Trace:
[ 1819.321405]  dump_stack+0x107/0x167
[ 1819.322258]  should_fail.cold+0x5/0xa
[ 1819.323143]  ? trace_hardirqs_on+0x5b/0x180
[ 1819.324174]  ? __alloc_skb+0x6d/0x5b0
[ 1819.325065]  should_failslab+0x5/0x20
[ 1819.325966]  kmem_cache_alloc_node+0x55/0x330
[ 1819.327015]  __alloc_skb+0x6d/0x5b0
[ 1819.327894]  skb_segment+0x9d8/0x3aa0
[ 1819.328778]  ? lock_chain_count+0x20/0x20
[ 1819.329770]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1819.330928]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1819.332182]  __udp_gso_segment+0x11c6/0x1830
[ 1819.333203]  ? __sk_receive_skb+0x830/0x830
[ 1819.334215]  udp4_ufo_fragment+0x528/0x720
[ 1819.335204]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1819.336382]  inet_gso_segment+0x4fb/0x11a0
[ 1819.337367]  skb_mac_gso_segment+0x273/0x570
[ 1819.338380]  ? inet_sock_destruct+0x840/0x840
[ 1819.339408]  ? skb_network_protocol+0x650/0x650
[ 1819.340483]  ? skb_crc32c_csum_help+0x80/0x80
[ 1819.341517]  ? lock_acquire+0x197/0x470
[ 1819.342438]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1819.343459]  __skb_gso_segment+0x32d/0x6d0
[ 1819.344450]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1819.345667]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1819.346721]  __dev_queue_xmit+0x87b/0x2710
[ 1819.347719]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1819.348786]  ? mark_held_locks+0x9e/0xe0
[ 1819.349731]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1819.350952]  neigh_connected_output+0x382/0x4d0
[ 1819.352044]  ip_finish_output2+0x6f1/0x21f0
[ 1819.353042]  ? nf_hook_slow+0xfc/0x1e0
[ 1819.353940]  ? ip_frag_next+0x9e0/0x9e0
[ 1819.354860]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1819.356020]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1819.357154]  ? ip_fragment.constprop.0+0x240/0x240
[ 1819.358272]  ? nf_hook+0x510/0x510
[ 1819.359115]  ip_output+0x2f7/0x600
[ 1819.359937]  ip_send_skb+0xdd/0x260
[ 1819.360793]  udp_send_skb+0x6da/0x11d0
[ 1819.361703]  udp_sendmsg+0x139a/0x2160
[ 1819.362586]  ? mark_lock+0xf5/0x2df0
[ 1819.363453]  ? ip_frag_init+0x350/0x350
[ 1819.364383]  ? lock_chain_count+0x20/0x20
[ 1819.365335]  ? udp_setsockopt+0xc0/0xc0
[ 1819.366251]  ? mark_lock+0xf5/0x2df0
[ 1819.367104]  ? lock_acquire+0x197/0x470
[ 1819.368032]  ? lock_chain_count+0x20/0x20
[ 1819.368976]  ? mark_lock+0xf5/0x2df0
[ 1819.369835]  ? mark_lock+0xf5/0x2df0
[ 1819.370681]  ? lock_chain_count+0x20/0x20
[ 1819.371649]  ? __lock_acquire+0xbb1/0x5b00
[ 1819.372630]  ? lock_chain_count+0x20/0x20
[ 1819.373592]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1819.374794]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1819.375759]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1819.376964]  ? mark_lock+0xf5/0x2df0
[ 1819.377822]  ? lock_acquire+0x197/0x470
[ 1819.378733]  ? find_held_lock+0x2c/0x110
[ 1819.379689]  ? __might_fault+0xd3/0x180
[ 1819.380582]  ? lock_downgrade+0x6d0/0x6d0
[ 1819.381538]  ? lock_downgrade+0x6d0/0x6d0
[ 1819.382475]  ? sock_has_perm+0x1ea/0x280
[ 1819.383423]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1819.384609]  ? _copy_from_user+0xfb/0x1b0
[ 1819.385560]  ? __import_iovec+0x458/0x590
[ 1819.386501]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1819.387698]  inet6_sendmsg+0x105/0x140
[ 1819.388593]  ? inet6_compat_ioctl+0x320/0x320
[ 1819.389631]  __sock_sendmsg+0xf2/0x190
[ 1819.390521]  ____sys_sendmsg+0x70d/0x870
[ 1819.391480]  ? sock_write_iter+0x3d0/0x3d0
[ 1819.392427]  ? do_recvmmsg+0x6d0/0x6d0
[ 1819.393330]  ? lock_downgrade+0x6d0/0x6d0
[ 1819.394278]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1819.395508]  ___sys_sendmsg+0xf3/0x170
[ 1819.396396]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1819.397446]  ? __fget_files+0x2cf/0x520
[ 1819.398352]  ? lock_downgrade+0x6d0/0x6d0
[ 1819.399311]  ? find_held_lock+0x2c/0x110
[ 1819.400254]  ? __fget_files+0x2f8/0x520
[ 1819.401169]  ? __fget_light+0xea/0x290
[ 1819.402063]  __sys_sendmsg+0xe5/0x1b0
[ 1819.402944]  ? __sys_sendmsg_sock+0x40/0x40
[ 1819.403954]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1819.405064]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1819.406276]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1819.407471]  ? trace_hardirqs_on+0x5b/0x180
[ 1819.408467]  do_syscall_64+0x33/0x40
[ 1819.409325]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1819.410511] RIP: 0033:0x7f9e74c56b19
[ 1819.411372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1819.415637] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1819.417366] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1819.419012] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1819.420663] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1819.422287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1819.423928] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1819.429944] FAULT_INJECTION: forcing a failure.
[ 1819.429944] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1819.432648] CPU: 0 PID: 9308 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1819.434226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1819.436147] Call Trace:
[ 1819.436752]  dump_stack+0x107/0x167
[ 1819.437584]  should_fail.cold+0x5/0xa
[ 1819.438476]  __alloc_pages_nodemask+0x182/0x600
[ 1819.439549]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1819.440924]  ? do_raw_spin_lock+0x121/0x260
[ 1819.441924]  ? kasan_unpoison_shadow+0x33/0x50
[ 1819.442985]  alloc_pages_current+0x187/0x280
[ 1819.444007]  __vmalloc_node_range+0x60a/0x9e0
[ 1819.445049]  ? __vmalloc_node+0x110/0x110
[ 1819.446013]  ? kernel_read_file+0x6b8/0x790
[ 1819.447000]  __vmalloc_node+0xb5/0x110
[ 1819.447891]  ? kernel_read_file+0x6b8/0x790
[ 1819.448897]  kernel_read_file+0x6b8/0x790
[ 1819.449857]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1819.450925]  kernel_read_file_from_fd+0xb8/0x110
[ 1819.452037]  __do_sys_finit_module+0xe8/0x180
[ 1819.453084]  ? __do_sys_init_module+0x230/0x230
[ 1819.454157]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1819.455277]  ? __ia32_sys_read+0xb0/0xb0
[ 1819.456218]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1819.457428]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1819.458606]  ? trace_hardirqs_on+0x5b/0x180
[ 1819.459614]  do_syscall_64+0x33/0x40
[ 1819.460459]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1819.461646] RIP: 0033:0x7f71c9c30b19
[ 1819.462495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
21:12:49 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1819.466709] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1819.468753] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1819.470385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1819.472043] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1819.473670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1819.475326] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
21:12:49 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:12:49 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:12:49 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0xffffffea, 0x0, 0x0, 0x0)

[ 1819.532154] Module has invalid ELF structures
[ 1832.753154] FAULT_INJECTION: forcing a failure.
[ 1832.753154] name failslab, interval 1, probability 0, space 0, times 0
[ 1832.754226] CPU: 1 PID: 9332 Comm: syz-executor.6 Not tainted 5.10.223 #1
21:13:02 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x2, 0x0, 0x0)

21:13:02 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:02 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 54)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:02 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 63)

21:13:02 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:02 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
sendfile(r0, r1, &(0x7f0000000100)=0x22643812, 0x1)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@remote, @loopback, @empty, 0xff, 0x0, 0x400, 0x500, 0x1ff, 0xc0008, r4})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r6, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r5, r6)
ftruncate(r5, 0x100000000)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = syz_open_dev$evdev(&(0x7f00000001c0), 0x80000001, 0x400000)
ioctl$EVIOCGABS0(r8, 0x80184540, &(0x7f0000000200)=""/47)
bind$bt_hci(r7, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:13:02 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:02 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x5, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x20000, 0x4)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x81, 0x7, 0x0, 0x40, 0x0, 0x4, 0x412, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0xbc8d409, 0x885}, 0x70088, 0x1, 0x8f4, 0x3, 0x1, 0x0, 0x3ff, 0x0, 0x1, 0x0, 0x5}, 0x0, 0x2, r2, 0x8)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r3=>r0, {r1}}, './file0\x00'})
r4 = perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x3, 0x7, 0x18, 0x0, 0x2, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbb9b, 0x2, @perf_bp={&(0x7f0000000040), 0x6}, 0x8000, 0x7, 0x3e, 0x1, 0x80000000, 0x5, 0x8, 0x0, 0x40, 0x0, 0x9}, 0xffffffffffffffff, 0xd, r3, 0x8)
ioctl$F2FS_IOC_DEFRAGMENT(r4, 0xc010f508, &(0x7f0000000140)={0xffff, 0x4})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000240000400", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c653000"])
r5 = gettid()
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x3, 0x2, 0x7f, 0x0, 0x3ff, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x5, 0x95b4}, 0x1000, 0x3, 0x6c, 0x5, 0x80000001, 0x1ffc0, 0x20, 0x0, 0x0, 0x0, 0x80000001}, r5, 0xf, 0xffffffffffffffff, 0x9)
fallocate(r1, 0xa, 0x80, 0x80)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f0000000240)={0x6, 0x18, '\x00', 0x0, &(0x7f0000000200)=[0x0, 0x0, 0x0]})
finit_module(r1, 0x0, 0x0)

[ 1832.754879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1832.755685] Call Trace:
[ 1832.755921]  dump_stack+0x107/0x167
[ 1832.756266]  should_fail.cold+0x5/0xa
[ 1832.756644]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1832.757093]  ? create_object.isra.0+0x3a/0xa20
[ 1832.757482]  should_failslab+0x5/0x20
[ 1832.757871]  kmem_cache_alloc+0x5b/0x310
[ 1832.758217]  ? mark_held_locks+0x9e/0xe0
[ 1832.758642]  create_object.isra.0+0x3a/0xa20
[ 1832.759019]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1832.759451]  kmem_cache_alloc_node+0x169/0x330
[ 1832.759922]  __alloc_skb+0x6d/0x5b0
[ 1832.760237]  skb_segment+0x9d8/0x3aa0
[ 1832.760647]  ? lock_chain_count+0x20/0x20
[ 1832.760997]  ? lock_chain_count+0x20/0x20
[ 1832.761373]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1832.761855]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.762303]  __udp_gso_segment+0x11c6/0x1830
[ 1832.762752]  ? __sk_receive_skb+0x830/0x830
[ 1832.763126]  udp4_ufo_fragment+0x528/0x720
[ 1832.763487]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1832.763981]  inet_gso_segment+0x4fb/0x11a0
[ 1832.764349]  skb_mac_gso_segment+0x273/0x570
[ 1832.764773]  ? inet_sock_destruct+0x840/0x840
[ 1832.765151]  ? skb_network_protocol+0x650/0x650
[ 1832.765625]  ? skb_crc32c_csum_help+0x80/0x80
[ 1832.766007]  ? lock_acquire+0x197/0x470
[ 1832.766340]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1832.766800]  __skb_gso_segment+0x32d/0x6d0
[ 1832.767168]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1832.767685]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1832.768078]  __dev_queue_xmit+0x87b/0x2710
[ 1832.768449]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1832.768894]  ? mark_held_locks+0x9e/0xe0
[ 1832.769241]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1832.769749]  neigh_connected_output+0x382/0x4d0
[ 1832.770153]  ip_finish_output2+0x6f1/0x21f0
[ 1832.770589]  ? nf_hook_slow+0xfc/0x1e0
[ 1832.770933]  ? ip_frag_next+0x9e0/0x9e0
[ 1832.771270]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1832.771780]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1832.772200]  ? ip_fragment.constprop.0+0x240/0x240
[ 1832.772663]  ? nf_hook+0x510/0x510
[ 1832.772977]  ip_output+0x2f7/0x600
[ 1832.773286]  ip_send_skb+0xdd/0x260
[ 1832.773658]  udp_send_skb+0x6da/0x11d0
[ 1832.774000]  udp_sendmsg+0x139a/0x2160
[ 1832.774327]  ? mark_lock+0xf5/0x2df0
[ 1832.774726]  ? ip_frag_init+0x350/0x350
[ 1832.775065]  ? lock_chain_count+0x20/0x20
[ 1832.775422]  ? udp_setsockopt+0xc0/0xc0
[ 1832.775832]  ? mark_lock+0xf5/0x2df0
[ 1832.776151]  ? lock_acquire+0x197/0x470
[ 1832.776491]  ? lock_chain_count+0x20/0x20
[ 1832.776896]  ? mark_lock+0xf5/0x2df0
[ 1832.777217]  ? mark_lock+0xf5/0x2df0
[ 1832.777594]  ? lock_chain_count+0x20/0x20
[ 1832.777950]  ? __lock_acquire+0xbb1/0x5b00
[ 1832.778310]  ? lock_chain_count+0x20/0x20
[ 1832.778748]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.779201]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1832.779629]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1832.780070]  ? mark_lock+0xf5/0x2df0
[ 1832.780391]  ? lock_acquire+0x197/0x470
[ 1832.780781]  ? find_held_lock+0x2c/0x110
[ 1832.781132]  ? __might_fault+0xd3/0x180
[ 1832.781477]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.781890]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.782246]  ? sock_has_perm+0x1ea/0x280
[ 1832.782671]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1832.783113]  ? _copy_from_user+0xfb/0x1b0
[ 1832.783470]  ? __import_iovec+0x458/0x590
[ 1832.783892]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1832.784336]  inet6_sendmsg+0x105/0x140
[ 1832.784718]  ? inet6_compat_ioctl+0x320/0x320
[ 1832.785101]  __sock_sendmsg+0xf2/0x190
[ 1832.785430]  ____sys_sendmsg+0x70d/0x870
[ 1832.785835]  ? sock_write_iter+0x3d0/0x3d0
[ 1832.786192]  ? do_recvmmsg+0x6d0/0x6d0
[ 1832.786593]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.786959]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.787410]  ___sys_sendmsg+0xf3/0x170
[ 1832.787815]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1832.788207]  ? __fget_files+0x2cf/0x520
[ 1832.788592]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.788950]  ? find_held_lock+0x2c/0x110
[ 1832.789301]  ? __fget_files+0x2f8/0x520
[ 1832.789703]  ? __fget_light+0xea/0x290
[ 1832.790043]  __sys_sendmsg+0xe5/0x1b0
[ 1832.790368]  ? __sys_sendmsg_sock+0x40/0x40
[ 1832.790812]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1832.791218]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1832.795720]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1832.796157]  ? trace_hardirqs_on+0x5b/0x180
[ 1832.796529]  do_syscall_64+0x33/0x40
[ 1832.796848]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1832.797280] RIP: 0033:0x7f9e74c56b19
[ 1832.797602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1832.799150] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1832.799828] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1832.800428] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1832.801025] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1832.801622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1832.802220] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1832.816955] Module has invalid ELF structures
[ 1832.820439] FAULT_INJECTION: forcing a failure.
[ 1832.820439] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1832.821576] CPU: 0 PID: 9334 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1832.822222] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1832.822957] Call Trace:
[ 1832.823190]  dump_stack+0x107/0x167
[ 1832.823498]  should_fail.cold+0x5/0xa
[ 1832.823838]  __alloc_pages_nodemask+0x182/0x600
[ 1832.824278]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1832.824783]  ? do_raw_spin_lock+0x121/0x260
[ 1832.825199]  ? kasan_unpoison_shadow+0x33/0x50
[ 1832.825593]  alloc_pages_current+0x187/0x280
[ 1832.826041]  __vmalloc_node_range+0x60a/0x9e0
[ 1832.826427]  ? __vmalloc_node+0x110/0x110
[ 1832.826782]  ? kernel_read_file+0x6b8/0x790
[ 1832.827191]  __vmalloc_node+0xb5/0x110
[ 1832.827524]  ? kernel_read_file+0x6b8/0x790
[ 1832.827946]  kernel_read_file+0x6b8/0x790
[ 1832.828300]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1832.828690]  kernel_read_file_from_fd+0xb8/0x110
[ 1832.829139]  __do_sys_finit_module+0xe8/0x180
[ 1832.829518]  ? __do_sys_init_module+0x230/0x230
[ 1832.829981]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1832.830405]  ? __ia32_sys_read+0xb0/0xb0
[ 1832.830753]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1832.831240]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1832.831687]  ? trace_hardirqs_on+0x5b/0x180
[ 1832.832098]  do_syscall_64+0x33/0x40
[ 1832.832415]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1832.832844] RIP: 0033:0x7f71c9c30b19
[ 1832.833202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1832.834797] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1832.835480] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1832.836133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1832.836727] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1832.837363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1832.838028] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:13:03 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:03 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6)

