fget_files+0x2cf/0x520
[ 1717.855327]  ? lock_downgrade+0x6d0/0x6d0
[ 1717.856374]  __io_queue_sqe+0x90/0x9d0
[ 1717.856953] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1717.857359]  ? io_issue_sqe+0x77b0/0x77b0
[ 1717.857377]  ? __fget_files+0x2f8/0x520
[ 1717.857416]  ? io_prep_rw+0x7f5/0x1050
[ 1717.862301]  io_submit_sqes+0x44aa/0x8610
[ 1717.863379]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1717.864606]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1717.865825]  ? find_held_lock+0x2c/0x110
[ 1717.866849]  ? io_submit_sqes+0x8610/0x8610
[ 1717.867941]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1717.869155]  ? wait_for_completion_io+0x270/0x270
[ 1717.870350]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1717.871502]  ? vfs_write+0x354/0xb10
[ 1717.872425]  ? fput_many+0x2f/0x1a0
[ 1717.873338]  ? ksys_write+0x1a9/0x260
[ 1717.874283]  ? __ia32_sys_read+0xb0/0xb0
[ 1717.875296]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1717.876597]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1717.877886]  do_syscall_64+0x33/0x40
[ 1717.878808]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1717.880080] RIP: 0033:0x7f8f6841db19
[ 1717.881010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1717.885580] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1717.887460] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1717.889224] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1717.890975] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1717.892737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1717.894490] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:57:27 executing program 7:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[])
r1 = socket$netlink(0x10, 0x3, 0x0)
fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="240000001000010000000000000000ae0000090005000000000000000500008048000000e94de183e4dbfe4f0340089d65da11b960d59ed32500896cf8f2b91b39024be746a168294158926485c975e9b83f3dfc8d650636dbead6c174bef68363a5d102d65d4da78e218bdc9479d069333a2a714cdb1cab6d6b8fb6b89b6f880f95c14a168f3da6b6f92cd05ffdc1c5866d4c18f5576296b032b81d3a1f00d8c29bf6056ba42cc7a2c97ca96d830d3fc80246db0025e619e13c41c08dc96d536ffffffffffffffff27f9e720b52dc82c724f6e899"], 0x24}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000940)=ANY=[@ANYBLOB="95b50000018fd33a76603d5fd29603293e000000", @ANYRES32=<r2=>r0, @ANYBLOB="04a500006ccf5e00a30878ffff75db00808ebf8b85b5363cdf1595a0bee6cc6ec57b594af05d2bcaace304ab11b2f0de03bff4371a9012ef1c32b4b5c6366f172a140b3c90f6de5877ef5a6a3a26844c4bc8c82413041c010b22156a4c9a107723a5f2df0884ac7b2d8cf48af5dc01fc3d1d08a58cc865e3f2f712e1a4eabdc0986bd04ce4c790d9de030b3ca0239c52c979afa3e6e8c80f01000eba254f7d13aa0b68306d66d92477fe946e898db0c1"])
openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0)
faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0)
read(r2, &(0x7f00000006c0)=""/135, 0x87)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x44000000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(0xffffffffffffffff, &(0x7f0000000400), 0x0, 0x104, 0x4)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46800)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

04:57:27 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

04:57:27 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000600000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1718.039807] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 1718.095780] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1718.097819] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1718.099858] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1718.103830] FAULT_INJECTION: forcing a failure.
[ 1718.103830] name failslab, interval 1, probability 0, space 0, times 0
[ 1718.106778] CPU: 0 PID: 9940 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1718.108524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1718.110634] Call Trace:
[ 1718.111306]  dump_stack+0x107/0x167
[ 1718.112236]  should_fail.cold+0x5/0xa
[ 1718.113209]  ? __io_queue_sqe+0x666/0x9d0
[ 1718.114267]  should_failslab+0x5/0x20
[ 1718.115228]  kmem_cache_alloc_trace+0x55/0x320
[ 1718.116381]  ? lock_downgrade+0x6d0/0x6d0
[ 1718.117442]  __io_queue_sqe+0x666/0x9d0
[ 1718.118446]  ? io_issue_sqe+0x77b0/0x77b0
[ 1718.119485]  ? __fget_files+0x2f8/0x520
[ 1718.120487]  ? io_prep_rw+0x7f5/0x1050
[ 1718.121485]  io_submit_sqes+0x44aa/0x8610
[ 1718.122566]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1718.123791]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1718.125012]  ? find_held_lock+0x2c/0x110
[ 1718.126014]  ? io_submit_sqes+0x8610/0x8610
[ 1718.127103]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1718.127807] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 1718.128307]  ? wait_for_completion_io+0x270/0x270
[ 1718.128333]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1718.128353]  ? vfs_write+0x354/0xb10
[ 1718.128378]  ? fput_many+0x2f/0x1a0
[ 1718.134479]  ? ksys_write+0x1a9/0x260
[ 1718.135428]  ? __ia32_sys_read+0xb0/0xb0
[ 1718.136447]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1718.137750]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1718.139039]  do_syscall_64+0x33/0x40
[ 1718.139951]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1718.141234] RIP: 0033:0x7f8f6841db19
[ 1718.142147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1718.146721] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1718.148597] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1718.150380] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1718.152157] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1718.153946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1718.155720] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:57:44 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

04:57:44 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x45}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:57:44 executing program 7:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x4002, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0xee00, 0xee00}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000005c0)=ANY=[])
r2 = socket$netlink(0x10, 0x3, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000005c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000780)={0x1, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x401, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000280)}, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x7, 0x2}, 0x0, 0x400000000010, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x2019})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r1, @ANYBLOB="02000000000000002e2f66696c653000b48ea56a6b493cb8634727dc7cbbe2dc472ef0d9c090c9991e26be1c3d9fd079f793efc66a713271a2855e89970c24f4262c065543f19143269ee8cc1d3c9c8ac475bc7a3024f713bff13f673937bcaddba5642c92dbdc0d80482b54030ece38e1cf1876d51809826143d8f8776c74fdc425daae2db1d89475e19a8dc9a5933ce331dd68d8eeeb6d4a08efc281862c2579bb81fdb2ff74d6899145972778e23f9e9d8112162745ef852cae5ff53975b308ab5ef28c64c5f7845fa08631689c33b1980a1f73323e439d2a87e3f33e71cc66"])
sendmsg$AUDIT_GET_FEATURE(r3, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x5008c00c}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xd, 0x3fb, 0x10, 0x70bd2b, 0x25dfdbfe, "", ["", "", "", "", "", ""]}, 0x2c}}, 0x8804)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = dup(r4)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, &(0x7f0000000400), &(0x7f0000000440)=0x10)
accept4$bt_l2cap(r5, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000640)=0xe, 0x100000)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100)
openat(r5, &(0x7f00000002c0)='./file0\x00', 0x92180, 0x1)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000540)={0x8, 'veth0_macvtap\x00', {'dummy0\x00'}, 0xfff9})
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

04:57:44 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:57:44 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1734.770474] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 1734.782660] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1734.784719] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1734.787359] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1734.807727] FAULT_INJECTION: forcing a failure.
[ 1734.807727] name failslab, interval 1, probability 0, space 0, times 0
[ 1734.808465] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 1734.810796] CPU: 0 PID: 9956 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1734.814332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1734.816563] Call Trace:
[ 1734.817288]  dump_stack+0x107/0x167
[ 1734.818279]  should_fail.cold+0x5/0xa
[ 1734.819306]  ? io_setup_async_rw+0x180/0x580
[ 1734.820492] FAULT_INJECTION: forcing a failure.
[ 1734.820492] name failslab, interval 1, probability 0, space 0, times 0
[ 1734.820517]  should_failslab+0x5/0x20
[ 1734.820543]  __kmalloc+0x72/0x390
[ 1734.824926]  io_setup_async_rw+0x180/0x580
[ 1734.826011]  ? iov_iter_restore+0x195/0x3a0
[ 1734.827067]  io_read+0x775/0x11e0
[ 1734.827915]  ? __is_insn_slot_addr+0x14c/0x290
[ 1734.829096]  ? kernel_text_address+0xf2/0x120
[ 1734.830196]  ? unwind_get_return_address+0x55/0xa0
[ 1734.831428]  ? create_prof_cpu_mask+0x20/0x20
[ 1734.832568]  ? kiocb_done+0xc90/0xc90
[ 1734.833541]  ? mark_lock+0xf5/0x2df0
[ 1734.834500]  ? lock_chain_count+0x20/0x20
[ 1734.835528]  ? __lock_acquire+0xbb1/0x5b00
[ 1734.836616]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1734.837967]  ? SOFTIRQ_verbose+0x10/0x10
[ 1734.839005]  ? kasan_save_stack+0x1b/0x40
[ 1734.840066]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1734.841374]  ? __io_queue_sqe+0x666/0x9d0
[ 1734.842444]  ? __lock_acquire+0xbb1/0x5b00
[ 1734.843535]  io_issue_sqe+0x2e8a/0x77b0
[ 1734.844568]  ? perf_trace_lock+0xac/0x490
[ 1734.845643]  ? SOFTIRQ_verbose+0x10/0x10
[ 1734.846691]  ? io_connect+0x610/0x610
[ 1734.847675]  ? lock_acquire+0x197/0x470
[ 1734.848693]  ? find_held_lock+0x2c/0x110
[ 1734.849752]  ? __fget_files+0x2cf/0x520
[ 1734.850772]  ? lock_downgrade+0x6d0/0x6d0
[ 1734.851850]  __io_queue_sqe+0x90/0x9d0
[ 1734.852876]  ? io_issue_sqe+0x77b0/0x77b0
[ 1734.853947]  ? __fget_files+0x2f8/0x520
[ 1734.854983]  ? io_prep_rw+0x7f5/0x1050
[ 1734.855999]  io_submit_sqes+0x44aa/0x8610
[ 1734.857123]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1734.858410]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1734.859666]  ? find_held_lock+0x2c/0x110
[ 1734.860727]  ? io_submit_sqes+0x8610/0x8610
[ 1734.861864]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1734.863113]  ? wait_for_completion_io+0x270/0x270
[ 1734.864315]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1734.865485]  ? vfs_write+0x354/0xb10
[ 1734.866427]  ? fput_many+0x2f/0x1a0
[ 1734.867338]  ? ksys_write+0x1a9/0x260
[ 1734.868304]  ? __ia32_sys_read+0xb0/0xb0
[ 1734.869338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1734.870646]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1734.871948]  do_syscall_64+0x33/0x40
[ 1734.872896]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1734.874190] RIP: 0033:0x7f93ba828b19
[ 1734.875126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1734.879764] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1734.881496] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1734.883072] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1734.884646] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1734.886225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1734.887826] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1734.889451] CPU: 1 PID: 9963 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1734.890889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1734.892615] Call Trace:
[ 1734.893189]  dump_stack+0x107/0x167
[ 1734.893966]  should_fail.cold+0x5/0xa
[ 1734.894766]  ? create_object.isra.0+0x3a/0xa20
[ 1734.895725]  should_failslab+0x5/0x20
[ 1734.896521]  kmem_cache_alloc+0x5b/0x310
[ 1734.897375]  create_object.isra.0+0x3a/0xa20
[ 1734.898284]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1734.899334]  kmem_cache_alloc_trace+0x151/0x320
[ 1734.900297]  __io_queue_sqe+0x666/0x9d0
[ 1734.901128]  ? io_issue_sqe+0x77b0/0x77b0
[ 1734.902257]  ? __fget_files+0x2f8/0x520
[ 1734.903093]  ? io_prep_rw+0x7f5/0x1050
[ 1734.903916]  io_submit_sqes+0x44aa/0x8610
[ 1734.904821]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1734.905872]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1734.906880]  ? find_held_lock+0x2c/0x110
04:57:44 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0)
syz_io_uring_setup(0x8b3, &(0x7f0000000540)={0x0, 0xa85f, 0x4, 0x2, 0x3d5}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000002c0), &(0x7f0000000340))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0104080100016a3ef2027c39"], 0x6)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000040)=@hopopts={0x0, 0x5, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @padn, @generic={0x3f, 0x27, "bfbaee49142b9384acc194db5e0212fa866035729354d71dcc1fec512f7773e70fb2d4781cc61c"}]}, 0x38)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae701d5ca00"})
sendto(0xffffffffffffffff, &(0x7f0000002a00)="c771001a7026f71f82b51832dc032ee2669e7bd344cf8d77396d9cd2898bb5262e5063a241ca87e42d37bf8c6855fce7dcae77a19648eea87319ff3adfccf096e61fb828d9ec361d1a7de11c0229b6fca65639877e68756fe6029236b3fd0ba1f804099c6906ae35c22f355113c03c76654bdda38e978929961d43180b4aa1cfaa0d75610ceb46dfb3b20bb5b768776c4de21987f52d733ec44e9f093a285a8ba47abecc1abbc82e2c6ae3f045f36b0a813b428505bb88584ac19d252c36afa75c424af72f768712b6b8293d5b15fff1f42f479099baeaf019f0bb850a1a", 0xde, 0x8804, &(0x7f0000002b00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x4, 0x1, 0x1, {0xa, 0x4e23, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0x6c}}}, 0x80)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB="080508988400014637b5e6a174b7b2b317b4044a94da343d08000000000000000665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d92659a6dc77d049d1d90bf956808d12c853d595ab5f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43db7e4116e6031e00"/146, @ANYRES16=r3, @ANYRES16], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000200)=0x1f)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

04:57:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

04:57:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000700000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1734.907728]  ? io_submit_sqes+0x8610/0x8610
[ 1734.908743]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1734.909773]  ? wait_for_completion_io+0x270/0x270
[ 1734.910780]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1734.911754]  ? vfs_write+0x354/0xb10
[ 1734.912530]  ? fput_many+0x2f/0x1a0
[ 1734.913305]  ? ksys_write+0x1a9/0x260
[ 1734.914102]  ? __ia32_sys_read+0xb0/0xb0
[ 1734.914943]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1734.916025]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1734.917098]  do_syscall_64+0x33/0x40
[ 1734.917866]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1734.918925] RIP: 0033:0x7f8f6841db19
[ 1734.919686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1734.923570] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1734.925209] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1734.926720] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1734.928243] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1734.929780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1734.931299] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:57:44 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1734.957606] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1735.015812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1735.017918] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1735.020765] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
04:58:01 executing program 7:
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x20044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0xd}, 0x0, 0x0, 0x3, 0x7, 0x1, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000005c0)='net/tcp\x00')
timerfd_settime(r1, 0x0, &(0x7f0000000000), &(0x7f0000000080))
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/class/pps', 0x82000, 0x26)
perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0xff, 0x5, 0x4, 0x3, 0x0, 0x10000, 0x84390, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000140)}, 0x1, 0x5, 0x3, 0x5, 0x0, 0xfffffe01, 0x401, 0x0, 0x1, 0x0, 0xffff}, 0x0, 0xb, r2, 0x1)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x480, 0x0)
r4 = syz_io_uring_setup(0x2586, &(0x7f0000000440)={0x0, 0x46ea, 0x2, 0x0, 0x36d, 0x0, r3}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f00000004c0), &(0x7f00000000c0))
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f00000014c0), 0x0)
perf_event_open(&(0x7f0000000540)={0xb1aa5740ebfc5ec7, 0x80, 0x4, 0x40, 0x8, 0x5, 0x0, 0x10000, 0x10d50, 0xc, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80000000, 0x0, @perf_config_ext={0x5, 0x5}, 0xa404, 0x40, 0x3e, 0x9, 0xd756, 0x6, 0xa25, 0x0, 0x2, 0x0, 0x1f}, 0x0, 0x1, r2, 0x18)
sendfile(r4, r0, &(0x7f0000000240)=0x3f, 0x7)
readv(r1, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1)
timerfd_gettime(r1, &(0x7f0000000200))
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
unshare(0x48020200)
memfd_create(&(0x7f00000003c0)='\x00\'\'x\xe0\x1c\x02\x00d\x88\xc4P\xb0\x01\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\xf9\n\x17`\xf1U\'\\\x14\t\xc2\xaa|\x81\x91=;h\xfeGm\xaf\x88\xf7\x01\xce\xdc.fjW\x8d\xf9\xbf\xd3\xf1\xa1\xa2\xb0\xcf\xbb|\xdfp\xd7sI\x8dyz\x1c\xb6\xe5\xb9Ta\xcf\xab\xc32\xd9\xaea\x80\xc6\x92', 0x6)
timerfd_gettime(0xffffffffffffffff, &(0x7f0000000680))
syz_io_uring_setup(0x2a86, &(0x7f0000000340)={0x0, 0x7b02, 0x10, 0x2, 0x285, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000500))
syz_io_uring_submit(r5, 0x0, &(0x7f0000000640)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x64}, 0xffffff01)

04:58:01 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:01 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:01 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

04:58:01 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:01 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = gettid()
process_vm_readv(r1, &(0x7f0000001a40), 0x0, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001f40)=""/169, 0xa9}, {&(0x7f0000001700)=""/231, 0xe7}, {&(0x7f0000001800)=""/8, 0x8}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/30, 0x1e}], 0x8, 0x0)
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001840), 0x1, 0x0)
kcmp(r1, r1, 0x2, r2, r0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f00000002c0)=""/201, 0xc9}, {&(0x7f00000003c0)=""/193, 0xc1}, {&(0x7f0000000100)=""/14, 0xe}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f00000014c0)=""/65, 0x41}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x7, &(0x7f0000001600)=[@cred={{0x1c, 0x1, 0x2, {<r3=>0x0}}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x78}, 0x40000103)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1b, 0x8, 0x6, 0x0, 0x0, 0x3, 0x4cadb640988a78aa, 0x12, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x401, 0x2, @perf_config_ext={0x1, 0x4}, 0x2800, 0xfffffffffffffffa, 0x4, 0x9, 0x26, 0x2, 0x6, 0x0, 0x5, 0x0, 0x9}, r3, 0x4, r4, 0x8)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000000)=""/41, 0x29, 0x3)
write$binfmt_script(r5, &(0x7f0000001680)={'#! ', './file0', [{0x20, '/dev/zero\x00'}, {0x20, '\x1e'}], 0xa, "e9b8dcc3f50ba7c8511ac932ba928198676cd3e2df69f4989c70b4ed1b5a727235c0e088398248ea7b5b4b5766dcddab95362cb4797726523f6e0501ffcfe1e908791be505282a3db19a4f8bc0ab8da5f5"}, 0x69)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000))
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r6, &(0x7f0000000100)=ANY=[], 0xfdef)
creat(&(0x7f0000000180)='./file0\x00', 0x1ea)
ftruncate(r6, 0x2)
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x1a1c01, 0x0)
setsockopt$inet_msfilter(r7, 0x0, 0x29, &(0x7f0000001540)=ANY=[@ANYBLOB="e0000002ac141429000000000600000000000000000000ef5c4b9bbcff704b3bcc13c54a35007f000001e00000010a010101"], 0x28)