21:13:03 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:03 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 55)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:03 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1832.964347] FAULT_INJECTION: forcing a failure.
[ 1832.964347] name failslab, interval 1, probability 0, space 0, times 0
[ 1832.965401] CPU: 1 PID: 9357 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1832.965985] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1832.966682] Call Trace:
[ 1832.966917]  dump_stack+0x107/0x167
[ 1832.967233]  should_fail.cold+0x5/0xa
[ 1832.967578]  should_failslab+0x5/0x20
[ 1832.967913]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1832.968340]  ? skb_segment+0x9d8/0x3aa0
[ 1832.968687]  __alloc_skb+0xb1/0x5b0
[ 1832.969004]  skb_segment+0x9d8/0x3aa0
[ 1832.969334]  ? lock_chain_count+0x20/0x20
[ 1832.969716]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1832.970146]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.970601]  __udp_gso_segment+0x11c6/0x1830
[ 1832.970977]  ? __sk_receive_skb+0x830/0x830
[ 1832.971353]  udp4_ufo_fragment+0x528/0x720
[ 1832.971734]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1832.972161]  inet_gso_segment+0x4fb/0x11a0
[ 1832.972534]  skb_mac_gso_segment+0x273/0x570
[ 1832.972910]  ? inet_sock_destruct+0x840/0x840
[ 1832.973292]  ? skb_network_protocol+0x650/0x650
[ 1832.973686]  ? skb_crc32c_csum_help+0x80/0x80
[ 1832.974069]  ? lock_acquire+0x197/0x470
[ 1832.974407]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1832.974786]  __skb_gso_segment+0x32d/0x6d0
[ 1832.975152]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1832.975609]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1832.976003]  __dev_queue_xmit+0x87b/0x2710
[ 1832.976371]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1832.976768]  ? mark_held_locks+0x9e/0xe0
[ 1832.977121]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1832.977570]  neigh_connected_output+0x382/0x4d0
[ 1832.977979]  ip_finish_output2+0x6f1/0x21f0
[ 1832.978352]  ? nf_hook_slow+0xfc/0x1e0
[ 1832.978687]  ? ip_frag_next+0x9e0/0x9e0
[ 1832.979029]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1832.979464]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1832.979895]  ? ip_fragment.constprop.0+0x240/0x240
[ 1832.980322]  ? nf_hook+0x510/0x510
[ 1832.980640]  ip_output+0x2f7/0x600
[ 1832.980947]  ip_send_skb+0xdd/0x260
[ 1832.981258]  udp_send_skb+0x6da/0x11d0
[ 1832.981595]  udp_sendmsg+0x139a/0x2160
[ 1832.981929]  ? ip_frag_init+0x350/0x350
[ 1832.982273]  ? udp_setsockopt+0xc0/0xc0
[ 1832.982609]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.983055]  ? find_held_lock+0x2c/0x110
[ 1832.983405]  ? clockevents_program_event+0x14b/0x360
[ 1832.983846]  ? mark_lock+0xf5/0x2df0
[ 1832.984163]  ? mark_lock+0xf5/0x2df0
[ 1832.984478]  ? lock_chain_count+0x20/0x20
[ 1832.984832]  ? lock_chain_count+0x20/0x20
[ 1832.985181]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.985532]  ? ktime_get+0x158/0x1f0
[ 1832.985854]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 1832.986218]  ? clockevents_program_event+0x131/0x360
[ 1832.986657]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1832.987018]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1832.987456]  ? mark_lock+0xf5/0x2df0
[ 1832.987789]  ? lock_acquire+0x197/0x470
[ 1832.988126]  ? find_held_lock+0x2c/0x110
[ 1832.988475]  ? __might_fault+0xd3/0x180
[ 1832.988813]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.989168]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.989522]  ? sock_has_perm+0x1ea/0x280
[ 1832.990000]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1832.990443]  ? _copy_from_user+0xfb/0x1b0
[ 1832.990806]  ? __import_iovec+0x458/0x590
[ 1832.991158]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1832.991611]  inet6_sendmsg+0x105/0x140
[ 1832.991945]  ? inet6_compat_ioctl+0x320/0x320
[ 1832.992326]  __sock_sendmsg+0xf2/0x190
[ 1832.992659]  ____sys_sendmsg+0x70d/0x870
[ 1832.993012]  ? sock_write_iter+0x3d0/0x3d0
[ 1832.993370]  ? do_recvmmsg+0x6d0/0x6d0
[ 1832.993706]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.994060]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1832.994507]  ___sys_sendmsg+0xf3/0x170
[ 1832.994842]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1832.995234]  ? __fget_files+0x2cf/0x520
[ 1832.995583]  ? lock_downgrade+0x6d0/0x6d0
[ 1832.995940]  ? find_held_lock+0x2c/0x110
[ 1832.996294]  ? __fget_files+0x2f8/0x520
[ 1832.996638]  ? __fget_light+0xea/0x290
[ 1832.996976]  __sys_sendmsg+0xe5/0x1b0
[ 1832.997299]  ? __sys_sendmsg_sock+0x40/0x40
[ 1832.997665]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1832.998073]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1832.998517]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1832.998952]  ? trace_hardirqs_on+0x5b/0x180
[ 1832.999319]  do_syscall_64+0x33/0x40
[ 1832.999652]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1833.000086] RIP: 0033:0x7f9e74c56b19
[ 1833.000404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1833.001949] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1833.002593] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
21:13:03 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f00000001c0)={0x0, <r1=>0x0})
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x40, 0x40, 0x58, 0x6, 0x0, 0x1, 0x43210, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc4fc, 0x0, @perf_config_ext={0x3f, 0xf3}, 0x9804, 0x2, 0x100, 0x2, 0x9, 0x800, 0x400, 0x0, 0x3ff, 0x0, 0x6}, r1, 0x3, 0xffffffffffffffff, 0x10)
r2 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r2, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
r5 = dup2(r3, r4)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES16=r5, @ANYBLOB="025f6c12083e5534fab790ab1844840d6193a6c7c26df3d1c32b27fc756248716f428b2fed2cee76ac7c1ba94962c55c4f2a28b41d22abf2ab2fe33637ddca3cc968ab429ae097661b4006f2426519cc9d29dcb32f2ddd2d606cab517bc945433b1db8c2d21d1d1429f78a4e30e6471717", @ANYBLOB="4e9cf5d9726c5a56f46d35a00fc1061029f52637d9bd4bd3d9fdbd663b9b59c8a4c9c70da56f6133bf1f09573d9276d90df698cc93f4fc47548d5f4733d76884f749a5187c821e02bdc54798cb188cea8a06d4f12a892559e3b02a654cc06f79", @ANYRES64=r3, @ANYRESDEC=r2, @ANYRESHEX=r3])
fallocate(r0, 0x79, 0x80, 0x80)
fcntl$dupfd(r2, 0x406, r0)
finit_module(r2, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f00008a8000/0x2000)=nil, 0x2000, 0x1, 0x8cca4f89ab818a9d, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x1ff, 0x0, 0x0, 0x5}, 0x0)
syz_io_uring_submit(r6, r8, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/crypto\x00', 0x0, 0x0)
ftruncate(r9, 0x52)

[ 1833.003198] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1833.003811] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1833.004413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1833.005016] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1833.039899] Module has invalid ELF structures
[ 1845.501459] FAULT_INJECTION: forcing a failure.
[ 1845.501459] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1845.502719] CPU: 0 PID: 9376 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1845.503344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1845.504871] Call Trace:
[ 1845.505386]  dump_stack+0x107/0x167
[ 1845.508476] FAULT_INJECTION: forcing a failure.
[ 1845.508476] name failslab, interval 1, probability 0, space 0, times 0
[ 1845.511811]  should_fail.cold+0x5/0xa
[ 1845.511833]  __alloc_pages_nodemask+0x182/0x600
[ 1845.511850]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1845.515316]  ? do_raw_spin_lock+0x121/0x260
[ 1845.515799]  ? kasan_unpoison_shadow+0x33/0x50
[ 1845.516307]  alloc_pages_current+0x187/0x280
[ 1845.516798]  __vmalloc_node_range+0x60a/0x9e0
[ 1845.517296]  ? __vmalloc_node+0x110/0x110
[ 1845.517752]  ? kernel_read_file+0x6b8/0x790
[ 1845.518230]  __vmalloc_node+0xb5/0x110
[ 1845.518653]  ? kernel_read_file+0x6b8/0x790
[ 1845.519129]  kernel_read_file+0x6b8/0x790
[ 1845.519585]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1845.520020]  kernel_read_file_from_fd+0xb8/0x110
[ 1845.520428]  __do_sys_finit_module+0xe8/0x180
[ 1845.520815]  ? __do_sys_init_module+0x230/0x230
[ 1845.521214]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1845.521640]  ? __ia32_sys_read+0xb0/0xb0
[ 1845.521995]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1845.522438]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1845.522882]  ? trace_hardirqs_on+0x5b/0x180
[ 1845.523248]  do_syscall_64+0x33/0x40
[ 1845.523563]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1845.524025] RIP: 0033:0x7f71c9c30b19
[ 1845.524345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1845.525892] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1845.526535] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1845.527143] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1845.527760] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1845.528368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1845.528974] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1845.529594] CPU: 1 PID: 9384 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1845.530195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1845.530887] Call Trace:
[ 1845.531111]  dump_stack+0x107/0x167
[ 1845.531425]  should_fail.cold+0x5/0xa
[ 1845.531765]  ? create_object.isra.0+0x3a/0xa20
[ 1845.532154]  should_failslab+0x5/0x20
[ 1845.532475]  kmem_cache_alloc+0x5b/0x310
[ 1845.532824]  create_object.isra.0+0x3a/0xa20
[ 1845.533196]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1845.533630]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1845.534061]  ? skb_segment+0x9d8/0x3aa0
[ 1845.534403]  __alloc_skb+0xb1/0x5b0
[ 1845.534717]  skb_segment+0x9d8/0x3aa0
[ 1845.535037]  ? lock_chain_count+0x20/0x20
21:13:15 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:15 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 56)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:15 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x4, 0x0, 0x0)

21:13:15 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="011b04ad6d86f01363b5c505fa590900000000f61f00995366abc98b79576d263ca144ef9aaa1680e3a6d74af07c389b9fd983de2ebf900c3630abf8af9a8b3462a4925041c570e11ead90072e7db51219b9a378f251353aecfecd600a5555167df52d7b369edb22e4f048902b66c95436778b19d45f01edd88d325a265418d92e2dbc1763c12abea3018000000000000006e2afb9125249b4f91fbd2f4a7da3bd06bd230fc21a99d676a4cce006b5de773d96bb71b4bb81b80c522b37a7f4136455a6e934e4919addbdb797ac853e51b64ce6ed303eba09eb7d0f9ca950581c83efc23bfc190afb48ba21429b85e67a2c25d31f7ec75da7a5f33ac7db5c3a3135e3520842f19978be722fe131da142465eebdf208976405eb65804e68d38a40560774368647d0cf1713d2c51bc6ae856fd7883f3ce35c161c83f5aabc"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:15 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r1, 0x8000000)
r3 = openat(r1, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r3, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r5}}, 0x7)
write$bt_hci(r3, &(0x7f0000000000)={0x1, @write_class_of_dev={{0xc24, 0x3}, {"cc5b71"}}}, 0x7)
ioctl$sock_bt_hci(r0, 0x400448e4, &(0x7f0000000080)="0cb6dba2a02e50722f256aeab96221ade7935b5b5abc8f6c588d8c546ff53387a3f9c196b6d02dc94eacce27794c9c623de5d004ff487fab63067ad0a3a9c52d9311293ac11a3194314cf2f133c54fb0b98f1fcb657dda7d1abeed93829b13b1f304041c35d800961d41286b6d38bcc0aa92d7737dc3eb1c27696d28282ae19ef55634c8b43c313790dfac82e7d0db77458413564ffd34ed617c24a17f23b706ac600266f8aac594d26058bf104bdfc1bc5956bf02c78fe19dc8250b68d1b18ec53d9480adeb5f0c0a7c3337d673fb7b9887ff644c645ed4bfbf0e")
dup2(r0, r0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:13:15 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 64)

21:13:15 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:15 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x8001}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