04:58:01 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

04:58:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000800000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1751.432254] FAULT_INJECTION: forcing a failure.
[ 1751.432254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1751.434793] CPU: 1 PID: 9987 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1751.436243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1751.438019] Call Trace:
[ 1751.438582]  dump_stack+0x107/0x167
[ 1751.439354]  should_fail.cold+0x5/0xa
[ 1751.440174]  _copy_from_user+0x2e/0x1b0
[ 1751.441022]  iovec_from_user+0x141/0x400
[ 1751.441902]  __import_iovec+0x67/0x590
[ 1751.442724]  ? kfree+0xd7/0x340
[ 1751.443439]  io_import_iovec+0x581/0x1120
[ 1751.444321]  ? io_put_sq_data+0x80/0x250
[ 1751.445203]  ? io_complete_rw+0x230/0x230
[ 1751.446084]  ? io_clean_op+0x30c/0x870
[ 1751.446917]  ? kiocb_done+0x16b/0xc90
[ 1751.447725]  io_read+0xe14/0x11e0
[ 1751.448464]  ? __is_insn_slot_addr+0x14c/0x290
[ 1751.449456]  ? kernel_text_address+0xf2/0x120
[ 1751.450405]  ? unwind_get_return_address+0x55/0xa0
[ 1751.451441]  ? create_prof_cpu_mask+0x20/0x20
[ 1751.452390]  ? kiocb_done+0xc90/0xc90
[ 1751.453212]  ? mark_lock+0xf5/0x2df0
[ 1751.454005]  ? lock_chain_count+0x20/0x20
[ 1751.454878]  ? __lock_acquire+0xbb1/0x5b00
[ 1751.455813]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1751.456921]  ? SOFTIRQ_verbose+0x10/0x10
[ 1751.457789]  ? kasan_save_stack+0x1b/0x40
[ 1751.458678]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1751.459743]  ? __io_queue_sqe+0x666/0x9d0
[ 1751.460623]  ? __lock_acquire+0xbb1/0x5b00
[ 1751.461535]  io_issue_sqe+0x2e8a/0x77b0
[ 1751.462383]  ? perf_trace_lock+0xac/0x490
[ 1751.463259]  ? SOFTIRQ_verbose+0x10/0x10
[ 1751.464116]  ? io_connect+0x610/0x610
[ 1751.464927]  ? lock_acquire+0x197/0x470
[ 1751.465766]  ? find_held_lock+0x2c/0x110
[ 1751.466637]  ? __fget_files+0x2cf/0x520
[ 1751.467477]  ? lock_downgrade+0x6d0/0x6d0
[ 1751.468364]  __io_queue_sqe+0x90/0x9d0
[ 1751.469205]  ? io_issue_sqe+0x77b0/0x77b0
[ 1751.470080]  ? __fget_files+0x2f8/0x520
[ 1751.470922]  ? io_prep_rw+0x7f5/0x1050
[ 1751.471752]  io_submit_sqes+0x44aa/0x8610
[ 1751.472673]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1751.473726]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1751.474743]  ? find_held_lock+0x2c/0x110
[ 1751.475612]  ? io_submit_sqes+0x8610/0x8610
[ 1751.476530]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1751.477564]  ? wait_for_completion_io+0x270/0x270
[ 1751.478593]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1751.479581]  ? vfs_write+0x354/0xb10
[ 1751.480371]  ? fput_many+0x2f/0x1a0
[ 1751.481150]  ? ksys_write+0x1a9/0x260
[ 1751.481967]  ? __ia32_sys_read+0xb0/0xb0
[ 1751.482831]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1751.483933]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1751.485025]  do_syscall_64+0x33/0x40
[ 1751.485823]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1751.486905] RIP: 0033:0x7f8f6841db19
[ 1751.487687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1751.491558] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1751.493183] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1751.494690] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1751.496202] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1751.497718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1751.499226] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:01 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1751.511332] FAULT_INJECTION: forcing a failure.
[ 1751.511332] name failslab, interval 1, probability 0, space 0, times 0
[ 1751.513449] CPU: 0 PID: 9983 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1751.514673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1751.516166] Call Trace:
[ 1751.516640]  dump_stack+0x107/0x167
04:58:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20001800000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1751.517298]  should_fail.cold+0x5/0xa
[ 1751.518090]  ? create_object.isra.0+0x3a/0xa20
[ 1751.518910]  should_failslab+0x5/0x20
[ 1751.519584]  kmem_cache_alloc+0x5b/0x310
[ 1751.520318]  create_object.isra.0+0x3a/0xa20
[ 1751.521099]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1751.522000]  __kmalloc+0x16e/0x390
[ 1751.522638]  io_setup_async_rw+0x180/0x580
[ 1751.523380]  ? iov_iter_restore+0x195/0x3a0
[ 1751.524145]  io_read+0x775/0x11e0
[ 1751.524751]  ? __is_insn_slot_addr+0x14c/0x290
[ 1751.525573]  ? kernel_text_address+0xf2/0x120
[ 1751.526370]  ? unwind_get_return_address+0x55/0xa0
[ 1751.527225]  ? create_prof_cpu_mask+0x20/0x20
[ 1751.528010]  ? kiocb_done+0xc90/0xc90
[ 1751.528676]  ? mark_lock+0xf5/0x2df0
[ 1751.529347]  ? lock_chain_count+0x20/0x20
[ 1751.530083]  ? __lock_acquire+0xbb1/0x5b00
[ 1751.530838]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1751.531771]  ? SOFTIRQ_verbose+0x10/0x10
[ 1751.532476]  ? kasan_save_stack+0x1b/0x40
[ 1751.533203]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1751.534086]  ? __io_queue_sqe+0x666/0x9d0
[ 1751.534819]  ? __lock_acquire+0xbb1/0x5b00
[ 1751.535570]  io_issue_sqe+0x2e8a/0x77b0
[ 1751.536262]  ? perf_trace_lock+0xac/0x490
[ 1751.536989]  ? SOFTIRQ_verbose+0x10/0x10
[ 1751.537711]  ? io_connect+0x610/0x610
[ 1751.538380]  ? lock_acquire+0x197/0x470
[ 1751.539072]  ? find_held_lock+0x2c/0x110
[ 1751.539778]  ? __fget_files+0x2cf/0x520
[ 1751.540463]  ? lock_downgrade+0x6d0/0x6d0
[ 1751.541197]  __io_queue_sqe+0x90/0x9d0
[ 1751.541871]  ? io_issue_sqe+0x77b0/0x77b0
[ 1751.542583]  ? __fget_files+0x2f8/0x520
[ 1751.543275]  ? io_prep_rw+0x7f5/0x1050
[ 1751.543952]  io_submit_sqes+0x44aa/0x8610
[ 1751.544690]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1751.545563]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1751.546413]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1751.547317]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 1751.548090]  ? trace_hardirqs_on+0x5b/0x180
[ 1751.548857]  ? io_submit_sqes+0x8610/0x8610
[ 1751.549617]  ? _raw_spin_unlock_irq+0x1f/0x30
04:58:01 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1751.550393]  ? finish_task_switch+0x126/0x5d0
[ 1751.551234]  ? finish_task_switch+0xef/0x5d0
[ 1751.551995]  ? __switch_to+0x572/0xf70
[ 1751.552675]  ? __switch_to_asm+0x3a/0x60
[ 1751.553390]  ? __switch_to_asm+0x34/0x60
[ 1751.554108]  ? __schedule+0x82c/0x1ea0
[ 1751.554789]  ? io_schedule_timeout+0x140/0x140
[ 1751.555583]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 1751.556369]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 1751.557313]  ? ksys_write+0x1a9/0x260
[ 1751.557981]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1751.558883]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1751.559770]  do_syscall_64+0x33/0x40
[ 1751.560429]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1751.561324] RIP: 0033:0x7f93ba828b19
[ 1751.561961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1751.565129] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1751.566433] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1751.567666] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1751.568895] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1751.570120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1751.571349] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:58:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20001c00000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:01 executing program 5:
r0 = inotify_init1(0x0)
syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
inotify_add_watch(r1, &(0x7f0000000140)='./file0\x00', 0x128)
syz_mount_image$nfs4(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0)
creat(&(0x7f0000000200)='./file0/file0\x00', 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000000))
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$nl_generic(r2, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x600000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x140, 0x38, 0x2, 0x70bd29, 0x25dfdbfb, {0x16}, [@typed={0x8, 0x52, 0x0, 0x0, @fd=r1}, @generic="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", @typed={0x14, 0x4f, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @nested={0x14, 0x16, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @pid}, @typed={0x8, 0x93, 0x0, 0x0, @ipv4=@private=0xa010102}]}]}, 0x140}}, 0x24008080)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
r4 = accept4$unix(r3, 0x0, &(0x7f0000000440), 0x80000)
accept$unix(r4, &(0x7f0000000180), &(0x7f0000000080)=0x6e)

04:58:01 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20006500000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:16 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:16 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:16 executing program 7:
r0 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, r2, 0x1, 0x0, 0x0, {0xb}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r5=>0x0})
sendmmsg$inet6(r3, &(0x7f0000004600)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000002500)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r5}}}], 0x28}}], 0x1, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r8=>0x0})
sendmmsg$inet6(r6, &(0x7f0000004600)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000002500)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r8}}}], 0x28}}], 0x1, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x64, r2, 0x201, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8001}, 0x20044004)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r9, &(0x7f0000000000)=""/41, 0x29, 0x3)
accept4$inet6(r9, &(0x7f0000000080)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000300)=0x1c, 0x80000)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r10 = getpid()
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x1, 0x5, 0xa2, 0x0, 0x3, 0x601c, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x6, @perf_config_ext={0x7fffffff, 0x80}, 0x1040, 0x7, 0x10001, 0x2, 0x2, 0x9, 0x7, 0x0, 0x9, 0x0, 0x47a}, r10, 0xc, 0xffffffffffffffff, 0x8)

04:58:16 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:16 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

04:58:16 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

04:58:16 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x1, 0x0)

[ 1766.345600] FAULT_INJECTION: forcing a failure.
[ 1766.345600] name failslab, interval 1, probability 0, space 0, times 0
[ 1766.347374] CPU: 0 PID: 10022 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1766.348418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.349681] Call Trace:
[ 1766.350084]  dump_stack+0x107/0x167
[ 1766.350643]  should_fail.cold+0x5/0xa
[ 1766.351223]  ? __io_queue_sqe+0x666/0x9d0
[ 1766.351856]  should_failslab+0x5/0x20
[ 1766.352437]  kmem_cache_alloc_trace+0x55/0x320
[ 1766.353127]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.353770]  __io_queue_sqe+0x666/0x9d0
[ 1766.354381]  ? io_issue_sqe+0x77b0/0x77b0
[ 1766.355020]  ? __fget_files+0x2f8/0x520
[ 1766.355625]  ? io_prep_rw+0x7f5/0x1050
[ 1766.356219]  io_submit_sqes+0x44aa/0x8610
[ 1766.356871]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.357632]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.358364]  ? find_held_lock+0x2c/0x110
[ 1766.358980]  ? io_submit_sqes+0x8610/0x8610
[ 1766.359636]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.360363]  ? wait_for_completion_io+0x270/0x270
[ 1766.361097]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.361820]  ? vfs_write+0x354/0xb10
[ 1766.362385]  ? fput_many+0x2f/0x1a0
[ 1766.362928]  ? ksys_write+0x1a9/0x260
[ 1766.363498]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.364110]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.364893]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.365684]  do_syscall_64+0x33/0x40
[ 1766.366252]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.367026] RIP: 0033:0x7f93ba828b19
[ 1766.367586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.370365] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1766.371510] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1766.372579] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1766.373660] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.374729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.375794] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1766.381274] FAULT_INJECTION: forcing a failure.
[ 1766.381274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1766.383055] CPU: 0 PID: 10028 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1766.384101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.385349] Call Trace:
[ 1766.385759]  dump_stack+0x107/0x167
[ 1766.386309]  should_fail.cold+0x5/0xa
[ 1766.386885]  _copy_to_iter+0x264/0x12d0
[ 1766.387499]  ? seq_read_iter+0xd4d/0x12b0
[ 1766.388130]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 1766.388871]  ? __virt_addr_valid+0x170/0x5d0
[ 1766.389560]  ? __check_object_size+0x319/0x440
[ 1766.390265]  seq_read_iter+0xdcb/0x12b0
[ 1766.390877]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 1766.391652]  proc_reg_read_iter+0x20a/0x2e0
[ 1766.392307]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 1766.393081]  io_read+0x2dc/0x11e0
[ 1766.393612]  ? __is_insn_slot_addr+0x14c/0x290
[ 1766.394307]  ? kernel_text_address+0xf2/0x120
[ 1766.394992]  ? unwind_get_return_address+0x55/0xa0
[ 1766.395731]  ? create_prof_cpu_mask+0x20/0x20
[ 1766.396407]  ? kiocb_done+0xc90/0xc90
[ 1766.396983]  ? mark_lock+0xf5/0x2df0
[ 1766.397556]  ? lock_chain_count+0x20/0x20
[ 1766.398177]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.398826]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.399614]  ? SOFTIRQ_verbose+0x10/0x10
[ 1766.400222]  ? kasan_save_stack+0x1b/0x40
[ 1766.400847]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1766.401618]  ? __io_queue_sqe+0x666/0x9d0
[ 1766.402241]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.402883]  io_issue_sqe+0x2e8a/0x77b0
[ 1766.403489]  ? perf_trace_lock+0xac/0x490
[ 1766.404107]  ? SOFTIRQ_verbose+0x10/0x10
[ 1766.404721]  ? io_connect+0x610/0x610
[ 1766.405302]  ? lock_acquire+0x197/0x470
[ 1766.405897]  ? find_held_lock+0x2c/0x110
[ 1766.406517]  ? __fget_files+0x2cf/0x520
[ 1766.407117]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.407740]  __io_queue_sqe+0x90/0x9d0
[ 1766.408340]  ? io_issue_sqe+0x77b0/0x77b0
[ 1766.408964]  ? __fget_files+0x2f8/0x520
[ 1766.409572]  ? io_prep_rw+0x7f5/0x1050
[ 1766.410168]  io_submit_sqes+0x44aa/0x8610
[ 1766.410816]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.411563]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.412294]  ? find_held_lock+0x2c/0x110
[ 1766.412909]  ? io_submit_sqes+0x8610/0x8610
[ 1766.413573]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.414298]  ? wait_for_completion_io+0x270/0x270
[ 1766.415031]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.415730]  ? vfs_write+0x354/0xb10
[ 1766.416293]  ? fput_many+0x2f/0x1a0
[ 1766.416844]  ? ksys_write+0x1a9/0x260
[ 1766.417430]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.418045]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.418839]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.419620]  do_syscall_64+0x33/0x40
[ 1766.420175]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.420945] RIP: 0033:0x7f8f6841db19
[ 1766.421514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.424277] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1766.425429] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1766.426503] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1766.427581] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.428705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.429789] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000f000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:16 executing program 5:
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
sigaltstack(&(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sigaltstack(&(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000000))
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00')
readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xe8b82, 0x0)
syz_io_uring_complete(0x0)
r1 = epoll_create(0x1)
signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0)
r2 = accept4$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed}, &(0x7f00000001c0)=0xe, 0x80000)
syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0xcf11, 0x10, 0x400, 0xa0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000240))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="8f4275dc430600000f00740000009700000000000000000000e1b6bceecf570f141854a98dcc3f8bd7c0722d0dc86299244095c27ab1727387e490578b77f649ae4574ad2ec69cf1cccb755bf23b61f613fca822772ca2f555fe3c85ff587a59b3874403d587440608b77d5b7138552efc41a7b08641de2873e8653dd16c210009", @ANYRES32=r2, @ANYRES64=r0])
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xa0000003})
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000400)={&(0x7f0000001700)=""/105, 0x69, 0xffffffc1, 0x3ff})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000180)=0x800, 0x2, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
wait4(0x0, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='task\x00')

04:58:16 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:16 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

04:58:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000003000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1766.588816] FAULT_INJECTION: forcing a failure.
[ 1766.588816] name failslab, interval 1, probability 0, space 0, times 0
[ 1766.590568] CPU: 0 PID: 10045 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1766.591610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.592856] Call Trace:
[ 1766.593266]  dump_stack+0x107/0x167
[ 1766.593817]  should_fail.cold+0x5/0xa
[ 1766.594392]  ? create_object.isra.0+0x3a/0xa20
[ 1766.595086]  should_failslab+0x5/0x20
[ 1766.595663]  kmem_cache_alloc+0x5b/0x310
[ 1766.596289]  create_object.isra.0+0x3a/0xa20
[ 1766.596945]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1766.597717]  kmem_cache_alloc_trace+0x151/0x320
[ 1766.598425]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.599059]  __io_queue_sqe+0x666/0x9d0
[ 1766.599660]  ? io_issue_sqe+0x77b0/0x77b0
[ 1766.600282]  ? __fget_files+0x2f8/0x520
[ 1766.600889]  ? io_prep_rw+0x7f5/0x1050
[ 1766.601490]  io_submit_sqes+0x44aa/0x8610
[ 1766.602141]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.602889]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.603612]  ? find_held_lock+0x2c/0x110
[ 1766.604226]  ? io_submit_sqes+0x8610/0x8610
[ 1766.604883]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.605618]  ? wait_for_completion_io+0x270/0x270
[ 1766.606344]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.607043]  ? vfs_write+0x354/0xb10
[ 1766.607602]  ? fput_many+0x2f/0x1a0
[ 1766.608150]  ? ksys_write+0x1a9/0x260
[ 1766.608729]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.609353]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.610139]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.610922]  do_syscall_64+0x33/0x40
[ 1766.611484]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.612251] RIP: 0033:0x7f93ba828b19
[ 1766.612804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.615588] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1766.616730] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1766.617811] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1766.618884] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.619955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.621025] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:58:16 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