[ 1845.535411]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1845.543875]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1845.544361]  __udp_gso_segment+0x11c6/0x1830
[ 1845.544763]  ? __sk_receive_skb+0x830/0x830
[ 1845.545169]  udp4_ufo_fragment+0x528/0x720
[ 1845.545562]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1845.546020]  inet_gso_segment+0x4fb/0x11a0
[ 1845.546420]  skb_mac_gso_segment+0x273/0x570
[ 1845.546824]  ? inet_sock_destruct+0x840/0x840
[ 1845.547233]  ? skb_network_protocol+0x650/0x650
[ 1845.547652]  ? skb_crc32c_csum_help+0x80/0x80
[ 1845.548091]  ? lock_acquire+0x197/0x470
[ 1845.548452]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1845.548859]  __skb_gso_segment+0x32d/0x6d0
[ 1845.549254]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1845.549736]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1845.550159]  __dev_queue_xmit+0x87b/0x2710
[ 1845.550558]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1845.550983]  ? mark_held_locks+0x9e/0xe0
[ 1845.551364]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1845.551869]  neigh_connected_output+0x382/0x4d0
[ 1845.552298]  ip_finish_output2+0x6f1/0x21f0
[ 1845.552693]  ? nf_hook_slow+0xfc/0x1e0
[ 1845.553055]  ? ip_frag_next+0x9e0/0x9e0
[ 1845.553421]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1845.553889]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1845.554341]  ? ip_fragment.constprop.0+0x240/0x240
[ 1845.554781]  ? nf_hook+0x510/0x510
[ 1845.555113]  ip_output+0x2f7/0x600
[ 1845.555442]  ip_send_skb+0xdd/0x260
[ 1845.555799]  udp_send_skb+0x6da/0x11d0
[ 1845.556165]  udp_sendmsg+0x139a/0x2160
[ 1845.556525]  ? mark_lock+0xf5/0x2df0
[ 1845.556875]  ? ip_frag_init+0x350/0x350
[ 1845.557243]  ? lock_chain_count+0x20/0x20
[ 1845.557631]  ? udp_setsockopt+0xc0/0xc0
[ 1845.557995]  ? mark_lock+0xf5/0x2df0
[ 1845.558338]  ? lock_acquire+0x197/0x470
[ 1845.558705]  ? lock_chain_count+0x20/0x20
[ 1845.559086]  ? mark_lock+0xf5/0x2df0
[ 1845.559430]  ? mark_lock+0xf5/0x2df0
[ 1845.559795]  ? lock_chain_count+0x20/0x20
[ 1845.560175]  ? __lock_acquire+0xbb1/0x5b00
[ 1845.560567]  ? lock_chain_count+0x20/0x20
[ 1845.560961]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1845.561449]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1845.561836]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1845.562310]  ? mark_lock+0xf5/0x2df0
[ 1845.562659]  ? lock_acquire+0x197/0x470
[ 1845.563022]  ? find_held_lock+0x2c/0x110
[ 1845.563403]  ? __might_fault+0xd3/0x180
[ 1845.563790]  ? lock_downgrade+0x6d0/0x6d0
[ 1845.564175]  ? lock_downgrade+0x6d0/0x6d0
[ 1845.564567]  ? sock_has_perm+0x1ea/0x280
[ 1845.564943]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1845.565417]  ? _copy_from_user+0xfb/0x1b0
[ 1845.565803]  ? __import_iovec+0x458/0x590
[ 1845.566182]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1845.566660]  inet6_sendmsg+0x105/0x140
[ 1845.567020]  ? inet6_compat_ioctl+0x320/0x320
[ 1845.567430]  __sock_sendmsg+0xf2/0x190
[ 1845.567810]  ____sys_sendmsg+0x70d/0x870
[ 1845.568187]  ? sock_write_iter+0x3d0/0x3d0
[ 1845.568574]  ? do_recvmmsg+0x6d0/0x6d0
[ 1845.568939]  ? lock_downgrade+0x6d0/0x6d0
[ 1845.569323]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1845.569811]  ___sys_sendmsg+0xf3/0x170
[ 1845.570172]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1845.570594]  ? __fget_files+0x2cf/0x520
[ 1845.570963]  ? lock_downgrade+0x6d0/0x6d0
[ 1845.571344]  ? find_held_lock+0x2c/0x110
[ 1845.571738]  ? __fget_files+0x2f8/0x520
[ 1845.572117]  ? __fget_light+0xea/0x290
[ 1845.572485]  __sys_sendmsg+0xe5/0x1b0
[ 1845.572837]  ? __sys_sendmsg_sock+0x40/0x40
[ 1845.573235]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1845.573678]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1845.574156]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1845.574622]  ? trace_hardirqs_on+0x5b/0x180
[ 1845.575021]  do_syscall_64+0x33/0x40
[ 1845.575367]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1845.575847] RIP: 0033:0x7f9e74c56b19
[ 1845.576192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1845.577828] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1845.578521] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1845.579164] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1845.583826] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1845.584468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1845.585107] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:13:15 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
memfd_create(&(0x7f00000000c0)='-\x00', 0x2)
memfd_create(&(0x7f0000000040)='\x06\xff\xff\xe0\x01\x00', 0x4)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:13:15 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:15 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:15 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 65)

[ 1845.668653] Module has invalid ELF structures
21:13:15 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @initdev}, &(0x7f0000000080)=0x10)
recvmmsg(r1, &(0x7f0000003c00)=[{{&(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000140)=""/63, 0x3f}, {&(0x7f0000000180)=""/251, 0xfb}, {&(0x7f0000000280)=""/204, 0xcc}, {&(0x7f0000000380)=""/101, 0x65}, {&(0x7f0000000400)=""/64, 0x40}], 0x5, &(0x7f00000004c0)=""/83, 0x53}}, {{&(0x7f0000000540)=@un=@abs, 0x80, &(0x7f0000000680)=[{&(0x7f0000000740)=""/105, 0x69}, {&(0x7f0000000640)=""/16, 0x10}], 0x2}, 0x9}, {{&(0x7f00000006c0)=@tipc=@name, 0x80, &(0x7f0000003b00), 0x0, &(0x7f0000003b80)=""/118, 0x76}, 0xff}], 0x3, 0x0, 0x0)

21:13:15 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:15 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000040)=@orangefs={0x14, 0x1, {"3115f2b4646df45e0d3b0b240c569618", 0x4}}, 0x90400)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

[ 1845.745734] FAULT_INJECTION: forcing a failure.
[ 1845.745734] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1845.746886] CPU: 1 PID: 9397 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1845.747507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1845.748275] Call Trace:
[ 1845.748524]  dump_stack+0x107/0x167
[ 1845.748856]  should_fail.cold+0x5/0xa
[ 1845.749207]  __alloc_pages_nodemask+0x182/0x600
[ 1845.749633]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1845.750184]  ? do_raw_spin_lock+0x121/0x260
[ 1845.750589]  ? kasan_unpoison_shadow+0x33/0x50
[ 1845.751029]  alloc_pages_current+0x187/0x280
[ 1845.751440]  __vmalloc_node_range+0x60a/0x9e0
[ 1845.751878]  ? __vmalloc_node+0x110/0x110
[ 1845.752270]  ? kernel_read_file+0x6b8/0x790
[ 1845.752669]  __vmalloc_node+0xb5/0x110
[ 1845.753035]  ? kernel_read_file+0x6b8/0x790
[ 1845.753428]  kernel_read_file+0x6b8/0x790
[ 1845.753812]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1845.754245]  kernel_read_file_from_fd+0xb8/0x110
[ 1845.754693]  __do_sys_finit_module+0xe8/0x180
[ 1845.755114]  ? __do_sys_init_module+0x230/0x230
[ 1845.755544]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1845.756024]  ? __ia32_sys_read+0xb0/0xb0
[ 1845.756404]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1845.756884]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1845.757355]  ? trace_hardirqs_on+0x5b/0x180
[ 1845.757751]  do_syscall_64+0x33/0x40
[ 1845.758097]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1845.758563] RIP: 0033:0x7f71c9c30b19
[ 1845.758911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1845.760568] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1845.761273] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1845.761920] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1845.762574] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1845.763231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:13:16 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7fffffff, 0x0, 0x1, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1845.763897] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:13:16 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1845.825081] Module has invalid ELF structures
21:13:30 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x8, 0x0, 0x0)

21:13:30 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:13:30 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:30 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:30 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x9c20, 0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
shutdown(r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r5, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x0, 0x2203, 0x0, {0x1}}, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x8}, 0x5)
ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x2, 0x2, 0x1, 0x44, 0x0, 0x7fff, 0x18004, 0x5, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x911, 0x1, @perf_bp={&(0x7f0000000040)}, 0x40400, 0x7b9f, 0x4, 0x6, 0x9, 0x3ff, 0x4, 0x0, 0x7, 0x0, 0x8}, 0xffffffffffffffff, 0xc, r0, 0x0)
finit_module(r1, 0x0, 0x0)

21:13:30 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 66)

21:13:30 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 57)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1860.277699] FAULT_INJECTION: forcing a failure.
[ 1860.277699] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.278740] CPU: 1 PID: 9423 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1860.279328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.280055] Call Trace:
[ 1860.280305]  dump_stack+0x107/0x167
[ 1860.280638]  should_fail.cold+0x5/0xa
[ 1860.280991]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.281383]  ? __alloc_skb+0x6d/0x5b0
[ 1860.281732]  should_failslab+0x5/0x20
[ 1860.282088]  kmem_cache_alloc_node+0x55/0x330
[ 1860.282505]  __alloc_skb+0x6d/0x5b0
[ 1860.282847]  skb_segment+0x9d8/0x3aa0
[ 1860.283197]  ? lock_chain_count+0x20/0x20
[ 1860.283601]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1860.284073]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.284560]  __udp_gso_segment+0x11c6/0x1830
[ 1860.284962]  ? __sk_receive_skb+0x830/0x830
[ 1860.285362]  udp4_ufo_fragment+0x528/0x720
[ 1860.285747]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1860.286199]  inet_gso_segment+0x4fb/0x11a0
[ 1860.286595]  skb_mac_gso_segment+0x273/0x570
[ 1860.286994]  ? inet_sock_destruct+0x840/0x840
[ 1860.287399]  ? skb_network_protocol+0x650/0x650
[ 1860.287813]  ? skb_crc32c_csum_help+0x80/0x80
[ 1860.288326]  ? lock_acquire+0x197/0x470
[ 1860.288684]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1860.289087]  __skb_gso_segment+0x32d/0x6d0
[ 1860.289470]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1860.289945]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1860.290359]  __dev_queue_xmit+0x87b/0x2710
[ 1860.290731]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1860.291131]  ? mark_held_locks+0x9e/0xe0
[ 1860.291488]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1860.291950]  neigh_connected_output+0x382/0x4d0
[ 1860.292361]  ip_finish_output2+0x6f1/0x21f0
[ 1860.292735]  ? nf_hook_slow+0xfc/0x1e0
[ 1860.293075]  ? ip_frag_next+0x9e0/0x9e0
[ 1860.293424]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1860.293863]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1860.294287]  ? ip_fragment.constprop.0+0x240/0x240
[ 1860.294705]  ? nf_hook+0x510/0x510
[ 1860.295023]  ip_output+0x2f7/0x600
[ 1860.295342]  ip_send_skb+0xdd/0x260
[ 1860.295660]  udp_send_skb+0x6da/0x11d0
[ 1860.296023]  udp_sendmsg+0x139a/0x2160
[ 1860.296376]  ? mark_lock+0xf5/0x2df0
[ 1860.296717]  ? ip_frag_init+0x350/0x350
[ 1860.297074]  ? lock_chain_count+0x20/0x20
[ 1860.297440]  ? udp_setsockopt+0xc0/0xc0
[ 1860.297783]  ? mark_lock+0xf5/0x2df0
[ 1860.298107]  ? lock_acquire+0x197/0x470
[ 1860.298457]  ? lock_chain_count+0x20/0x20
[ 1860.298822]  ? mark_lock+0xf5/0x2df0
[ 1860.299150]  ? mark_lock+0xf5/0x2df0
[ 1860.299474]  ? lock_chain_count+0x20/0x20
[ 1860.299839]  ? __lock_acquire+0xbb1/0x5b00
[ 1860.300206]  ? lock_chain_count+0x20/0x20
[ 1860.300572]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.301032]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1860.301392]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1860.301839]  ? mark_lock+0xf5/0x2df0
[ 1860.302164]  ? lock_acquire+0x197/0x470
[ 1860.302507]  ? find_held_lock+0x2c/0x110
[ 1860.302863]  ? __might_fault+0xd3/0x180
[ 1860.303205]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.303566]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.303935]  ? sock_has_perm+0x1ea/0x280
[ 1860.304284]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1860.304732]  ? _copy_from_user+0xfb/0x1b0
[ 1860.305100]  ? __import_iovec+0x458/0x590
[ 1860.305456]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1860.305903]  inet6_sendmsg+0x105/0x140
[ 1860.306240]  ? inet6_compat_ioctl+0x320/0x320
[ 1860.306626]  __sock_sendmsg+0xf2/0x190
[ 1860.306963]  ____sys_sendmsg+0x70d/0x870
[ 1860.307315]  ? sock_write_iter+0x3d0/0x3d0
[ 1860.307678]  ? do_recvmmsg+0x6d0/0x6d0
[ 1860.308030]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.308390]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.308843]  ___sys_sendmsg+0xf3/0x170
[ 1860.309181]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1860.309578]  ? __fget_files+0x2cf/0x520
[ 1860.309921]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.310276]  ? find_held_lock+0x2c/0x110
[ 1860.310633]  ? __fget_files+0x2f8/0x520
[ 1860.310983]  ? __fget_light+0xea/0x290
[ 1860.311323]  __sys_sendmsg+0xe5/0x1b0
[ 1860.311651]  ? __sys_sendmsg_sock+0x40/0x40
[ 1860.312036]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1860.312449]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.312901]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.313341]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.313714]  do_syscall_64+0x33/0x40
[ 1860.314037]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.314476] RIP: 0033:0x7f9e74c56b19
[ 1860.314797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.316362] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1860.317013] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1860.317620] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1860.318226] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.318837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.319445] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1860.320968] FAULT_INJECTION: forcing a failure.
[ 1860.320968] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1860.322025] CPU: 0 PID: 9435 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1860.322604] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.323315] Call Trace:
[ 1860.323559]  dump_stack+0x107/0x167
21:13:30 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1860.323898]  should_fail.cold+0x5/0xa
[ 1860.324245]  __alloc_pages_nodemask+0x182/0x600
[ 1860.324646]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1860.325158]  ? do_raw_spin_lock+0x121/0x260
[ 1860.325538]  ? kasan_unpoison_shadow+0x33/0x50
[ 1860.325935]  alloc_pages_current+0x187/0x280
[ 1860.326405]  __vmalloc_node_range+0x60a/0x9e0
[ 1860.326794]  ? __vmalloc_node+0x110/0x110
[ 1860.327155]  ? kernel_read_file+0x6b8/0x790
[ 1860.327522]  __vmalloc_node+0xb5/0x110
[ 1860.327867]  ? kernel_read_file+0x6b8/0x790
[ 1860.328245]  kernel_read_file+0x6b8/0x790
[ 1860.328604]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1860.329000]  kernel_read_file_from_fd+0xb8/0x110
[ 1860.329412]  __do_sys_finit_module+0xe8/0x180
[ 1860.329797]  ? __do_sys_init_module+0x230/0x230
[ 1860.330197]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1860.330620]  ? __ia32_sys_read+0xb0/0xb0
[ 1860.330969]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.331413]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.331978]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.332732]  do_syscall_64+0x33/0x40
[ 1860.333377]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.334267] RIP: 0033:0x7f71c9c30b19
[ 1860.334932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.338794] RSP: 002b:00007f71c7185188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1860.340157] RAX: ffffffffffffffda RBX: 00007f71c9d44020 RCX: 00007f71c9c30b19
[ 1860.341387] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1860.342611] RBP: 00007f71c71851d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.343874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.345412] R13: 00007fff446b46bf R14: 00007f71c7185300 R15: 0000000000022000
21:13:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @write_ssp_mode={{0xc56, 0x1}, {0x3}}}, 0x5)

21:13:30 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1860.381885] Module has invalid ELF structures
21:13:30 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:30 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 58)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:30 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 67)

21:13:30 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000005140)='/sys/module/cryptomgr', 0x600, 0x26)
bind$bt_hci(r1, &(0x7f0000005180)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:13:30 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