04:58:16 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1766.691315] FAULT_INJECTION: forcing a failure.
[ 1766.691315] name failslab, interval 1, probability 0, space 0, times 0
[ 1766.693814] CPU: 1 PID: 10051 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1766.695307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.697095] Call Trace:
[ 1766.697677]  dump_stack+0x107/0x167
[ 1766.698465]  should_fail.cold+0x5/0xa
[ 1766.699287]  ? io_setup_async_rw+0x180/0x580
[ 1766.700237]  should_failslab+0x5/0x20
[ 1766.701055]  __kmalloc+0x72/0x390
[ 1766.701817]  io_setup_async_rw+0x180/0x580
[ 1766.702726]  ? iov_iter_restore+0x195/0x3a0
[ 1766.703657]  io_read+0x775/0x11e0
[ 1766.704408]  ? __is_insn_slot_addr+0x14c/0x290
[ 1766.705409]  ? kernel_text_address+0xf2/0x120
[ 1766.706380]  ? unwind_get_return_address+0x55/0xa0
[ 1766.707440]  ? create_prof_cpu_mask+0x20/0x20
[ 1766.708406]  ? kiocb_done+0xc90/0xc90
[ 1766.709240]  ? mark_lock+0xf5/0x2df0
[ 1766.710053]  ? lock_chain_count+0x20/0x20
[ 1766.710944]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.711881]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1766.713009]  ? SOFTIRQ_verbose+0x10/0x10
[ 1766.713887]  ? kasan_save_stack+0x1b/0x40
[ 1766.714782]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1766.715870]  ? __io_queue_sqe+0x666/0x9d0
[ 1766.716776]  ? __lock_acquire+0xbb1/0x5b00
[ 1766.717712]  io_issue_sqe+0x2e8a/0x77b0
[ 1766.718579]  ? perf_trace_lock+0xac/0x490
[ 1766.719469]  ? SOFTIRQ_verbose+0x10/0x10
[ 1766.720353]  ? io_connect+0x610/0x610
[ 1766.721183]  ? lock_acquire+0x197/0x470
[ 1766.722044]  ? find_held_lock+0x2c/0x110
[ 1766.722926]  ? __fget_files+0x2cf/0x520
[ 1766.723784]  ? lock_downgrade+0x6d0/0x6d0
[ 1766.724686]  __io_queue_sqe+0x90/0x9d0
[ 1766.725538]  ? io_issue_sqe+0x77b0/0x77b0
[ 1766.726428]  ? __fget_files+0x2f8/0x520
[ 1766.727296]  ? io_prep_rw+0x7f5/0x1050
[ 1766.728143]  io_submit_sqes+0x44aa/0x8610
[ 1766.729075]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.730152]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1766.731196]  ? find_held_lock+0x2c/0x110
[ 1766.732078]  ? io_submit_sqes+0x8610/0x8610
[ 1766.733018]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1766.734078]  ? wait_for_completion_io+0x270/0x270
[ 1766.735122]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1766.736123]  ? vfs_write+0x354/0xb10
[ 1766.736931]  ? fput_many+0x2f/0x1a0
[ 1766.737725]  ? ksys_write+0x1a9/0x260
[ 1766.738550]  ? __ia32_sys_read+0xb0/0xb0
[ 1766.739432]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1766.740560]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1766.741684]  do_syscall_64+0x33/0x40
[ 1766.742486]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1766.743590] RIP: 0033:0x7f8f6841db19
[ 1766.744392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1766.748361] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1766.750011] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1766.751553] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1766.753094] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1766.754635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1766.756176] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:31 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

04:58:31 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20008004000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:31 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:31 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

04:58:31 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xa0, 0x26, 0x101, 0x0, 0x0, {}, [@typed={0x8a, 0x63, 0x0, 0x0, @binary="a0eab51f24f4074cfbfbbb07324cc62f701d9f2905855dd18b1f0d5ce7f3493090af5beef11c281fbcc10f4675223ffc29811a6d82c0c17acd7a40480a51d57b2b3cc217bf3558b4d61924aa0922349a895d495ac12b16cb2b0cb00a0c3d1fb5b695cfebd4ad94d1a5642d3ec010c0792e9f8a9bff9bc38d6a5f4c42eb9238b7bc3a2be2cefb"}]}, 0xa0}, 0x1, 0x0, 0x0, 0xb0}, 0x8044)
ptrace$setopts(0x4206, 0x0, 0x10001, 0x10002d)
ptrace(0x10, 0x0)
r1 = getpid()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0xc0, 0x2, 0x0, 0x8, 0x0, 0x4, 0x1800, 0xd, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_config_ext={0x81, 0x3}, 0x3000, 0x1, 0x9, 0x4, 0xfffffffffffffff8, 0x8, 0x7, 0x0, 0x401, 0x0, 0xdb0}, r1, 0x4, r2, 0x8)
ptrace(0x10, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ptrace$cont(0x7, 0x0, 0x8, 0x0)

04:58:31 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
r4 = dup(r3)
openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/diskstats\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001100)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x0, &(0x7f0000001080)={0x0, 0x3938700}}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000140)='./file0\x00', 0x18}, 0x0)
openat(0xffffffffffffffff, 0x0, 0x101040, 0x49)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x80000001)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r4, 0x6da8, 0xbd7e, 0x0, &(0x7f0000000080)={[0x9]}, 0x8)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000380)={"b3441533d1f9b13c0188d7bc4e941b08", 0x0, <r7=>0x0, {0x80, 0x4}, {0xd3, 0xb70}, 0x8001, [0x1ff, 0x1, 0x9, 0x5, 0x2, 0x91, 0xffff, 0x0, 0x9, 0x46b, 0xfffffffffffffc01, 0x3ff, 0x8, 0x800, 0x3e]})
r8 = syz_open_dev$sg(0x0, 0x0, 0x2001)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000dc0)={0x0, 0x0, {0x0, @usage, <r9=>0x0}, {0x0, @struct}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r8, 0xc400941d, &(0x7f00000008c0)={r9, 0x5, 0x80000001})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001140)={{r6}, r7, 0x12, @unused=[0x7, 0x6, 0xb86c, 0x11a], @devid=r9})

04:58:31 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:31 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1781.998451] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1782.022193] FAULT_INJECTION: forcing a failure.
[ 1782.022193] name failslab, interval 1, probability 0, space 0, times 0
[ 1782.023992] CPU: 0 PID: 10063 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1782.025039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1782.026360] Call Trace:
[ 1782.026769]  dump_stack+0x107/0x167
[ 1782.027327]  should_fail.cold+0x5/0xa
[ 1782.027908]  ? create_object.isra.0+0x3a/0xa20
[ 1782.028605]  should_failslab+0x5/0x20
[ 1782.029206]  kmem_cache_alloc+0x5b/0x310
[ 1782.029979]  create_object.isra.0+0x3a/0xa20
[ 1782.030666]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1782.031599]  __kmalloc+0x16e/0x390
[ 1782.032252]  io_setup_async_rw+0x180/0x580
[ 1782.033026]  ? iov_iter_restore+0x195/0x3a0
[ 1782.033834]  io_read+0x775/0x11e0
[ 1782.034146] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1782.034477]  ? __is_insn_slot_addr+0x14c/0x290
[ 1782.037246]  ? kernel_text_address+0xf2/0x120
[ 1782.038070]  ? unwind_get_return_address+0x55/0xa0
[ 1782.038957]  ? create_prof_cpu_mask+0x20/0x20
[ 1782.039632] FAULT_INJECTION: forcing a failure.
[ 1782.039632] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1782.039780]  ? kiocb_done+0xc90/0xc90
[ 1782.042973]  ? mark_lock+0xf5/0x2df0
[ 1782.043650]  ? lock_chain_count+0x20/0x20
[ 1782.044400]  ? __lock_acquire+0xbb1/0x5b00
[ 1782.045174]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1782.046132]  ? SOFTIRQ_verbose+0x10/0x10
[ 1782.046860]  ? kasan_save_stack+0x1b/0x40
[ 1782.047601]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1782.048517]  ? __io_queue_sqe+0x666/0x9d0
[ 1782.049278]  ? __lock_acquire+0xbb1/0x5b00
[ 1782.049921]  io_issue_sqe+0x2e8a/0x77b0
[ 1782.050648]  ? perf_trace_lock+0xac/0x490
[ 1782.051400]  ? SOFTIRQ_verbose+0x10/0x10
[ 1782.052144]  ? io_connect+0x610/0x610
[ 1782.052837]  ? lock_acquire+0x197/0x470
[ 1782.053567]  ? find_held_lock+0x2c/0x110
[ 1782.054302]  ? __fget_files+0x2cf/0x520
[ 1782.055022]  ? lock_downgrade+0x6d0/0x6d0
[ 1782.055768]  __io_queue_sqe+0x90/0x9d0
[ 1782.056479]  ? io_issue_sqe+0x77b0/0x77b0
[ 1782.057220]  ? __fget_files+0x2f8/0x520
[ 1782.057876]  ? io_prep_rw+0x7f5/0x1050
[ 1782.058584]  io_submit_sqes+0x44aa/0x8610
[ 1782.059365]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.060266]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.061142]  ? find_held_lock+0x2c/0x110
[ 1782.061888]  ? io_submit_sqes+0x8610/0x8610
[ 1782.062679]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1782.063547]  ? wait_for_completion_io+0x270/0x270
[ 1782.064413]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1782.065250]  ? vfs_write+0x354/0xb10
[ 1782.065937]  ? fput_many+0x2f/0x1a0
[ 1782.066587]  ? ksys_write+0x1a9/0x260
[ 1782.067213]  ? __ia32_sys_read+0xb0/0xb0
[ 1782.067947]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1782.068898]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1782.069833]  do_syscall_64+0x33/0x40
[ 1782.070516]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1782.071442] RIP: 0033:0x7f8f6841db19
[ 1782.072114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1782.075435] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1782.076803] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1782.078096] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1782.079376] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1782.080665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1782.081954] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1782.083276] CPU: 1 PID: 10074 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1782.084819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1782.086780] Call Trace:
[ 1782.087523]  dump_stack+0x107/0x167
[ 1782.088308]  should_fail.cold+0x5/0xa
[ 1782.089164]  _copy_from_user+0x2e/0x1b0
[ 1782.090063]  iovec_from_user+0x141/0x400
[ 1782.091032]  __import_iovec+0x67/0x590
[ 1782.091887]  ? kfree+0xd7/0x340
[ 1782.092621]  io_import_iovec+0x581/0x1120
[ 1782.093556]  ? io_put_sq_data+0x80/0x250
[ 1782.094455]  ? io_complete_rw+0x230/0x230
[ 1782.095344]  ? io_clean_op+0x30c/0x870
[ 1782.096191]  ? kiocb_done+0x16b/0xc90
[ 1782.097027]  io_read+0xe14/0x11e0
[ 1782.097807]  ? __is_insn_slot_addr+0x14c/0x290
[ 1782.098806]  ? kernel_text_address+0xf2/0x120
[ 1782.099777]  ? unwind_get_return_address+0x55/0xa0
[ 1782.100833]  ? create_prof_cpu_mask+0x20/0x20
[ 1782.101830]  ? kiocb_done+0xc90/0xc90
[ 1782.102655]  ? mark_lock+0xf5/0x2df0
[ 1782.103469]  ? lock_chain_count+0x20/0x20
[ 1782.104359]  ? __lock_acquire+0xbb1/0x5b00
[ 1782.105289]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1782.106463]  ? SOFTIRQ_verbose+0x10/0x10
[ 1782.107337]  ? kasan_save_stack+0x1b/0x40
[ 1782.108231]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1782.109333]  ? __io_queue_sqe+0x666/0x9d0
[ 1782.110249]  ? __lock_acquire+0xbb1/0x5b00
[ 1782.111187]  io_issue_sqe+0x2e8a/0x77b0
[ 1782.112066]  ? perf_trace_lock+0xac/0x490
[ 1782.112966]  ? SOFTIRQ_verbose+0x10/0x10
[ 1782.113861]  ? io_connect+0x610/0x610
[ 1782.114788]  ? lock_acquire+0x197/0x470
[ 1782.115858]  ? find_held_lock+0x2c/0x110
[ 1782.116845]  ? __fget_files+0x2cf/0x520
[ 1782.117778]  ? lock_downgrade+0x6d0/0x6d0
[ 1782.118682]  __io_queue_sqe+0x90/0x9d0
[ 1782.119532]  ? io_issue_sqe+0x77b0/0x77b0
[ 1782.120421]  ? __fget_files+0x2f8/0x520
[ 1782.121270]  ? io_prep_rw+0x7f5/0x1050
[ 1782.122156]  io_submit_sqes+0x44aa/0x8610
[ 1782.123142]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.124214]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.125264]  ? find_held_lock+0x2c/0x110
[ 1782.126176]  ? io_submit_sqes+0x8610/0x8610
[ 1782.127112]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1782.128153]  ? wait_for_completion_io+0x270/0x270
[ 1782.129191]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1782.130211]  ? vfs_write+0x354/0xb10
[ 1782.131020]  ? fput_many+0x2f/0x1a0
[ 1782.131800]  ? ksys_write+0x1a9/0x260
[ 1782.132623]  ? __ia32_sys_read+0xb0/0xb0
[ 1782.133542]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1782.134678]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1782.135797]  do_syscall_64+0x33/0x40
[ 1782.136605]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1782.137727] RIP: 0033:0x7f93ba828b19
[ 1782.138529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1782.142491] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1782.144144] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1782.145706] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1782.147240] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1782.148791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1782.150343] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:58:32 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000005000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:32 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:32 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
renameat(r1, &(0x7f0000000080)='./mnt\x00', r1, &(0x7f00000001c0)='./mnt\x00')
mmap$perf(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000004, 0x4010, r1, 0xf9)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x8004)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r3 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x8923, &(0x7f0000000000)={'sit0\x00', 0x0})
syz_io_uring_setup(0x446f, &(0x7f0000000040)={0x0, 0x1969, 0x10, 0x2, 0x0, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, &(0x7f0000000540))

04:58:32 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:32 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

04:58:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000006000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1782.428732] FAULT_INJECTION: forcing a failure.
[ 1782.428732] name failslab, interval 1, probability 0, space 0, times 0
[ 1782.431920] CPU: 1 PID: 10097 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1782.433421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1782.435210] Call Trace:
[ 1782.435781]  dump_stack+0x107/0x167
[ 1782.436569]  should_fail.cold+0x5/0xa
[ 1782.437406]  ? __io_queue_sqe+0x666/0x9d0
[ 1782.438303]  should_failslab+0x5/0x20
[ 1782.439121]  kmem_cache_alloc_trace+0x55/0x320
[ 1782.440103]  ? lock_downgrade+0x6d0/0x6d0
[ 1782.441002]  __io_queue_sqe+0x666/0x9d0
[ 1782.441885]  ? io_issue_sqe+0x77b0/0x77b0
[ 1782.442776]  ? __fget_files+0x2f8/0x520
[ 1782.443639]  ? io_prep_rw+0x7f5/0x1050
[ 1782.444485]  io_submit_sqes+0x44aa/0x8610
[ 1782.445431]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.446504]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1782.447542]  ? find_held_lock+0x2c/0x110
[ 1782.448428]  ? io_submit_sqes+0x8610/0x8610
[ 1782.449364]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1782.450414]  ? wait_for_completion_io+0x270/0x270
[ 1782.451454]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1782.452449]  ? vfs_write+0x354/0xb10
[ 1782.453255]  ? fput_many+0x2f/0x1a0
[ 1782.454032]  ? ksys_write+0x1a9/0x260
[ 1782.454853]  ? __ia32_sys_read+0xb0/0xb0
[ 1782.455737]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1782.456868]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1782.457991]  do_syscall_64+0x33/0x40
[ 1782.458792]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1782.459895] RIP: 0033:0x7f93ba828b19
[ 1782.460696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1782.464660] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1782.466306] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1782.467843] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1782.469381] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1782.470924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1782.472466] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:58:46 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0)
close_range(r1, r0, 0x0)
r2 = perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0xff, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = openat$incfs(0xffffffffffffffff, &(0x7f0000000600)='.pending_reads\x00', 0x400082, 0x151)
ioctl$PIO_UNIMAP(r4, 0x4b67, &(0x7f0000000680)={0x2, &(0x7f0000000640)=[{0x4, 0x6}, {0x4, 0xffff}]})
add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bd59ea9d309472fdafad9501", @ANYRESOCT], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20040000)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {<r6=>r1}}, './file0\x00'})
ioctl$KIOCSOUND(r6, 0x4b2f, 0xff)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$setflags(0xffffffffffffffff, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r7=>r6}, './file0\x00'})
fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f0000000500)=0x7)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYBLOB="3c00000059e4b3400649cfd70da1ff5f6c6f35945284882b9f6dd11e1d0b3dd555521e04cd4c2910b798f1e6e5f9769ba9f9271915f0955fda5ab704df2e6975b2f6ea0f15e8311c726ccec223d743baee592f0abf2490dbfd8d8e99adb194ef01eaa5ff4d20d7e35c2ba9cf", @ANYRES16=r2, @ANYRESOCT], 0x3c}, 0x1, 0x0, 0x0, 0x870}, 0x240049c1)
unshare(0x48020200)

04:58:46 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:46 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

04:58:46 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000007000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:46 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:46 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)

04:58:46 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x2f)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
ioctl$DVD_READ_STRUCT(r2, 0x5390, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="00080000ab2809bc894a257cc150edde66b26ef6ad6ca8e4d4e2", @ANYRES16=0x0, @ANYBLOB="020029bd7000fedbdf25020000000800020004000000"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x84)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r1, 0x1}, 0x14}}, 0x0)