[ 1860.500420] FAULT_INJECTION: forcing a failure.
[ 1860.500420] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1860.501584] CPU: 0 PID: 9451 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1860.502163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.502860] Call Trace:
[ 1860.503094]  dump_stack+0x107/0x167
[ 1860.503410]  should_fail.cold+0x5/0xa
[ 1860.503742]  __alloc_pages_nodemask+0x182/0x600
[ 1860.504160]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1860.504670]  ? do_raw_spin_lock+0x121/0x260
[ 1860.505044]  ? kasan_unpoison_shadow+0x33/0x50
[ 1860.505439]  alloc_pages_current+0x187/0x280
[ 1860.505818]  __vmalloc_node_range+0x60a/0x9e0
[ 1860.506205]  ? __vmalloc_node+0x110/0x110
[ 1860.506564]  ? kernel_read_file+0x6b8/0x790
[ 1860.506931]  __vmalloc_node+0xb5/0x110
[ 1860.507261]  ? kernel_read_file+0x6b8/0x790
[ 1860.507630]  kernel_read_file+0x6b8/0x790
[ 1860.508005]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1860.508400]  kernel_read_file_from_fd+0xb8/0x110
[ 1860.508812]  __do_sys_finit_module+0xe8/0x180
[ 1860.509196]  ? __do_sys_init_module+0x230/0x230
[ 1860.509595]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1860.510021]  ? __ia32_sys_read+0xb0/0xb0
[ 1860.510371]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.510818]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.511255]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.511625]  do_syscall_64+0x33/0x40
[ 1860.511979]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.512411] RIP: 0033:0x7f71c9c30b19
[ 1860.512727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.514270] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1860.514915] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1860.515513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1860.516128] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.516728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.517327] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1860.518827] FAULT_INJECTION: forcing a failure.
[ 1860.518827] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.519817] CPU: 0 PID: 9453 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1860.520412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.521117] Call Trace:
[ 1860.521345]  dump_stack+0x107/0x167
[ 1860.521663]  should_fail.cold+0x5/0xa
[ 1860.521991]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1860.522435]  ? create_object.isra.0+0x3a/0xa20
[ 1860.522827]  should_failslab+0x5/0x20
[ 1860.523153]  kmem_cache_alloc+0x5b/0x310
[ 1860.523501]  ? mark_held_locks+0x9e/0xe0
[ 1860.523858]  create_object.isra.0+0x3a/0xa20
[ 1860.524238]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1860.524678]  kmem_cache_alloc_node+0x169/0x330
[ 1860.525073]  __alloc_skb+0x6d/0x5b0
[ 1860.525390]  skb_segment+0x9d8/0x3aa0
[ 1860.525714]  ? lock_chain_count+0x20/0x20
[ 1860.526095]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1860.526521]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.526975]  __udp_gso_segment+0x11c6/0x1830
[ 1860.527347]  ? __sk_receive_skb+0x830/0x830
[ 1860.527722]  udp4_ufo_fragment+0x528/0x720
[ 1860.528111]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1860.528532]  inet_gso_segment+0x4fb/0x11a0
[ 1860.528897]  skb_mac_gso_segment+0x273/0x570
[ 1860.529268]  ? inet_sock_destruct+0x840/0x840
[ 1860.529643]  ? skb_network_protocol+0x650/0x650
[ 1860.530032]  ? skb_crc32c_csum_help+0x80/0x80
[ 1860.530409]  ? lock_acquire+0x197/0x470
[ 1860.530747]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1860.531121]  __skb_gso_segment+0x32d/0x6d0
[ 1860.531482]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1860.531938]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1860.532323]  __dev_queue_xmit+0x87b/0x2710
[ 1860.532686]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1860.533078]  ? mark_held_locks+0x9e/0xe0
[ 1860.533424]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1860.533875]  neigh_connected_output+0x382/0x4d0
[ 1860.534277]  ip_finish_output2+0x6f1/0x21f0
[ 1860.534643]  ? nf_hook_slow+0xfc/0x1e0
[ 1860.534973]  ? ip_frag_next+0x9e0/0x9e0
[ 1860.535309]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1860.535739]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1860.536173]  ? ip_fragment.constprop.0+0x240/0x240
[ 1860.536589]  ? nf_hook+0x510/0x510
[ 1860.536906]  ip_output+0x2f7/0x600
[ 1860.537215]  ip_send_skb+0xdd/0x260
[ 1860.537525]  udp_send_skb+0x6da/0x11d0
[ 1860.537864]  udp_sendmsg+0x139a/0x2160
[ 1860.538191]  ? mark_lock+0xf5/0x2df0
[ 1860.538508]  ? ip_frag_init+0x350/0x350
[ 1860.538845]  ? lock_chain_count+0x20/0x20
[ 1860.539197]  ? udp_setsockopt+0xc0/0xc0
[ 1860.539531]  ? mark_lock+0xf5/0x2df0
[ 1860.539853]  ? lock_acquire+0x197/0x470
[ 1860.540198]  ? lock_chain_count+0x20/0x20
[ 1860.540548]  ? mark_lock+0xf5/0x2df0
[ 1860.540868]  ? mark_lock+0xf5/0x2df0
[ 1860.541182]  ? lock_chain_count+0x20/0x20
[ 1860.541532]  ? __lock_acquire+0xbb1/0x5b00
[ 1860.541891]  ? lock_chain_count+0x20/0x20
[ 1860.542249]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.542700]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1860.543059]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1860.543501]  ? mark_lock+0xf5/0x2df0
[ 1860.543836]  ? lock_acquire+0x197/0x470
[ 1860.544189]  ? find_held_lock+0x2c/0x110
[ 1860.544535]  ? __might_fault+0xd3/0x180
[ 1860.544872]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.545223]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.545575]  ? sock_has_perm+0x1ea/0x280
[ 1860.545919]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1860.546359]  ? _copy_from_user+0xfb/0x1b0
[ 1860.546720]  ? __import_iovec+0x458/0x590
[ 1860.547072]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1860.547510]  inet6_sendmsg+0x105/0x140
[ 1860.547846]  ? inet6_compat_ioctl+0x320/0x320
[ 1860.548235]  __sock_sendmsg+0xf2/0x190
[ 1860.548568]  ____sys_sendmsg+0x70d/0x870
[ 1860.548919]  ? sock_write_iter+0x3d0/0x3d0
[ 1860.549276]  ? do_recvmmsg+0x6d0/0x6d0
[ 1860.549608]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.549962]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.550407]  ___sys_sendmsg+0xf3/0x170
[ 1860.550740]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1860.551129]  ? __fget_files+0x2cf/0x520
[ 1860.551465]  ? lock_downgrade+0x6d0/0x6d0
[ 1860.551816]  ? find_held_lock+0x2c/0x110
[ 1860.552179]  ? __fget_files+0x2f8/0x520
[ 1860.552520]  ? __fget_light+0xea/0x290
[ 1860.552855]  __sys_sendmsg+0xe5/0x1b0
[ 1860.553183]  ? __sys_sendmsg_sock+0x40/0x40
[ 1860.553549]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1860.553954]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.554394]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.554826]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.555190]  do_syscall_64+0x33/0x40
[ 1860.555505]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.555959] RIP: 0033:0x7f9e74c56b19
[ 1860.556275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.557811] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1860.558450] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1860.559049] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1860.559647] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.560272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.560867] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:13:30 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0xf, 0x0, 0x0)

21:13:30 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:30 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fstatfs(r0, &(0x7f00000000c0)=""/229)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:13:30 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, 0x0, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:30 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x8924, &(0x7f0000000100)={'tunl0\x00', @ifru_hwaddr})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='devices.list\x00', 0x0, 0x0)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x2c00, 0x2e, 0x1c}, 0x18)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x2, 0x3}, 0x6)

21:13:30 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

[ 1860.645956] Module has invalid ELF structures
21:13:30 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:44 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 68)

21:13:44 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0xf00, 0x0, 0x0)

21:13:44 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="000000000017f77a8a372d81a5b5f1feb9a2b98f82940ebed9937ce71108567c3f9abb7cec418f3227c15ff1431680bb052387da417113c8cc82318efcaadc9996a6b6bce57e09835a6af0ce1b696b0e0d8402760fc2d855478fd4f7683a4737408d6d0e6b181b00b8b5cf0066867c9d14f4b6e40dbcdef211819a0cde60cffbc714a0689dfcf26140cf3c6e245d29617021d32b6bab63809cbe4430ace0000832639280c0e2ccd2ac540a03818069a867c15dff10f29dcb326cc43abed91cdd9c0866d88ab4253a6b"])
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000100)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x14, 0x0, 0x10, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x79193ebb636a7404}, 0x4014)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup2(0xffffffffffffffff, r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r2, 0x8000000)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x1ff, 0x0, 0x0, 0x5}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r6, 0x8000000)
openat(r6, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r6, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r6)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r2, 0x89fb, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000440)={'ip6gre0\x00', <r7=>0x0, 0x2f, 0x9, 0x3f, 0x3, 0x0, @dev={0xfe, 0x80, '\x00', 0x35}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80, 0x8000, 0x20, 0x4}})
syz_io_uring_submit(0x0, r5, &(0x7f0000000580)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, r6, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)=@xdp={0x2c, 0x0, r7, 0x2b}, 0x80, &(0x7f0000000300)}, 0x0, 0x20000000, 0x1}, 0x1ff)
r8 = openat(r2, &(0x7f0000000140)='./file0/file0\x00', 0x2100, 0xbc)
r9 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r8, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r10}}, 0x7)
bind$bt_hci(r8, &(0x7f0000000040)={0x1f, 0x3, 0x4}, 0xffffffffffffff3e)

21:13:44 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 59)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:44 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

21:13:44 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

[ 1873.851240] FAULT_INJECTION: forcing a failure.
[ 1873.851240] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1873.852600] CPU: 1 PID: 9495 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1873.853359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1873.854286] Call Trace:
[ 1873.854572]  dump_stack+0x107/0x167
[ 1873.855006]  should_fail.cold+0x5/0xa
[ 1873.855421]  __alloc_pages_nodemask+0x182/0x600
[ 1873.855916]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1873.856625]  ? do_raw_spin_lock+0x121/0x260
[ 1873.857142]  ? kasan_unpoison_shadow+0x33/0x50
[ 1873.857625]  alloc_pages_current+0x187/0x280
[ 1873.858135]  __vmalloc_node_range+0x60a/0x9e0
[ 1873.858607]  ? __vmalloc_node+0x110/0x110
[ 1873.859091]  ? kernel_read_file+0x6b8/0x790
[ 1873.859538]  __vmalloc_node+0xb5/0x110
[ 1873.860015]  ? kernel_read_file+0x6b8/0x790
[ 1873.860472]  kernel_read_file+0x6b8/0x790
[ 1873.860908]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1873.861444]  kernel_read_file_from_fd+0xb8/0x110
[ 1873.861981]  __do_sys_finit_module+0xe8/0x180
[ 1873.862460]  ? __do_sys_init_module+0x230/0x230
[ 1873.862997]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1873.863520]  ? __ia32_sys_read+0xb0/0xb0
[ 1873.864022]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1873.864574]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1873.865157]  ? trace_hardirqs_on+0x5b/0x180
[ 1873.865599]  do_syscall_64+0x33/0x40
[ 1873.866038]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1873.866564] RIP: 0033:0x7f71c9c30b19
[ 1873.870374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1873.872359] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1873.873200] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1873.873936] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1873.874746] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1873.875527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1873.876307] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1873.888625] FAULT_INJECTION: forcing a failure.
[ 1873.888625] name failslab, interval 1, probability 0, space 0, times 0
[ 1873.889794] CPU: 0 PID: 9494 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1873.890466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1873.891270] Call Trace:
[ 1873.891545]  dump_stack+0x107/0x167
[ 1873.891909]  should_fail.cold+0x5/0xa
[ 1873.892294]  ? trace_hardirqs_on+0x5b/0x180
[ 1873.892727]  ? __alloc_skb+0x6d/0x5b0
[ 1873.893110]  should_failslab+0x5/0x20
[ 1873.893500]  kmem_cache_alloc_node+0x55/0x330
[ 1873.893948]  __alloc_skb+0x6d/0x5b0
[ 1873.894315]  skb_segment+0x9d8/0x3aa0
[ 1873.894701]  ? lock_chain_count+0x20/0x20
[ 1873.895133]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1873.895620]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1873.896151]  __udp_gso_segment+0x11c6/0x1830
[ 1873.896587]  ? __sk_receive_skb+0x830/0x830
[ 1873.897010]  udp4_ufo_fragment+0x528/0x720
[ 1873.897433]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1873.897928]  inet_gso_segment+0x4fb/0x11a0
[ 1873.898341]  skb_mac_gso_segment+0x273/0x570
[ 1873.898777]  ? inet_sock_destruct+0x840/0x840
[ 1873.899219]  ? skb_network_protocol+0x650/0x650
[ 1873.899666]  ? skb_crc32c_csum_help+0x80/0x80
[ 1873.900111]  ? lock_acquire+0x197/0x470
[ 1873.900496]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1873.900928]  __skb_gso_segment+0x32d/0x6d0
[ 1873.901358]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1873.902007]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1873.902450]  __dev_queue_xmit+0x87b/0x2710
[ 1873.902875]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1873.903338]  ? mark_held_locks+0x9e/0xe0
21:13:44 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000001000000180000002bd34a2c157d6e4e2a9cd16b72daa32f22b1e1869f2dfa8c9346e24889fb3e87725902386592a8d967b0ba697718eb22b2408cf014a9c12ce9ac4d1b38f3b024912cfa11a1c3a17df4952d68241bfb4f5c8cbabd1d406a93c2341381498c97de413135b118", @ANYRES32, @ANYBLOB="02000000000000002e2f66696c653000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(0xffffffffffffffff, 0x0, 0x0)
getresuid(&(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040), &(0x7f0000000080))
statx(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x800, 0x400, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r2, r3, 0x1000)
fchown(0xffffffffffffffff, r1, r3)

21:13:44 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, 0x0, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:44 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

[ 1873.903748]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1873.904451]  neigh_connected_output+0x382/0x4d0
[ 1873.905283]  ip_finish_output2+0x6f1/0x21f0
[ 1873.906046]  ? nf_hook_slow+0xfc/0x1e0
[ 1873.906735]  ? ip_frag_next+0x9e0/0x9e0
[ 1873.907433]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1873.908171]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1873.908594]  ? ip_fragment.constprop.0+0x240/0x240
[ 1873.909011]  ? nf_hook+0x510/0x510
[ 1873.909326]  ip_output+0x2f7/0x600
[ 1873.909635]  ip_send_skb+0xdd/0x260
[ 1873.909953]  udp_send_skb+0x6da/0x11d0
[ 1873.910295]  udp_sendmsg+0x139a/0x2160
[ 1873.910627]  ? mark_lock+0xf5/0x2df0
[ 1873.910949]  ? ip_frag_init+0x350/0x350
[ 1873.911292]  ? lock_chain_count+0x20/0x20
[ 1873.911650]  ? udp_setsockopt+0xc0/0xc0
[ 1873.911999]  ? mark_lock+0xf5/0x2df0
[ 1873.912666]  ? lock_acquire+0x197/0x470
[ 1873.913015]  ? lock_chain_count+0x20/0x20
[ 1873.913372]  ? mark_lock+0xf5/0x2df0
[ 1873.913693]  ? mark_lock+0xf5/0x2df0
[ 1873.914015]  ? lock_chain_count+0x20/0x20
[ 1873.914368]  ? __lock_acquire+0xbb1/0x5b00
[ 1873.914731]  ? lock_chain_count+0x20/0x20
[ 1873.915095]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1873.915551]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1873.915909]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1873.916809]  ? mark_lock+0xf5/0x2df0
[ 1873.917136]  ? lock_acquire+0x197/0x470
[ 1873.917476]  ? find_held_lock+0x2c/0x110
[ 1873.917829]  ? __might_fault+0xd3/0x180
[ 1873.918172]  ? lock_downgrade+0x6d0/0x6d0
[ 1873.918530]  ? lock_downgrade+0x6d0/0x6d0
[ 1873.918890]  ? sock_has_perm+0x1ea/0x280
[ 1873.919238]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1873.919684]  ? _copy_from_user+0xfb/0x1b0
[ 1873.920064]  ? __import_iovec+0x458/0x590
[ 1873.920424]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1873.920868]  inet6_sendmsg+0x105/0x140
[ 1873.921209]  ? inet6_compat_ioctl+0x320/0x320
[ 1873.921595]  __sock_sendmsg+0xf2/0x190
[ 1873.921931]  ____sys_sendmsg+0x70d/0x870
[ 1873.922280]  ? sock_write_iter+0x3d0/0x3d0
[ 1873.922643]  ? do_recvmmsg+0x6d0/0x6d0
[ 1873.922983]  ? lock_downgrade+0x6d0/0x6d0
[ 1873.923341]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1873.923794]  ___sys_sendmsg+0xf3/0x170
[ 1873.924156]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1873.924552]  ? __fget_files+0x2cf/0x520
[ 1873.924892]  ? lock_downgrade+0x6d0/0x6d0
[ 1873.925248]  ? find_held_lock+0x2c/0x110
[ 1873.925603]  ? __fget_files+0x2f8/0x520
[ 1873.925955]  ? __fget_light+0xea/0x290
[ 1873.926294]  __sys_sendmsg+0xe5/0x1b0
[ 1873.926632]  ? __sys_sendmsg_sock+0x40/0x40
[ 1873.927006]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1873.927416]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1873.927864]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1873.928686]  ? trace_hardirqs_on+0x5b/0x180
[ 1873.929628]  do_syscall_64+0x33/0x40
[ 1873.930450]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1873.931571] RIP: 0033:0x7f9e74c56b19
[ 1873.932398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1873.940160] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1873.940809] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1873.941405] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1873.942001] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1873.942596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1873.943192] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:13:44 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x2000, 0x0, 0x0)