04:58:46 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1797.088124] FAULT_INJECTION: forcing a failure.
[ 1797.088124] name failslab, interval 1, probability 0, space 0, times 0
[ 1797.088703] FAULT_INJECTION: forcing a failure.
[ 1797.088703] name failslab, interval 1, probability 0, space 0, times 0
[ 1797.089750] CPU: 1 PID: 10116 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1797.093188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1797.094358] Call Trace:
[ 1797.094735]  dump_stack+0x107/0x167
[ 1797.095242]  should_fail.cold+0x5/0xa
[ 1797.095775]  ? io_setup_async_rw+0x180/0x580
[ 1797.096387]  should_failslab+0x5/0x20
[ 1797.096917]  __kmalloc+0x72/0x390
[ 1797.097405]  io_setup_async_rw+0x180/0x580
[ 1797.098008]  ? iov_iter_restore+0x195/0x3a0
[ 1797.098611]  io_read+0x775/0x11e0
[ 1797.099104]  ? __is_insn_slot_addr+0x14c/0x290
[ 1797.099744]  ? kernel_text_address+0xf2/0x120
[ 1797.100375]  ? unwind_get_return_address+0x55/0xa0
[ 1797.101055]  ? create_prof_cpu_mask+0x20/0x20
[ 1797.101689]  ? kiocb_done+0xc90/0xc90
[ 1797.102237]  ? mark_lock+0xf5/0x2df0
[ 1797.102763]  ? lock_chain_count+0x20/0x20
[ 1797.103337]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.103941]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1797.104669]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.105234]  ? kasan_save_stack+0x1b/0x40
[ 1797.105818]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1797.106540]  ? __io_queue_sqe+0x666/0x9d0
[ 1797.107122]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.107712]  io_issue_sqe+0x2e8a/0x77b0
[ 1797.108278]  ? perf_trace_lock+0xac/0x490
[ 1797.108850]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.109421]  ? io_connect+0x610/0x610
[ 1797.109967]  ? lock_acquire+0x197/0x470
[ 1797.110520]  ? find_held_lock+0x2c/0x110
[ 1797.111097]  ? __fget_files+0x2cf/0x520
[ 1797.111652]  ? lock_downgrade+0x6d0/0x6d0
[ 1797.112234]  __io_queue_sqe+0x90/0x9d0
[ 1797.112779]  ? io_issue_sqe+0x77b0/0x77b0
[ 1797.113354]  ? __fget_files+0x2f8/0x520
[ 1797.113938]  ? io_prep_rw+0x7f5/0x1050
[ 1797.114487]  io_submit_sqes+0x44aa/0x8610
[ 1797.115093]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.115782]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.116458]  ? find_held_lock+0x2c/0x110
[ 1797.117030]  ? io_submit_sqes+0x8610/0x8610
[ 1797.117683]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1797.118367]  ? wait_for_completion_io+0x270/0x270
[ 1797.119037]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1797.119686]  ? vfs_write+0x354/0xb10
[ 1797.120207]  ? fput_many+0x2f/0x1a0
[ 1797.120720]  ? ksys_write+0x1a9/0x260
[ 1797.121250]  ? __ia32_sys_read+0xb0/0xb0
[ 1797.121833]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1797.122561]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1797.123286]  do_syscall_64+0x33/0x40
[ 1797.123806]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1797.124526] RIP: 0033:0x7f93ba828b19
[ 1797.125047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1797.127618] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1797.128681] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1797.129708] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1797.130704] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.131700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1797.132693] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1797.133727] CPU: 0 PID: 10110 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1797.135306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1797.137194] Call Trace:
[ 1797.137819]  dump_stack+0x107/0x167
[ 1797.138655]  should_fail.cold+0x5/0xa
[ 1797.139528]  ? __io_queue_sqe+0x666/0x9d0
[ 1797.140468]  should_failslab+0x5/0x20
[ 1797.141327]  kmem_cache_alloc_trace+0x55/0x320
[ 1797.142368]  ? lock_downgrade+0x6d0/0x6d0
[ 1797.143309]  __io_queue_sqe+0x666/0x9d0
[ 1797.144220]  ? io_issue_sqe+0x77b0/0x77b0
[ 1797.145152]  ? __fget_files+0x2f8/0x520
[ 1797.146065]  ? io_prep_rw+0x7f5/0x1050
[ 1797.146955]  io_submit_sqes+0x44aa/0x8610
[ 1797.147930]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.149050]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.150150]  ? find_held_lock+0x2c/0x110
[ 1797.151075]  ? io_submit_sqes+0x8610/0x8610
[ 1797.152059]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1797.153149]  ? wait_for_completion_io+0x270/0x270
[ 1797.154249]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1797.155293]  ? vfs_write+0x354/0xb10
[ 1797.156137]  ? fput_many+0x2f/0x1a0
[ 1797.156965]  ? ksys_write+0x1a9/0x260
[ 1797.157837]  ? __ia32_sys_read+0xb0/0xb0
[ 1797.158758]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1797.159940]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1797.161114]  do_syscall_64+0x33/0x40
[ 1797.161964]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1797.163117] RIP: 0033:0x7f8f6841db19
[ 1797.163955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1797.168097] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1797.169819] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1797.171444] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1797.173049] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.174663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1797.176280] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20007c0a000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:47 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1797.224445] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
04:58:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000018000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:47 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
statx(r1, &(0x7f0000000040)='./file1\x00', 0x400, 0x400, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000140)={0xffffffffffffffff, r2}, 0xc)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000007780)={0x0, 0x0, 0x0}, 0x20000000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r4 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
syz_io_uring_submit(0x0, r6, &(0x7f00000000c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0xfffffffc)
syz_io_uring_submit(0x0, r6, &(0x7f0000000300)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, {}, 0x1}, 0x93)

04:58:47 executing program 7:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0x2, &(0x7f0000000300)=[{0x0, 0x0, 0x9}, {&(0x7f00000000c0)}])
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x8, 0x7, &(0x7f0000001580)=[{&(0x7f0000000140)="fc546d59e66b0eef2ac1c0f37eff937173837e7f9e0bd2b9744e069e3924399d23", 0x21, 0x80000000}, {&(0x7f00000003c0)="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", 0x1000, 0x1}, {&(0x7f0000000180)="c7eb44", 0x3, 0x4}, {&(0x7f00000013c0)="be521daea3c7a459d13f16f539ff2ab5b2c25a3243ae375a445f8bc34fccc726d8ffff128c993c560d9be73b0cc85ebd6f71ae659346c876c60c1a0a8b7d444afbb32fe3c9a4c5a0604bf24d792ef573221354395bad7267f574fb70cf9a0e845ce75ca494c36d966c113ca4905ca70dc7175e6505ac98029ecc1c939cca7823da490caa838c1992ffe8c9011932b18d105d966d68debcf8b24540658ad6637a6e5009ae70", 0xa5, 0x6}, {&(0x7f00000001c0), 0x0, 0x800}, {&(0x7f0000001480)="ccae8ef67199ccb8ea3f6583c90ee8443d8d0af5cecd335846fba75af4db87171fab77aa96b97c9acf58816689490584875a51bdab5b347bce633c21c2351da0779333f9d324d4a44dc22a05275ddcb8abaeb28f5fc20d64e4897a0520d4743aa960c4dc985966154305fa57d27bb45073748deacabf2df9e92281b9f654c62bb202f9c929ba081389a7383a6d90c17036c07626107a54bb805bf484215e8cb90a9c8c5a1b862c46d87fef6608dbec97ccd718aeb8f620e373a2368535e7250cda604dbdcedb6b887a9543fe6b06ea9549dfeaea9b15554703c630c09600c8ce8d7a540937", 0xe5, 0xfff}, {&(0x7f0000000280)="b452800ceba8ffb57580ad5c91c687caddc948a889cf8ef28cabaa161f55736b60acb21c5b277c0e386627e832e290e5d9035f003afdc68cb4bd7474f633b4ed1b5507203e76887e4cfb65d9d0ae2fdd", 0x50, 0x1}], 0x4000, &(0x7f0000000200)={[{@map_acorn}], [{@dont_appraise}, {@subj_role}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]})
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7, 0x4, 0x0, 0x6, 0x0, 0x0, 0x8100, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000240), 0x8}, 0x4200, 0x20, 0x9, 0x0, 0x401, 0x5d8, 0x0, 0x0, 0x0, 0x0, 0x30e}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000)

04:58:47 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000001c000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:58:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

[ 1797.511337] loop7: detected capacity change from 0 to 135266304
04:58:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)