21:13:44 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, r1)

21:13:57 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 60)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:13:57 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x4000, 0x0, 0x0)

21:13:57 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 69)

21:13:57 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

21:13:57 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

21:13:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)

21:13:57 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, 0x0, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:13:57 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r2, 0x8000000)
r4 = openat(r2, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r4, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r6}}, 0x7)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r4, 0x6, 0x2, &(0x7f0000000080)={0x7f, "2364f8"}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f0319c714f7e91d461b83d566696c653000"])
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:13:57 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

21:13:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
r1 = perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x3f, 0x80, 0x7f, 0xff, 0x0, 0x9, 0x240, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x7, @perf_config_ext={0x9000000000000, 0x6}, 0x7002, 0x1, 0xe25f, 0x4, 0x1, 0x8, 0x4fcf, 0x0, 0x10000, 0x0, 0x100000000}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0xa)
r2 = gettid()
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x1f, 0x8, 0x4, 0x1, 0x0, 0x7fff, 0x72220, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffff0dcf, 0x4, @perf_bp={&(0x7f0000000140), 0x4}, 0x40000, 0x8001, 0x0, 0x2, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x3, 0x0, 0xffffffffffff8d25}, r2, 0xffffffffffffffff, r1, 0x2)
fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000000), &(0x7f0000000100)={'U-'}, 0x16, 0x0)

[ 1886.993614] FAULT_INJECTION: forcing a failure.
[ 1886.993614] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1886.996579] CPU: 1 PID: 9537 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1886.997643] FAULT_INJECTION: forcing a failure.
[ 1886.997643] name failslab, interval 1, probability 0, space 0, times 0
[ 1886.998202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1886.998208] Call Trace:
[ 1886.998227]  dump_stack+0x107/0x167
[ 1886.998240]  should_fail.cold+0x5/0xa
[ 1886.998261]  __alloc_pages_nodemask+0x182/0x600
[ 1887.004982]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1887.006389]  ? do_raw_spin_lock+0x121/0x260
[ 1887.007418]  ? kasan_unpoison_shadow+0x33/0x50
[ 1887.008509]  alloc_pages_current+0x187/0x280
[ 1887.009570]  __vmalloc_node_range+0x60a/0x9e0
[ 1887.010627]  ? __vmalloc_node+0x110/0x110
[ 1887.011598]  ? kernel_read_file+0x6b8/0x790
[ 1887.012621]  __vmalloc_node+0xb5/0x110
[ 1887.013533]  ? kernel_read_file+0x6b8/0x790
[ 1887.014545]  kernel_read_file+0x6b8/0x790
[ 1887.015516]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1887.016608]  kernel_read_file_from_fd+0xb8/0x110
[ 1887.017725]  __do_sys_finit_module+0xe8/0x180
[ 1887.018773]  ? __do_sys_init_module+0x230/0x230
[ 1887.019864]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1887.021027]  ? __ia32_sys_read+0xb0/0xb0
[ 1887.021986]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1887.023211]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1887.024430]  ? trace_hardirqs_on+0x5b/0x180
[ 1887.025444]  do_syscall_64+0x33/0x40
[ 1887.026314]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1887.027520] RIP: 0033:0x7f71c9c30b19
[ 1887.028413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1887.032751] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1887.034527] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1887.036210] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1887.037876] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1887.039554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1887.041621] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1887.043564] CPU: 0 PID: 9543 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1887.044315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1887.045197] Call Trace:
[ 1887.045463]  dump_stack+0x107/0x167
[ 1887.045938]  should_fail.cold+0x5/0xa
[ 1887.046318]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1887.046977]  ? create_object.isra.0+0x3a/0xa20
[ 1887.047422]  should_failslab+0x5/0x20
[ 1887.047952]  kmem_cache_alloc+0x5b/0x310
[ 1887.048365]  ? mark_held_locks+0x9e/0xe0
[ 1887.048797]  create_object.isra.0+0x3a/0xa20
[ 1887.049263]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1887.049803]  kmem_cache_alloc_node+0x169/0x330
[ 1887.050286]  __alloc_skb+0x6d/0x5b0
[ 1887.050686]  skb_segment+0x9d8/0x3aa0
[ 1887.051090]  ? lock_chain_count+0x20/0x20
[ 1887.051572]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1887.052123]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1887.052683]  __udp_gso_segment+0x11c6/0x1830
[ 1887.053147]  ? __sk_receive_skb+0x830/0x830
[ 1887.053607]  udp4_ufo_fragment+0x528/0x720
[ 1887.054081]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1887.054607]  inet_gso_segment+0x4fb/0x11a0
[ 1887.055103]  skb_mac_gso_segment+0x273/0x570
[ 1887.055596]  ? inet_sock_destruct+0x840/0x840
[ 1887.056088]  ? skb_network_protocol+0x650/0x650
[ 1887.056485]  ? skb_crc32c_csum_help+0x80/0x80
[ 1887.056948]  ? lock_acquire+0x197/0x470
[ 1887.057280]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1887.057699]  __skb_gso_segment+0x32d/0x6d0
[ 1887.058110]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1887.058594]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1887.059024]  __dev_queue_xmit+0x87b/0x2710
[ 1887.059386]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1887.059820]  ? mark_held_locks+0x9e/0xe0
[ 1887.060251]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1887.060783]  neigh_connected_output+0x382/0x4d0
[ 1887.061228]  ip_finish_output2+0x6f1/0x21f0
[ 1887.061644]  ? nf_hook_slow+0xfc/0x1e0
[ 1887.061978]  ? ip_frag_next+0x9e0/0x9e0
[ 1887.062311]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1887.062783]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1887.063195]  ? ip_fragment.constprop.0+0x240/0x240
[ 1887.063646]  ? nf_hook+0x510/0x510
[ 1887.063954]  ip_output+0x2f7/0x600
[ 1887.064275]  ip_send_skb+0xdd/0x260
[ 1887.064649]  udp_send_skb+0x6da/0x11d0
[ 1887.065015]  udp_sendmsg+0x139a/0x2160
[ 1887.065359]  ? mark_lock+0xf5/0x2df0
[ 1887.065768]  ? ip_frag_init+0x350/0x350
[ 1887.066124]  ? lock_chain_count+0x20/0x20
[ 1887.067123]  ? udp_setsockopt+0xc0/0xc0
[ 1887.068033]  ? mark_lock+0xf5/0x2df0
[ 1887.068915]  ? lock_acquire+0x197/0x470
[ 1887.069838]  ? lock_chain_count+0x20/0x20
[ 1887.070816]  ? mark_lock+0xf5/0x2df0
[ 1887.071676]  ? mark_lock+0xf5/0x2df0
[ 1887.072531]  ? lock_chain_count+0x20/0x20
[ 1887.073456]  ? __lock_acquire+0xbb1/0x5b00
[ 1887.074430]  ? lock_chain_count+0x20/0x20
[ 1887.075417]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1887.079793]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1887.080869]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1887.082411]  ? mark_lock+0xf5/0x2df0
[ 1887.083552]  ? lock_acquire+0x197/0x470
[ 1887.084450]  ? find_held_lock+0x2c/0x110
[ 1887.085386]  ? __might_fault+0xd3/0x180
[ 1887.086321]  ? lock_downgrade+0x6d0/0x6d0
[ 1887.087274]  ? lock_downgrade+0x6d0/0x6d0
[ 1887.088275]  ? sock_has_perm+0x1ea/0x280
[ 1887.089210]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1887.090397]  ? _copy_from_user+0xfb/0x1b0
[ 1887.091354]  ? __import_iovec+0x458/0x590
[ 1887.092340]  ? udp_v6_push_pending_frames+0x360/0x360
21:13:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000000), &(0x7f0000000080)=0x4)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003700)=[{{&(0x7f00000000c0), 0x6e, &(0x7f0000000180)=[{&(0x7f0000000140)=""/34, 0x22}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000012c0)=[{&(0x7f0000003900)=""/4107, 0x100b}], 0x1, &(0x7f0000001300)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, <r1=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f00000013c0), 0x6e, &(0x7f00000014c0)=[{&(0x7f0000001440)=""/36, 0x24}, {&(0x7f0000001480)=""/40, 0x28}], 0x2, &(0x7f0000001500)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x100}}, {{&(0x7f0000001600)=@abs, 0x6e, &(0x7f00000017c0)=[{&(0x7f0000001680)=""/157, 0x9d}, {&(0x7f0000001740)=""/81, 0x51}], 0x2, &(0x7f0000001800)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x148}}, {{&(0x7f0000001980), 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001a00)=""/239, 0xef}, {&(0x7f0000001b00)=""/96, 0x60}, {&(0x7f0000001b80)=""/41, 0x29}, {&(0x7f0000001bc0)=""/179, 0xb3}, {&(0x7f0000001c80)=""/140, 0x8c}, {&(0x7f0000001d40)=""/139, 0x8b}, {&(0x7f0000001e00)=""/162, 0xa2}, {&(0x7f0000001ec0)=""/195, 0xc3}], 0x8, &(0x7f0000002040)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x118}}, {{&(0x7f0000002180)=@abs, 0x6e, &(0x7f0000003600)=[{&(0x7f0000002200)=""/4096, 0x1000}, {&(0x7f0000003200)=""/253, 0xfd}, {&(0x7f0000003300)=""/193, 0xc1}, {&(0x7f0000003400)=""/218, 0xda}, {&(0x7f0000003500)=""/20, 0x14}, {&(0x7f0000003540)=""/108, 0x6c}, {&(0x7f00000035c0)=""/40, 0x28}], 0x7, &(0x7f0000003680)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}], 0x6, 0x40000061, &(0x7f0000003880)={0x77359400})
bind$bt_hci(r1, &(0x7f00000038c0)={0x1f, 0x3}, 0x6)

[ 1887.093705]  inet6_sendmsg+0x105/0x140
[ 1887.094120]  ? inet6_compat_ioctl+0x320/0x320
[ 1887.094531]  __sock_sendmsg+0xf2/0x190
[ 1887.094871]  ____sys_sendmsg+0x70d/0x870
[ 1887.095214]  ? sock_write_iter+0x3d0/0x3d0
[ 1887.095641]  ? do_recvmmsg+0x6d0/0x6d0
[ 1887.095973]  ? lock_downgrade+0x6d0/0x6d0
[ 1887.096330]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1887.096818]  ___sys_sendmsg+0xf3/0x170
[ 1887.097149]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1887.097580]  ? __fget_files+0x2cf/0x520
[ 1887.097915]  ? lock_downgrade+0x6d0/0x6d0
[ 1887.098345]  ? find_held_lock+0x2c/0x110
[ 1887.098737]  ? __fget_files+0x2f8/0x520
[ 1887.099216]  ? __fget_light+0xea/0x290
[ 1887.099595]  __sys_sendmsg+0xe5/0x1b0
[ 1887.099916]  ? __sys_sendmsg_sock+0x40/0x40
[ 1887.100382]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1887.100862]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1887.101418]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1887.101896]  ? trace_hardirqs_on+0x5b/0x180
[ 1887.102421]  do_syscall_64+0x33/0x40
[ 1887.102785]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1887.103326] RIP: 0033:0x7f9e74c56b19
[ 1887.103686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1887.108084] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1887.110070] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1887.111385] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1887.112892] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1887.116413] Module has invalid ELF structures
[ 1887.123461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1887.123489] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:13:57 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

21:13:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xfffd, 0x3}, 0x6)

21:14:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

21:14:10 executing program 4:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
creat(&(0x7f0000000180)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
truncate(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
truncate(&(0x7f00000001c0)='./file0\x00', 0x20)
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r3, r4)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000200)={0x0, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})

21:14:10 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="013804009bf4c220c1efc2050006000000ee4700000101000000000000000000000000000031f5e866d9022a05c753d21efd0a8d09a16fc23164bd9b7ac43e676b641f13b895074de5c106286e4a564bc2a1b728819d3294421639caaf9e12ac16b66aa1bd109e484c79ee1fb30349d95244aed78f3aa2b8c95cc695c9647243e1fb44cd867035f03726e41493d000cf022d959eee329e488f68f28cbd9730000000003c4df3d187269647dcbc1340bb5cb8e5051573ffadf6880504c875c6bb59f3d937783be55d55a6754fcb8500dd1853eaecf4f0af9e3e1446562e9d03e408d1ea655783e34d349f69cab76130588f8047c1ffb4c58e75c4b38b80fc608530602fefcca1e8090f2e97d416035cb160bb860230e5e2a84a4e4b97b2c98bbf"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:14:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 70)

21:14:10 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, 0x0)
dup2(r0, r1)

21:14:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x40000, 0x0, 0x0)

21:14:10 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 61)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:14:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e21, @rand_addr=0x64010102}}, 0x0, 0x0, 0x2b, 0x0, "e4175472f572aa65f1b42858200ac2ff1fd643a153566dd19afd45c442cde4a988b8f4e63ec561964e78f3d74f625bec11baae4458f42d2d9ef860e94cfca951ec88507d1f99d528078c9df4f7214a7c"}, 0xd8)
sendfile(r1, r2, &(0x7f0000000100)=0x22643812, 0x1)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x6, 0x0, 0x8, 0x0, 0x0, 0x1, 0x40, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x100, 0x8000000000000, 0x2, 0x6, 0x6, 0x0, 0xffff, 0x0, 0x10001, 0x0, 0x8000}, 0xffffffffffffffff, 0x4, r2, 0x0)
r3 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r3, 0x0, 0x0)

[ 1900.189917] FAULT_INJECTION: forcing a failure.
[ 1900.189917] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1900.191343] CPU: 1 PID: 9574 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1900.192036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1900.192818] Call Trace:
[ 1900.193115]  dump_stack+0x107/0x167
[ 1900.193324] Module has invalid ELF structures
[ 1900.193458]  should_fail.cold+0x5/0xa
[ 1900.194297]  __alloc_pages_nodemask+0x182/0x600
[ 1900.194797]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1900.195419]  ? io_schedule_timeout+0x140/0x140
[ 1900.195850]  alloc_pages_current+0x187/0x280
[ 1900.196341]  __vmalloc_node_range+0x60a/0x9e0
[ 1900.196770]  ? __vmalloc_node+0x110/0x110
[ 1900.197215]  ? kernel_read_file+0x6b8/0x790
[ 1900.197615]  __vmalloc_node+0xb5/0x110
[ 1900.198061]  ? kernel_read_file+0x6b8/0x790
[ 1900.198461]  kernel_read_file+0x6b8/0x790
[ 1900.198847]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1900.199346]  kernel_read_file_from_fd+0xb8/0x110
[ 1900.199798]  __do_sys_finit_module+0xe8/0x180
[ 1900.200283]  ? __do_sys_init_module+0x230/0x230
[ 1900.200713]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1900.201235]  ? __ia32_sys_read+0xb0/0xb0
[ 1900.201618]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1900.202169]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1900.202662]  ? trace_hardirqs_on+0x5b/0x180
[ 1900.203113]  do_syscall_64+0x33/0x40
[ 1900.203477]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1900.203994] RIP: 0033:0x7f71c9c30b19
[ 1900.204362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1900.206192] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1900.206907] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1900.207623] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1900.208336] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1900.209049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1900.209715] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1900.222685] FAULT_INJECTION: forcing a failure.
[ 1900.222685] name failslab, interval 1, probability 0, space 0, times 0
[ 1900.223711] CPU: 0 PID: 9578 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1900.224304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1900.225010] Call Trace:
[ 1900.225246]  dump_stack+0x107/0x167
[ 1900.225569]  should_fail.cold+0x5/0xa
[ 1900.225900]  ? ___slab_alloc+0x155/0x700
[ 1900.226254]  ? create_object.isra.0+0x3a/0xa20
[ 1900.226648]  should_failslab+0x5/0x20
[ 1900.226978]  kmem_cache_alloc+0x5b/0x310
[ 1900.227330]  create_object.isra.0+0x3a/0xa20
[ 1900.227707]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1900.228146]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1900.228602]  ? skb_segment+0x9d8/0x3aa0
[ 1900.228950]  __alloc_skb+0xb1/0x5b0
[ 1900.229266]  skb_segment+0x9d8/0x3aa0
[ 1900.229601]  ? lock_chain_count+0x20/0x20
[ 1900.229984]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1900.230413]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.230873]  __udp_gso_segment+0x11c6/0x1830
[ 1900.231250]  ? __sk_receive_skb+0x830/0x830
[ 1900.231626]  udp4_ufo_fragment+0x528/0x720
[ 1900.231993]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1900.232437]  inet_gso_segment+0x4fb/0x11a0
[ 1900.232811]  skb_mac_gso_segment+0x273/0x570
[ 1900.233189]  ? inet_sock_destruct+0x840/0x840
[ 1900.233574]  ? skb_network_protocol+0x650/0x650
[ 1900.233970]  ? skb_crc32c_csum_help+0x80/0x80
[ 1900.234354]  ? lock_acquire+0x197/0x470
[ 1900.234695]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1900.235077]  __skb_gso_segment+0x32d/0x6d0
[ 1900.235444]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1900.235893]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1900.236297]  __dev_queue_xmit+0x87b/0x2710
[ 1900.236669]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1900.237068]  ? mark_held_locks+0x9e/0xe0
[ 1900.237423]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1900.237876]  neigh_connected_output+0x382/0x4d0
[ 1900.238283]  ip_finish_output2+0x6f1/0x21f0
[ 1900.238656]  ? nf_hook_slow+0xfc/0x1e0
[ 1900.238994]  ? ip_frag_next+0x9e0/0x9e0
[ 1900.239335]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1900.239769]  __ip_finish_output.part.0+0x5f3/0xb50
21:14:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

[ 1900.240193]  ? ip_fragment.constprop.0+0x240/0x240
[ 1900.240844]  ? nf_hook+0x510/0x510
[ 1900.241160]  ip_output+0x2f7/0x600
[ 1900.241468]  ip_send_skb+0xdd/0x260
[ 1900.241786]  udp_send_skb+0x6da/0x11d0
[ 1900.242129]  udp_sendmsg+0x139a/0x2160
[ 1900.242462]  ? mark_lock+0xf5/0x2df0
[ 1900.242782]  ? ip_frag_init+0x350/0x350
[ 1900.243125]  ? lock_chain_count+0x20/0x20
[ 1900.243483]  ? udp_setsockopt+0xc0/0xc0
[ 1900.243823]  ? mark_lock+0xf5/0x2df0
[ 1900.244142]  ? lock_acquire+0x197/0x470
[ 1900.244503]  ? lock_chain_count+0x20/0x20
[ 1900.244859]  ? mark_lock+0xf5/0x2df0
[ 1900.245180]  ? mark_lock+0xf5/0x2df0
[ 1900.245501]  ? lock_chain_count+0x20/0x20
[ 1900.245856]  ? __lock_acquire+0xbb1/0x5b00
[ 1900.246219]  ? lock_chain_count+0x20/0x20
[ 1900.246583]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.247039]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1900.247398]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1900.247843]  ? mark_lock+0xf5/0x2df0
[ 1900.248166]  ? lock_acquire+0x197/0x470
[ 1900.248517]  ? find_held_lock+0x2c/0x110
[ 1900.248871]  ? __might_fault+0xd3/0x180
[ 1900.249210]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.249568]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.249925]  ? sock_has_perm+0x1ea/0x280
[ 1900.250272]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1900.250720]  ? _copy_from_user+0xfb/0x1b0
[ 1900.251085]  ? __import_iovec+0x458/0x590
[ 1900.251439]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1900.251884]  inet6_sendmsg+0x105/0x140
[ 1900.252220]  ? inet6_compat_ioctl+0x320/0x320
[ 1900.252622]  __sock_sendmsg+0xf2/0x190
[ 1900.252957]  ____sys_sendmsg+0x70d/0x870
[ 1900.253306]  ? sock_write_iter+0x3d0/0x3d0
[ 1900.253667]  ? do_recvmmsg+0x6d0/0x6d0
[ 1900.254004]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.254360]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.254809]  ___sys_sendmsg+0xf3/0x170
[ 1900.255144]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1900.255539]  ? __fget_files+0x2cf/0x520
[ 1900.255879]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.256233]  ? find_held_lock+0x2c/0x110
[ 1900.256600]  ? __fget_files+0x2f8/0x520
[ 1900.256946]  ? __fget_light+0xea/0x290
[ 1900.257286]  __sys_sendmsg+0xe5/0x1b0
[ 1900.257613]  ? __sys_sendmsg_sock+0x40/0x40
[ 1900.257982]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1900.258395]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1900.258849]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1900.259286]  ? trace_hardirqs_on+0x5b/0x180
[ 1900.259654]  do_syscall_64+0x33/0x40
[ 1900.259976]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1900.260425] RIP: 0033:0x7f9e74c56b19
[ 1900.260745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1900.262298] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1900.262947] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1900.263549] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1900.264154] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1900.264772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1900.265389] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:14:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x80000, 0x0, 0x0)

21:14:10 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

21:14:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
sendfile(r2, r3, &(0x7f0000000100)=0x22643812, 0x1)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x1, 0x3, 0x1, 0x1, 0x0, 0x3, 0x80, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_config_ext={0x0, 0xa30f}, 0x8, 0x4, 0x3, 0x5, 0x0, 0x7ff, 0x1, 0x0, 0x6, 0x0, 0xe35}, 0x0, 0x7, r3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

21:14:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

21:14:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)

21:14:10 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 71)

21:14:10 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 62)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:14:10 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:14:10 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

21:14:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x400000, 0x0, 0x0)

[ 1900.466159] FAULT_INJECTION: forcing a failure.
[ 1900.466159] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1900.467243] CPU: 0 PID: 9604 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1900.467821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1900.468550] Call Trace:
[ 1900.468785]  dump_stack+0x107/0x167
[ 1900.469100]  should_fail.cold+0x5/0xa
[ 1900.469432]  __alloc_pages_nodemask+0x182/0x600
[ 1900.469833]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1900.470345]  ? do_raw_spin_lock+0x121/0x260
[ 1900.470719]  ? kasan_unpoison_shadow+0x33/0x50
[ 1900.471119]  alloc_pages_current+0x187/0x280
[ 1900.471502]  __vmalloc_node_range+0x60a/0x9e0
[ 1900.471892]  ? __vmalloc_node+0x110/0x110
[ 1900.472259]  ? kernel_read_file+0x6b8/0x790
[ 1900.472642]  __vmalloc_node+0xb5/0x110
[ 1900.472974]  ? kernel_read_file+0x6b8/0x790
[ 1900.473348]  kernel_read_file+0x6b8/0x790
[ 1900.473706]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1900.474105]  kernel_read_file_from_fd+0xb8/0x110
[ 1900.474518]  __do_sys_finit_module+0xe8/0x180
[ 1900.474903]  ? __do_sys_init_module+0x230/0x230
[ 1900.475302]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1900.475727]  ? __ia32_sys_read+0xb0/0xb0
[ 1900.476087]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1900.476567]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1900.477005]  ? trace_hardirqs_on+0x5b/0x180
[ 1900.477374]  do_syscall_64+0x33/0x40
[ 1900.477694]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1900.478129] RIP: 0033:0x7f71c9c30b19
[ 1900.478450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1900.480004] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1900.480676] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1900.481281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1900.481886] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1900.482489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1900.483092] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
[ 1900.493631] Module has invalid ELF structures
21:14:10 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:14:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @set_cpb={{0x441, 0xb}, {0x7f, 0x9d, 0x0, 0x810, 0x8, 0x4, 0x5}}}, 0xf)

21:14:10 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080))
dup2(r0, r1)

21:14:10 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x800000, 0x0, 0x0)

[ 1900.686896] FAULT_INJECTION: forcing a failure.
[ 1900.686896] name failslab, interval 1, probability 0, space 0, times 0
[ 1900.689227] CPU: 0 PID: 9623 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1900.689906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1900.690600] Call Trace:
[ 1900.690997]  dump_stack+0x107/0x167
[ 1900.691309]  should_fail.cold+0x5/0xa
[ 1900.691635]  ? __kmalloc_node_track_caller+0x1a6/0x3b0
[ 1900.692079]  ? create_object.isra.0+0x3a/0xa20
[ 1900.692485]  should_failslab+0x5/0x20
[ 1900.692808]  kmem_cache_alloc+0x5b/0x310
[ 1900.693155]  ? mark_held_locks+0x9e/0xe0
[ 1900.693502]  create_object.isra.0+0x3a/0xa20
[ 1900.693984]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1900.694416]  kmem_cache_alloc_node+0x169/0x330
[ 1900.694807]  __alloc_skb+0x6d/0x5b0
[ 1900.695121]  skb_segment+0x9d8/0x3aa0
[ 1900.695442]  ? lock_chain_count+0x20/0x20
[ 1900.695822]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1900.696254]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.696711]  __udp_gso_segment+0x11c6/0x1830
[ 1900.697082]  ? __sk_receive_skb+0x830/0x830
[ 1900.697453]  udp4_ufo_fragment+0x528/0x720
[ 1900.697817]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1900.698239]  inet_gso_segment+0x4fb/0x11a0
[ 1900.698609]  skb_mac_gso_segment+0x273/0x570
[ 1900.698981]  ? inet_sock_destruct+0x840/0x840
[ 1900.699358]  ? skb_network_protocol+0x650/0x650
[ 1900.699749]  ? skb_crc32c_csum_help+0x80/0x80
[ 1900.700127]  ? lock_acquire+0x197/0x470
[ 1900.700477]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1900.700855]  __skb_gso_segment+0x32d/0x6d0
[ 1900.701216]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1900.701658]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1900.702047]  __dev_queue_xmit+0x87b/0x2710
[ 1900.702413]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1900.702806]  ? mark_held_locks+0x9e/0xe0
[ 1900.703154]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1900.703601]  neigh_connected_output+0x382/0x4d0
[ 1900.704005]  ip_finish_output2+0x6f1/0x21f0
[ 1900.704389]  ? nf_hook_slow+0xfc/0x1e0
[ 1900.704720]  ? ip_frag_next+0x9e0/0x9e0
[ 1900.705059]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1900.705486]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1900.705903]  ? ip_fragment.constprop.0+0x240/0x240
[ 1900.706315]  ? nf_hook+0x510/0x510
[ 1900.706627]  ip_output+0x2f7/0x600
[ 1900.706943]  ip_send_skb+0xdd/0x260
[ 1900.707256]  udp_send_skb+0x6da/0x11d0
[ 1900.707593]  udp_sendmsg+0x139a/0x2160
[ 1900.707923]  ? mark_lock+0xf5/0x2df0
[ 1900.708239]  ? ip_frag_init+0x350/0x350
[ 1900.708589]  ? lock_chain_count+0x20/0x20
[ 1900.708947]  ? udp_setsockopt+0xc0/0xc0
[ 1900.709283]  ? mark_lock+0xf5/0x2df0
[ 1900.709605]  ? lock_acquire+0x197/0x470
[ 1900.709945]  ? lock_chain_count+0x20/0x20
[ 1900.710300]  ? mark_lock+0xf5/0x2df0
[ 1900.710619]  ? mark_lock+0xf5/0x2df0
[ 1900.710936]  ? lock_chain_count+0x20/0x20
[ 1900.711288]  ? __lock_acquire+0xbb1/0x5b00
[ 1900.711651]  ? lock_chain_count+0x20/0x20
[ 1900.712011]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.712483]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1900.712839]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1900.713280]  ? mark_lock+0xf5/0x2df0
[ 1900.713602]  ? lock_acquire+0x197/0x470
[ 1900.713940]  ? find_held_lock+0x2c/0x110
[ 1900.714289]  ? __might_fault+0xd3/0x180
[ 1900.714633]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.714989]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.715343]  ? sock_has_perm+0x1ea/0x280
[ 1900.715688]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1900.716131]  ? _copy_from_user+0xfb/0x1b0
[ 1900.716507]  ? __import_iovec+0x458/0x590
[ 1900.716862]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1900.717304]  inet6_sendmsg+0x105/0x140
[ 1900.717636]  ? inet6_compat_ioctl+0x320/0x320
[ 1900.718015]  __sock_sendmsg+0xf2/0x190
[ 1900.718347]  ____sys_sendmsg+0x70d/0x870
[ 1900.718694]  ? sock_write_iter+0x3d0/0x3d0
[ 1900.719053]  ? do_recvmmsg+0x6d0/0x6d0
[ 1900.719388]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.719742]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1900.720190]  ___sys_sendmsg+0xf3/0x170
[ 1900.720537]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1900.720929]  ? __fget_files+0x2cf/0x520
[ 1900.721267]  ? lock_downgrade+0x6d0/0x6d0
[ 1900.721621]  ? find_held_lock+0x2c/0x110
[ 1900.721974]  ? __fget_files+0x2f8/0x520
[ 1900.722317]  ? __fget_light+0xea/0x290
[ 1900.722653]  __sys_sendmsg+0xe5/0x1b0
[ 1900.722976]  ? __sys_sendmsg_sock+0x40/0x40
[ 1900.723343]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1900.723750]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1900.724195]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1900.724645]  ? trace_hardirqs_on+0x5b/0x180
[ 1900.725012]  do_syscall_64+0x33/0x40
[ 1900.725330]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1900.725762] RIP: 0033:0x7f9e74c56b19
[ 1900.726080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1900.727621] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1900.728274] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1900.728879] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1900.729478] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1900.730078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1900.730678] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
21:14:23 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 72)

21:14:23 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 63)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

21:14:23 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x1000000, 0x0, 0x0)

21:14:23 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:14:23 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

21:14:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
readv(r0, &(0x7f0000002380)=[{&(0x7f00000000c0)=""/157, 0x9d}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000002180)=""/67, 0x43}, {&(0x7f0000002200)=""/99, 0x63}, {&(0x7f0000002280)=""/19, 0x13}, {&(0x7f00000022c0)=""/135, 0x87}], 0x7)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x36342c6f}}, './file0\x00'})
write$bt_hci(r1, &(0x7f0000000080)={0x1, @write_def_err_data_reporting={{0xc5b, 0x1}, {0x7f}}}, 0x5)

21:14:23 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000001000000180000007c04b906c2ac66a637fd9b4e1b2d9973f31597dc98f5214b0e8b8c19ee25ce125e73629e42c283563cfd0eb5d678166c93fcf2db648deba114e3cc7f1ae90ee3da71bd81602b4487d2d1c293edae06977840344b17d2a2626b780a99309abe7197bb06babb715b9998a85a7ceb2bf565eefdf9f6a172d89a96d71378a96f9adc6d33554f", @ANYRES32=r1, @ANYBLOB="02000000000000002e2f66696c653000"])
fallocate(r0, 0x79, 0x83, 0xf2b6)
finit_module(r1, 0x0, 0x0)

21:14:23 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

[ 1913.594020] FAULT_INJECTION: forcing a failure.
[ 1913.594020] name failslab, interval 1, probability 0, space 0, times 0
[ 1913.595085] CPU: 0 PID: 9633 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1913.595707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1913.612470] Call Trace:
[ 1913.612722]  dump_stack+0x107/0x167
[ 1913.613057]  should_fail.cold+0x5/0xa
[ 1913.613408]  should_failslab+0x5/0x20
[ 1913.613758]  __kmalloc_node_track_caller+0x74/0x3b0
[ 1913.614203]  ? skb_segment+0x9d8/0x3aa0
[ 1913.614569]  __alloc_skb+0xb1/0x5b0
[ 1913.614905]  skb_segment+0x9d8/0x3aa0
[ 1913.615249]  ? lock_chain_count+0x20/0x20
[ 1913.615660]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1913.616114]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1913.616611]  __udp_gso_segment+0x11c6/0x1830
[ 1913.617011]  ? __sk_receive_skb+0x830/0x830
[ 1913.617414]  udp4_ufo_fragment+0x528/0x720
[ 1913.617802]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1913.618250]  inet_gso_segment+0x4fb/0x11a0
[ 1913.618645]  skb_mac_gso_segment+0x273/0x570
[ 1913.619040]  ? inet_sock_destruct+0x840/0x840
[ 1913.619444]  ? skb_network_protocol+0x650/0x650
[ 1913.619860]  ? skb_crc32c_csum_help+0x80/0x80
[ 1913.620260]  ? lock_acquire+0x197/0x470
[ 1913.620635]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1913.621035]  __skb_gso_segment+0x32d/0x6d0
[ 1913.621422]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1913.621891]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1913.622301]  __dev_queue_xmit+0x87b/0x2710
[ 1913.622695]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1913.623117]  ? mark_held_locks+0x9e/0xe0
[ 1913.623486]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1913.623968]  neigh_connected_output+0x382/0x4d0
[ 1913.624404]  ip_finish_output2+0x6f1/0x21f0
[ 1913.624806]  ? nf_hook_slow+0xfc/0x1e0
[ 1913.625160]  ? ip_frag_next+0x9e0/0x9e0
[ 1913.625519]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1913.625979]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1913.626421]  ? ip_fragment.constprop.0+0x240/0x240
[ 1913.626864]  ? nf_hook+0x510/0x510
[ 1913.627199]  ip_output+0x2f7/0x600
[ 1913.627525]  ip_send_skb+0xdd/0x260
[ 1913.627861]  udp_send_skb+0x6da/0x11d0
[ 1913.628238]  udp_sendmsg+0x139a/0x2160
[ 1913.630806] Module has invalid ELF structures
[ 1913.644621]  ? mark_lock+0xf5/0x2df0
[ 1913.644640]  ? ip_frag_init+0x350/0x350
[ 1913.644657]  ? lock_chain_count+0x20/0x20
[ 1913.644677]  ? udp_setsockopt+0xc0/0xc0
[ 1913.644698]  ? mark_lock+0xf5/0x2df0
[ 1913.646802]  ? lock_acquire+0x197/0x470
[ 1913.647161]  ? lock_chain_count+0x20/0x20
[ 1913.647539]  ? mark_lock+0xf5/0x2df0
[ 1913.647883]  ? mark_lock+0xf5/0x2df0
[ 1913.648218]  ? lock_chain_count+0x20/0x20
[ 1913.648609]  ? __lock_acquire+0xbb1/0x5b00
[ 1913.648995]  ? lock_chain_count+0x20/0x20
[ 1913.649380]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1913.649861]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1913.650241]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1913.650708]  ? mark_lock+0xf5/0x2df0
[ 1913.651050]  ? lock_acquire+0x197/0x470
[ 1913.651403]  ? find_held_lock+0x2c/0x110
[ 1913.651777]  ? __might_fault+0xd3/0x180
[ 1913.652136]  ? lock_downgrade+0x6d0/0x6d0
[ 1913.652526]  ? lock_downgrade+0x6d0/0x6d0
[ 1913.652903]  ? sock_has_perm+0x1ea/0x280
[ 1913.653268]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1913.653733]  ? _copy_from_user+0xfb/0x1b0
[ 1913.654118]  ? __import_iovec+0x458/0x590
[ 1913.654489]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1913.654955]  inet6_sendmsg+0x105/0x140
[ 1913.655308]  ? inet6_compat_ioctl+0x320/0x320
[ 1913.655707]  __sock_sendmsg+0xf2/0x190
[ 1913.656059]  ____sys_sendmsg+0x70d/0x870
[ 1913.656436]  ? sock_write_iter+0x3d0/0x3d0
[ 1913.656819]  ? do_recvmmsg+0x6d0/0x6d0
[ 1913.657174]  ? lock_downgrade+0x6d0/0x6d0
[ 1913.657550]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1913.658023]  ___sys_sendmsg+0xf3/0x170
[ 1913.658374]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1913.658792]  ? __fget_files+0x2cf/0x520
[ 1913.659148]  ? lock_downgrade+0x6d0/0x6d0
[ 1913.659518]  ? find_held_lock+0x2c/0x110
[ 1913.659897]  ? __fget_files+0x2f8/0x520
[ 1913.660262]  ? __fget_light+0xea/0x290
[ 1913.676653]  __sys_sendmsg+0xe5/0x1b0
[ 1913.677001]  ? __sys_sendmsg_sock+0x40/0x40
[ 1913.677387]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1913.677822]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1913.678293]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1913.678753]  ? trace_hardirqs_on+0x5b/0x180
[ 1913.679140]  do_syscall_64+0x33/0x40
[ 1913.679474]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1913.679931] RIP: 0033:0x7f9e74c56b19
[ 1913.680269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1913.681891] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1913.682567] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1913.683195] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1913.683822] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1913.684464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1913.685092] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1913.712633] FAULT_INJECTION: forcing a failure.
[ 1913.712633] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1913.713801] CPU: 0 PID: 9637 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1913.714403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1913.715132] Call Trace:
[ 1913.715380]  dump_stack+0x107/0x167
[ 1913.715713]  should_fail.cold+0x5/0xa
[ 1913.716068]  __alloc_pages_nodemask+0x182/0x600
[ 1913.716504]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1913.717042]  ? do_raw_spin_lock+0x121/0x260
[ 1913.717437]  ? kasan_unpoison_shadow+0x33/0x50
[ 1913.717855]  alloc_pages_current+0x187/0x280
[ 1913.718258]  __vmalloc_node_range+0x60a/0x9e0
[ 1913.718671]  ? __vmalloc_node+0x110/0x110
[ 1913.719052]  ? kernel_read_file+0x6b8/0x790
[ 1913.719439]  __vmalloc_node+0xb5/0x110
[ 1913.719789]  ? kernel_read_file+0x6b8/0x790
[ 1913.720178]  kernel_read_file+0x6b8/0x790
[ 1913.720575]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1913.720993]  kernel_read_file_from_fd+0xb8/0x110
[ 1913.721424]  __do_sys_finit_module+0xe8/0x180
[ 1913.721829]  ? __do_sys_init_module+0x230/0x230
[ 1913.722247]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1913.722699]  ? __ia32_sys_read+0xb0/0xb0
[ 1913.723070]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1913.723535]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1913.723994]  ? trace_hardirqs_on+0x5b/0x180
[ 1913.724380]  do_syscall_64+0x33/0x40
[ 1913.724735]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1913.725195] RIP: 0033:0x7f71c9c30b19
[ 1913.725533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1913.727138] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1913.727815] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1913.728462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1913.729093] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1913.729724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1913.730353] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:14:37 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

21:14:37 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000000))

21:14:37 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 64)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1927.309940] FAULT_INJECTION: forcing a failure.
[ 1927.309940] name failslab, interval 1, probability 0, space 0, times 0
[ 1927.310993] CPU: 0 PID: 9660 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1927.311566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1927.312314] Call Trace:
[ 1927.312554]  dump_stack+0x107/0x167
[ 1927.312949]  should_fail.cold+0x5/0xa
[ 1927.313276]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.313643]  ? __alloc_skb+0x6d/0x5b0
[ 1927.314014]  should_failslab+0x5/0x20
[ 1927.314337]  kmem_cache_alloc_node+0x55/0x330
[ 1927.314718]  __alloc_skb+0x6d/0x5b0
[ 1927.315119]  skb_segment+0x9d8/0x3aa0
[ 1927.315443]  ? lock_chain_count+0x20/0x20
[ 1927.315823]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1927.316294]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.316761]  __udp_gso_segment+0x11c6/0x1830
[ 1927.317199]  ? __sk_receive_skb+0x830/0x830
[ 1927.317570]  udp4_ufo_fragment+0x528/0x720
[ 1927.318027]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1927.318448]  inet_gso_segment+0x4fb/0x11a0
[ 1927.319179]  skb_mac_gso_segment+0x273/0x570
[ 1927.319553]  ? inet_sock_destruct+0x840/0x840
[ 1927.320599]  ? skb_network_protocol+0x650/0x650
[ 1927.321076]  ? skb_crc32c_csum_help+0x80/0x80
[ 1927.321457]  ? lock_acquire+0x197/0x470
[ 1927.321792]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1927.322250]  __skb_gso_segment+0x32d/0x6d0
[ 1927.322615]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1927.323103]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1927.323493]  __dev_queue_xmit+0x87b/0x2710
[ 1927.323945]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1927.324347]  ? mark_held_locks+0x9e/0xe0
[ 1927.324712]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1927.325257]  neigh_connected_output+0x382/0x4d0
[ 1927.325664]  ip_finish_output2+0x6f1/0x21f0
[ 1927.326075]  ? nf_hook_slow+0xfc/0x1e0
[ 1927.326408]  ? ip_frag_next+0x9e0/0x9e0
[ 1927.326745]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1927.327172]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1927.327592]  ? ip_fragment.constprop.0+0x240/0x240
[ 1927.328005]  ? nf_hook+0x510/0x510
[ 1927.328314]  ip_output+0x2f7/0x600
[ 1927.328673]  ip_send_skb+0xdd/0x260
[ 1927.329049]  udp_send_skb+0x6da/0x11d0
[ 1927.329398]  udp_sendmsg+0x139a/0x2160
[ 1927.329727]  ? mark_lock+0xf5/0x2df0
[ 1927.330043]  ? ip_frag_init+0x350/0x350
[ 1927.330381]  ? lock_chain_count+0x20/0x20
[ 1927.330734]  ? udp_setsockopt+0xc0/0xc0
[ 1927.331069]  ? mark_lock+0xf5/0x2df0
[ 1927.331384]  ? lock_acquire+0x197/0x470
[ 1927.331722]  ? lock_chain_count+0x20/0x20
[ 1927.332074]  ? mark_lock+0xf5/0x2df0
[ 1927.332391]  ? mark_lock+0xf5/0x2df0
[ 1927.332729]  ? lock_chain_count+0x20/0x20
[ 1927.333078]  ? __lock_acquire+0xbb1/0x5b00
[ 1927.333437]  ? lock_chain_count+0x20/0x20
[ 1927.333796]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.334244]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1927.334596]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1927.335035]  ? mark_lock+0xf5/0x2df0
[ 1927.335353]  ? lock_acquire+0x197/0x470
[ 1927.335688]  ? find_held_lock+0x2c/0x110
[ 1927.336035]  ? __might_fault+0xd3/0x180
[ 1927.336372]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.336742]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.337094]  ? sock_has_perm+0x1ea/0x280
[ 1927.337437]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1927.337876]  ? _copy_from_user+0xfb/0x1b0
[ 1927.338232]  ? __import_iovec+0x458/0x590
[ 1927.338583]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1927.339020]  inet6_sendmsg+0x105/0x140
[ 1927.339349]  ? inet6_compat_ioctl+0x320/0x320
[ 1927.339728]  __sock_sendmsg+0xf2/0x190
[ 1927.340057]  ____sys_sendmsg+0x70d/0x870
[ 1927.340402]  ? sock_write_iter+0x3d0/0x3d0
[ 1927.340776]  ? do_recvmmsg+0x6d0/0x6d0
[ 1927.341108]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.341460]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.341906]  ___sys_sendmsg+0xf3/0x170
[ 1927.342238]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1927.342626]  ? __fget_files+0x2cf/0x520
[ 1927.342962]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.343312]  ? find_held_lock+0x2c/0x110
[ 1927.343663]  ? __fget_files+0x2f8/0x520
[ 1927.344005]  ? __fget_light+0xea/0x290
[ 1927.344340]  __sys_sendmsg+0xe5/0x1b0
[ 1927.344679]  ? __sys_sendmsg_sock+0x40/0x40
[ 1927.345044]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1927.345448]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1927.345889]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1927.346319]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.346684]  do_syscall_64+0x33/0x40
[ 1927.346999]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1927.347429] RIP: 0033:0x7f9e74c56b19
[ 1927.347744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1927.349290] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1927.349929] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1927.350525] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1927.351121] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1927.351716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:14:37 executing program 5:
r0 = getpgrp(0x0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0xe0, 0x2, 0x5, 0x7, 0x0, 0x4, 0x300, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xb0, 0x2, @perf_bp={&(0x7f0000000200), 0x3}, 0x2, 0x9, 0x8, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9, 0x0, 0x2}, r0, 0x11, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x9}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="17000000000000002e2f66696c653000"])
fallocate(r1, 0x79, 0x80, 0x80)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r3, 0x8000000)
openat(r3, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
write$binfmt_elf64(r3, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r3)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x40, 0x81, 0x1, 0x5, 0x0, 0x9, 0x80e10, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000040), 0x3}, 0x44, 0x400, 0xce9, 0x6, 0x4, 0x400, 0x473, 0x0, 0x2, 0x0, 0x5}, 0xffffffffffffffff, 0xffffffffffffffff, r3, 0x9)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, 0xffffffffffffffff, 0x8000000)
r5 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2100, 0x2c)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r5, 0x0, &(0x7f00000001c0)='./file0/file0\x00', 0x102, 0x8000, 0x12345, {0x0, r7}}, 0x7)
io_uring_enter(r5, 0xc72, 0xff2, 0x3, &(0x7f00000001c0)={[0x4]}, 0x8)
finit_module(r2, 0x0, 0x0)

21:14:37 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

21:14:37 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x2000000, 0x0, 0x0)

21:14:37 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 73)

21:14:37 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000140), 0x5}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1056a2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x4022812, r1, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/netlink\x00')
readv(r2, &(0x7f0000001840)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/232, 0xe8}, {0x0}, {&(0x7f00000007c0)=""/115, 0x73}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f00000006c0)=""/198, 0xc6}], 0x8)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
write$bt_hci(r0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xa)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00')
r4 = fsmount(r3, 0x0, 0x88)
openat(r4, &(0x7f0000001240)='/proc/self/exe\x00', 0x200, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x4c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x163000, 0x0)
unshare(0x48020200)

[ 1927.352313] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1927.377411] FAULT_INJECTION: forcing a failure.
[ 1927.377411] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1927.378480] CPU: 1 PID: 9674 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1927.379064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1927.379762] Call Trace:
[ 1927.379996]  dump_stack+0x107/0x167
[ 1927.380310]  should_fail.cold+0x5/0xa
[ 1927.380712]  __alloc_pages_nodemask+0x182/0x600
[ 1927.381114]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1927.381737]  ? do_raw_spin_lock+0x121/0x260
[ 1927.382250]  ? kasan_unpoison_shadow+0x33/0x50
[ 1927.382686]  alloc_pages_current+0x187/0x280
[ 1927.383068]  __vmalloc_node_range+0x60a/0x9e0
[ 1927.383458]  ? __vmalloc_node+0x110/0x110
[ 1927.383821]  ? kernel_read_file+0x6b8/0x790
[ 1927.384188]  __vmalloc_node+0xb5/0x110
[ 1927.384522]  ? kernel_read_file+0x6b8/0x790
[ 1927.384911]  kernel_read_file+0x6b8/0x790
[ 1927.385266]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1927.385664]  kernel_read_file_from_fd+0xb8/0x110
[ 1927.386074]  __do_sys_finit_module+0xe8/0x180
[ 1927.386455]  ? __do_sys_init_module+0x230/0x230
[ 1927.386854]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1927.387285]  ? __ia32_sys_read+0xb0/0xb0
[ 1927.387635]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1927.388081]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1927.388518]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.388906]  do_syscall_64+0x33/0x40
[ 1927.389224]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1927.389656] RIP: 0033:0x7f71c9c30b19
[ 1927.389975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1927.391518] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1927.392169] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1927.392786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1927.393403] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1927.394006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1927.394607] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:14:37 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0xf000000, 0x0, 0x0)

21:14:37 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(0xffffffffffffffff, r1)

21:14:37 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x110, r0, 0x8000000)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x6, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@cache_fscache}], [{@audit}, {@permit_directio}]}})
openat(r0, &(0x7f0000000180)='\x00', 0x2100, 0x2e)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0xaf2)
close(r0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x9)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r1, r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x500)
dup3(r1, r3, 0x80000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

21:14:37 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
sendfile(r2, r3, &(0x7f0000000100)=0x22643812, 0x1)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x1, 0x3, 0x1, 0x1, 0x0, 0x3, 0x80, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_config_ext={0x0, 0xa30f}, 0x8, 0x4, 0x3, 0x5, 0x0, 0x7ff, 0x1, 0x0, 0x6, 0x0, 0xe35}, 0x0, 0x7, r3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0)

[ 1927.453662] Module has invalid ELF structures
21:14:37 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 74)

21:14:37 executing program 6:
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000004c0)='\x00', 0x0, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmsg$inet(r1, &(0x7f00000008c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c008)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) (fail_nth: 65)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100800, &(0x7f0000001e00)=ANY=[@ANYRESOCT, @ANYRES32=r1, @ANYBLOB="1bfdfbc8a3d0e6aed8cfb9f3a19ad296c8f30ad61980e2de2cff10fc43f274fe5fe7fb541dfa4268dc7fd458e4e4429744fbeb0b027c648cefb35b8bb28c25c4448334a46becddb40b3370deb34c1db41a9536f9bf5e32d73177083c0f790b7f0c8e9c53979dd3d48c83fda3c3f505d5d7fd3f356bfec38508d374ae8db29c2f2172538c2d972cc628a7ffbef6af4920d8d2d919210c65ad95077a05a58244cfe3bc6521731c49c8f67ad74503efcd1d9396b6b9a7d61575aa2e93a8970a30cf22a772a817a317f7fc4e47dc9c98f9e138c242ff071f0907f6d2b2b8490ad915c21b5cb6e19ef3caf14a53eada7e00000000", @ANYRESDEC])

[ 1927.499269] FAULT_INJECTION: forcing a failure.
[ 1927.499269] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1927.500381] CPU: 0 PID: 9689 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1927.500978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1927.501165] Module has invalid ELF structures
[ 1927.501675] Call Trace:
[ 1927.501696]  dump_stack+0x107/0x167
[ 1927.501715]  should_fail.cold+0x5/0xa
[ 1927.502965]  __alloc_pages_nodemask+0x182/0x600
[ 1927.503368]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1927.503879]  ? do_raw_spin_lock+0x121/0x260
[ 1927.504257]  ? kasan_unpoison_shadow+0x33/0x50
[ 1927.504658]  alloc_pages_current+0x187/0x280
[ 1927.505035]  __vmalloc_node_range+0x60a/0x9e0
[ 1927.505430]  ? __vmalloc_node+0x110/0x110
[ 1927.505791]  ? kernel_read_file+0x6b8/0x790
[ 1927.506155]  __vmalloc_node+0xb5/0x110
[ 1927.506491]  ? kernel_read_file+0x6b8/0x790
[ 1927.506858]  kernel_read_file+0x6b8/0x790
[ 1927.507213]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1927.507613]  kernel_read_file_from_fd+0xb8/0x110
[ 1927.508021]  __do_sys_finit_module+0xe8/0x180
[ 1927.508411]  ? __do_sys_init_module+0x230/0x230
[ 1927.508815]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1927.509238]  ? __ia32_sys_read+0xb0/0xb0
[ 1927.509594]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1927.510039]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1927.510480]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.510851]  do_syscall_64+0x33/0x40
[ 1927.511175]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1927.511618] RIP: 0033:0x7f71c9c30b19
[ 1927.511940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1927.513500] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1927.514153] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1927.514761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1927.515364] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1927.515973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1927.516581] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000
21:14:37 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x30}, 0x0, 0x20000040}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1d}, 0x80000001)
r4 = socket$inet(0x2, 0x1, 0x0)
dup3(r4, r3, 0x0)
io_uring_enter(r0, 0x3491, 0x0, 0x20000000, 0x0, 0x0)

21:14:37 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x100})
dup2(r0, 0xffffffffffffffff)

[ 1927.564624] FAULT_INJECTION: forcing a failure.
[ 1927.564624] name failslab, interval 1, probability 0, space 0, times 0
[ 1927.565677] CPU: 1 PID: 9696 Comm: syz-executor.6 Not tainted 5.10.223 #1
[ 1927.566274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1927.566985] Call Trace:
[ 1927.567226]  dump_stack+0x107/0x167
[ 1927.567545]  should_fail.cold+0x5/0xa
[ 1927.567893]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.568271]  ? __alloc_skb+0x6d/0x5b0
[ 1927.568614]  should_failslab+0x5/0x20
[ 1927.568962]  kmem_cache_alloc_node+0x55/0x330
[ 1927.569354]  __alloc_skb+0x6d/0x5b0
[ 1927.569684]  skb_segment+0x9d8/0x3aa0
[ 1927.570026]  ? lock_chain_count+0x20/0x20
[ 1927.570414]  ? skb_zerocopy_iter_stream+0x800/0x800
[ 1927.570849]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.571318]  __udp_gso_segment+0x11c6/0x1830
[ 1927.571698]  ? __sk_receive_skb+0x830/0x830
[ 1927.572091]  udp4_ufo_fragment+0x528/0x720
[ 1927.572465]  ? skb_udp_tunnel_segment+0x1db0/0x1db0
[ 1927.572905]  inet_gso_segment+0x4fb/0x11a0
[ 1927.573291]  skb_mac_gso_segment+0x273/0x570
[ 1927.573673]  ? inet_sock_destruct+0x840/0x840
[ 1927.574059]  ? skb_network_protocol+0x650/0x650
[ 1927.574469]  ? skb_crc32c_csum_help+0x80/0x80
[ 1927.574855]  ? lock_acquire+0x197/0x470
[ 1927.575202]  ? __dev_queue_xmit+0x1c2/0x2710
[ 1927.575589]  __skb_gso_segment+0x32d/0x6d0
[ 1927.575958]  validate_xmit_skb.constprop.0+0x4fe/0xda0
[ 1927.576417]  ? netdev_core_pick_tx+0x1d1/0x2f0
[ 1927.576820]  __dev_queue_xmit+0x87b/0x2710
[ 1927.577195]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 1927.577608]  ? mark_held_locks+0x9e/0xe0
[ 1927.577965]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 1927.578428]  neigh_connected_output+0x382/0x4d0
[ 1927.578866]  ip_finish_output2+0x6f1/0x21f0
[ 1927.579262]  ? nf_hook_slow+0xfc/0x1e0
[ 1927.579638]  ? ip_frag_next+0x9e0/0x9e0
[ 1927.580004]  ? skb_gso_transport_seglen+0x1ca/0x360
[ 1927.580464]  __ip_finish_output.part.0+0x5f3/0xb50
[ 1927.580908]  ? ip_fragment.constprop.0+0x240/0x240
[ 1927.581343]  ? nf_hook+0x510/0x510
[ 1927.581672]  ip_output+0x2f7/0x600
[ 1927.582004]  ip_send_skb+0xdd/0x260
[ 1927.582337]  udp_send_skb+0x6da/0x11d0
[ 1927.582707]  udp_sendmsg+0x139a/0x2160
[ 1927.583056]  ? mark_lock+0xf5/0x2df0
[ 1927.583385]  ? ip_frag_init+0x350/0x350
[ 1927.583741]  ? lock_chain_count+0x20/0x20
[ 1927.584115]  ? udp_setsockopt+0xc0/0xc0
[ 1927.584471]  ? mark_lock+0xf5/0x2df0
[ 1927.584828]  ? lock_acquire+0x197/0x470
[ 1927.585198]  ? lock_chain_count+0x20/0x20
[ 1927.585572]  ? mark_lock+0xf5/0x2df0
[ 1927.585918]  ? mark_lock+0xf5/0x2df0
[ 1927.586244]  ? lock_chain_count+0x20/0x20
[ 1927.586604]  ? __lock_acquire+0xbb1/0x5b00
[ 1927.586980]  ? lock_chain_count+0x20/0x20
[ 1927.587357]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.587829]  udpv6_sendmsg+0x1bcf/0x2ad0
[ 1927.588211]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1927.588673]  ? mark_lock+0xf5/0x2df0
[ 1927.589004]  ? lock_acquire+0x197/0x470
[ 1927.589354]  ? find_held_lock+0x2c/0x110
[ 1927.589713]  ? __might_fault+0xd3/0x180
[ 1927.590058]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.590430]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.590793]  ? sock_has_perm+0x1ea/0x280
[ 1927.591154]  ? selinux_socket_post_create+0x7f0/0x7f0
[ 1927.591612]  ? _copy_from_user+0xfb/0x1b0
[ 1927.591985]  ? __import_iovec+0x458/0x590
[ 1927.592365]  ? udp_v6_push_pending_frames+0x360/0x360
[ 1927.592825]  inet6_sendmsg+0x105/0x140
[ 1927.593170]  ? inet6_compat_ioctl+0x320/0x320
[ 1927.593566]  __sock_sendmsg+0xf2/0x190
[ 1927.593905]  ____sys_sendmsg+0x70d/0x870
[ 1927.594262]  ? sock_write_iter+0x3d0/0x3d0
[ 1927.594637]  ? do_recvmmsg+0x6d0/0x6d0
[ 1927.594982]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.595341]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1927.595807]  ___sys_sendmsg+0xf3/0x170
[ 1927.596146]  ? sendmsg_copy_msghdr+0x160/0x160
[ 1927.596557]  ? __fget_files+0x2cf/0x520
[ 1927.596901]  ? lock_downgrade+0x6d0/0x6d0
[ 1927.597258]  ? find_held_lock+0x2c/0x110
[ 1927.597625]  ? __fget_files+0x2f8/0x520
[ 1927.597974]  ? __fget_light+0xea/0x290
[ 1927.598318]  __sys_sendmsg+0xe5/0x1b0
[ 1927.598657]  ? __sys_sendmsg_sock+0x40/0x40
[ 1927.599034]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1927.599452]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1927.599918]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1927.600367]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.600754]  do_syscall_64+0x33/0x40
[ 1927.601083]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1927.601524] RIP: 0033:0x7f9e74c56b19
[ 1927.601855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1927.603419] RSP: 002b:00007f9e721cc188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1927.604087] RAX: ffffffffffffffda RBX: 00007f9e74d69f60 RCX: 00007f9e74c56b19
[ 1927.604706] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[ 1927.605333] RBP: 00007f9e721cc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1927.605941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1927.606560] R13: 00007ffd9b6a5fdf R14: 00007f9e721cc300 R15: 0000000000022000
[ 1927.609040] FAULT_INJECTION: forcing a failure.
[ 1927.609040] name fail_page_alloc, interval 1, probability 0, space 0, times 0
21:14:37 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = memfd_create(&(0x7f0000000000)='\x06\xff\xff\xe0\x01\x00\x00\x00', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa, 0x1d012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r2)
fallocate(r0, 0x79, 0x80, 0x80)
finit_module(r1, 0x0, 0x0) (fail_nth: 75)

[ 1927.611351] CPU: 0 PID: 9698 Comm: syz-executor.2 Not tainted 5.10.223 #1
[ 1927.611937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1927.612653] Call Trace:
[ 1927.612887]  dump_stack+0x107/0x167
[ 1927.613199]  should_fail.cold+0x5/0xa
[ 1927.613537]  __alloc_pages_nodemask+0x182/0x600
[ 1927.613933]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1927.614450]  ? io_schedule_timeout+0x140/0x140
[ 1927.614843]  ? lock_is_held_type+0xd2/0x110
[ 1927.615213]  alloc_pages_current+0x187/0x280
[ 1927.615596]  __vmalloc_node_range+0x60a/0x9e0
[ 1927.615983]  ? __vmalloc_node+0x110/0x110
[ 1927.616340]  ? kernel_read_file+0x6b8/0x790
[ 1927.616721]  __vmalloc_node+0xb5/0x110
[ 1927.617050]  ? kernel_read_file+0x6b8/0x790
[ 1927.617419]  kernel_read_file+0x6b8/0x790
[ 1927.617779]  ? __ia32_sys_fsconfig+0x150/0x150
[ 1927.618171]  kernel_read_file_from_fd+0xb8/0x110
[ 1927.618577]  __do_sys_finit_module+0xe8/0x180
[ 1927.618968]  ? __do_sys_init_module+0x230/0x230
[ 1927.619360]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1927.619782]  ? __ia32_sys_read+0xb0/0xb0
[ 1927.620135]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1927.620591]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1927.621034]  ? trace_hardirqs_on+0x5b/0x180
[ 1927.621401]  do_syscall_64+0x33/0x40
[ 1927.621718]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1927.622161] RIP: 0033:0x7f71c9c30b19
[ 1927.622478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1927.624015] RSP: 002b:00007f71c71a6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[ 1927.624666] RAX: ffffffffffffffda RBX: 00007f71c9d43f60 RCX: 00007f71c9c30b19
[ 1927.625274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1927.625872] RBP: 00007f71c71a61d0 R08: 0000000000000000 R09: 0000000000000000
[ 1927.626479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1927.627094] R13: 00007fff446b46bf R14: 00007f71c71a6300 R15: 0000000000022000

VM DIAGNOSIS:
21:19:47  Registers:
info registers vcpu 0
RAX=ffffffff83e75230 RBX=0000000000000000 RCX=ffffffff83e5d02c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e75838 RBP=fffffbfff09c6450 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85675808 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e7523e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff15b541010 CR3=00000000090d2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000007000000060000000000000000
XMM02=61746f7420636578650a0a0100010101 XMM03=65786509006e6567206365786508006c
XMM04=6e616320636578650e007a7a75662063 XMM05=69727420636578650b00657461646964
XMM06=00736465657320636578650a00656761 XMM07=72617473657220726f74756365786511
XMM08=6e6567206365786508006c61746f7420 XMM09=6578650e007a7a756620636578650900
XMM10=6578650b006574616469646e61632063 XMM11=7320636578650a006567616972742063
XMM12=7220726f747563657865110073646565 XMM13=696d20636578650d0073747261747365
XMM14=616d7320636578650a00657a696d696e XMM15=000073746e696820636578650a006873
info registers vcpu 1
RAX=1ffffffff0c3e9f7 RBX=cf5845a49c6a17af RCX=0000000000001531 RDX=ffffffff861f4fa0
RSI=0000000000000008 RDI=ffffffff861f4fb8 RBP=ffffffff86826fc8 RSP=ffff88800898fad0
R8 =0000000000000000 R9 =ffffffff868686e7 R10=fffffbfff0d0d0dc R11=0000000000000001
R12=ffff888008980000 R13=ffff888008980948 R14=dffffc0000000000 R15=0000000000000001
RIP=ffffffff8126e0d1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff15a30bb60 CR3=00000000090d2000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000004184695640000000 XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000