[ 1797.560109] FAULT_INJECTION: forcing a failure.
[ 1797.560109] name failslab, interval 1, probability 0, space 0, times 0
[ 1797.561459] CPU: 1 PID: 10152 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1797.562259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1797.563216] Call Trace:
[ 1797.563524]  dump_stack+0x107/0x167
[ 1797.563938]  should_fail.cold+0x5/0xa
[ 1797.564383]  ? create_object.isra.0+0x3a/0xa20
[ 1797.564901]  should_failslab+0x5/0x20
[ 1797.565339]  kmem_cache_alloc+0x5b/0x310
[ 1797.565817]  create_object.isra.0+0x3a/0xa20
[ 1797.566314]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1797.566904]  kmem_cache_alloc_trace+0x151/0x320
[ 1797.567438]  __io_queue_sqe+0x666/0x9d0
[ 1797.567891]  ? io_issue_sqe+0x77b0/0x77b0
[ 1797.568362]  ? __fget_files+0x2f8/0x520
[ 1797.568819]  ? io_prep_rw+0x7f5/0x1050
[ 1797.569269]  io_submit_sqes+0x44aa/0x8610
[ 1797.569769]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.570335]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.570887]  ? find_held_lock+0x2c/0x110
[ 1797.571352]  ? io_submit_sqes+0x8610/0x8610
[ 1797.571847]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1797.572396]  ? wait_for_completion_io+0x270/0x270
[ 1797.572943]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1797.573470]  ? vfs_write+0x354/0xb10
[ 1797.573904]  ? fput_many+0x2f/0x1a0
[ 1797.574321]  ? ksys_write+0x1a9/0x260
[ 1797.574751]  ? __ia32_sys_read+0xb0/0xb0
[ 1797.575213]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1797.575815]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1797.576399]  do_syscall_64+0x33/0x40
[ 1797.576823]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1797.577401] RIP: 0033:0x7f8f6841db19
[ 1797.577833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1797.579910] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1797.580771] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1797.581644] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1797.582454] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.583266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1797.584075] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:47 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1797.632778] FAULT_INJECTION: forcing a failure.
[ 1797.632778] name failslab, interval 1, probability 0, space 0, times 0
[ 1797.634385] CPU: 1 PID: 10154 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1797.635175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1797.636116] Call Trace:
[ 1797.636424]  dump_stack+0x107/0x167
[ 1797.636840]  should_fail.cold+0x5/0xa
[ 1797.637276]  ? create_object.isra.0+0x3a/0xa20
[ 1797.637803]  should_failslab+0x5/0x20
[ 1797.638234]  kmem_cache_alloc+0x5b/0x310
[ 1797.638700]  create_object.isra.0+0x3a/0xa20
[ 1797.639201]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1797.639779]  __kmalloc+0x16e/0x390
[ 1797.640193]  io_setup_async_rw+0x180/0x580
[ 1797.640674]  ? iov_iter_restore+0x195/0x3a0
[ 1797.641166]  io_read+0x775/0x11e0
[ 1797.641560]  ? __is_insn_slot_addr+0x14c/0x290
[ 1797.642100]  ? kernel_text_address+0xf2/0x120
[ 1797.642610]  ? unwind_get_return_address+0x55/0xa0
[ 1797.643164]  ? create_prof_cpu_mask+0x20/0x20
[ 1797.643674]  ? kiocb_done+0xc90/0xc90
[ 1797.644109]  ? mark_lock+0xf5/0x2df0
[ 1797.644538]  ? lock_chain_count+0x20/0x20
[ 1797.645009]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.645500]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1797.646101]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.646561]  ? kasan_save_stack+0x1b/0x40
[ 1797.647028]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1797.647596]  ? __io_queue_sqe+0x666/0x9d0
[ 1797.648072]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.648553]  io_issue_sqe+0x2e8a/0x77b0
[ 1797.649009]  ? perf_trace_lock+0xac/0x490
[ 1797.649479]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.649957]  ? io_connect+0x610/0x610
[ 1797.650396]  ? lock_acquire+0x197/0x470
[ 1797.650846]  ? find_held_lock+0x2c/0x110
[ 1797.651311]  ? __fget_files+0x2cf/0x520
[ 1797.651763]  ? lock_downgrade+0x6d0/0x6d0
[ 1797.652240]  __io_queue_sqe+0x90/0x9d0
[ 1797.652687]  ? io_issue_sqe+0x77b0/0x77b0
[ 1797.653154]  ? __fget_files+0x2f8/0x520
[ 1797.653616]  ? io_prep_rw+0x7f5/0x1050
[ 1797.654062]  io_submit_sqes+0x44aa/0x8610
[ 1797.654548]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.655113]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.655662]  ? find_held_lock+0x2c/0x110
[ 1797.656127]  ? io_submit_sqes+0x8610/0x8610
[ 1797.656616]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1797.657164]  ? wait_for_completion_io+0x270/0x270
[ 1797.657720]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1797.658252]  ? vfs_write+0x354/0xb10
[ 1797.658679]  ? fput_many+0x2f/0x1a0
[ 1797.659092]  ? ksys_write+0x1a9/0x260
[ 1797.659523]  ? __ia32_sys_read+0xb0/0xb0
[ 1797.659989]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1797.660586]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1797.661172]  do_syscall_64+0x33/0x40
[ 1797.661604]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1797.662186] RIP: 0033:0x7f93ba828b19
[ 1797.662611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1797.664692] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1797.665556] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1797.666368] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1797.667175] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.667978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1797.668784] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:58:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 36)

[ 1797.700940] FAULT_INJECTION: forcing a failure.
[ 1797.700940] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1797.702374] CPU: 1 PID: 10157 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1797.703161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1797.704102] Call Trace:
[ 1797.704408]  dump_stack+0x107/0x167
[ 1797.704825]  should_fail.cold+0x5/0xa
[ 1797.705261]  _copy_from_user+0x2e/0x1b0
[ 1797.705721]  iovec_from_user+0x141/0x400
[ 1797.706187]  __import_iovec+0x67/0x590
[ 1797.706628]  ? kfree+0xd7/0x340
[ 1797.707010]  io_import_iovec+0x581/0x1120
[ 1797.707485]  ? io_put_sq_data+0x80/0x250
[ 1797.707951]  ? io_complete_rw+0x230/0x230
[ 1797.708423]  ? io_clean_op+0x30c/0x870
[ 1797.708867]  ? kiocb_done+0x16b/0xc90
[ 1797.709324]  io_read+0xe14/0x11e0
[ 1797.709727]  ? __is_insn_slot_addr+0x14c/0x290
[ 1797.710246]  ? kernel_text_address+0xf2/0x120
[ 1797.710754]  ? unwind_get_return_address+0x55/0xa0
[ 1797.711308]  ? create_prof_cpu_mask+0x20/0x20
[ 1797.711818]  ? kiocb_done+0xc90/0xc90
[ 1797.712258]  ? mark_lock+0xf5/0x2df0
[ 1797.712687]  ? lock_chain_count+0x20/0x20
[ 1797.713157]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.713657]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1797.714250]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.714708]  ? kasan_save_stack+0x1b/0x40
[ 1797.715178]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1797.715752]  ? __io_queue_sqe+0x666/0x9d0
[ 1797.716223]  ? __lock_acquire+0xbb1/0x5b00
[ 1797.716705]  io_issue_sqe+0x2e8a/0x77b0
[ 1797.717163]  ? perf_trace_lock+0xac/0x490
[ 1797.717640]  ? SOFTIRQ_verbose+0x10/0x10
[ 1797.718105]  ? io_connect+0x610/0x610
[ 1797.718544]  ? lock_acquire+0x197/0x470
[ 1797.718991]  ? find_held_lock+0x2c/0x110
[ 1797.719463]  ? __fget_files+0x2cf/0x520
[ 1797.719914]  ? lock_downgrade+0x6d0/0x6d0
[ 1797.720392]  __io_queue_sqe+0x90/0x9d0
[ 1797.720840]  ? io_issue_sqe+0x77b0/0x77b0
[ 1797.721314]  ? __fget_files+0x2f8/0x520
[ 1797.721781]  ? io_prep_rw+0x7f5/0x1050
[ 1797.722230]  io_submit_sqes+0x44aa/0x8610
[ 1797.722719]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.723285]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1797.723833]  ? find_held_lock+0x2c/0x110
[ 1797.724302]  ? io_submit_sqes+0x8610/0x8610
[ 1797.724799]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1797.725346]  ? wait_for_completion_io+0x270/0x270
[ 1797.725901]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1797.726432]  ? vfs_write+0x354/0xb10
[ 1797.726857]  ? fput_many+0x2f/0x1a0
[ 1797.727275]  ? ksys_write+0x1a9/0x260
[ 1797.727710]  ? __ia32_sys_read+0xb0/0xb0
[ 1797.728172]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1797.728767]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1797.729350]  do_syscall_64+0x33/0x40
[ 1797.729785]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1797.730367] RIP: 0033:0x7f8f6841db19
[ 1797.730791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1797.732868] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1797.733736] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1797.734547] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1797.735358] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1797.736167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1797.736971] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:58:47 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:58:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000020000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:03 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:03 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xc200, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fremovexattr(r0, &(0x7f0000000000)=@known='security.apparmor\x00')
r1 = open(&(0x7f00000002c0)='./file0\x00', 0x448343, 0x90)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x0)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x1)
r3 = gettid()
rt_sigqueueinfo(r3, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x100})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000280), &(0x7f0000000700)=0xc)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80800)
r6 = dup2(r1, r5)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x6a, &(0x7f0000000480)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, {0x0, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x2, "98de03549351c81160a313c399548e3bb1f784e3bd2b19d4", "d805146d1013fecd8e090f9035ff031b08fe07c1ea1d8128d05d44d38ce5b3e2"}}}}}}, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000680)={<r7=>0x0}, &(0x7f00000006c0)=0xc)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0xffffffffffffffff, r4], 0x2}, 0xfffffff8)
dup2(0xffffffffffffffff, r6)
get_robust_list(r7, &(0x7f00000007c0)=&(0x7f0000000780)={&(0x7f0000000740)}, &(0x7f0000000800)=0x18)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x4, r4, &(0x7f0000000340)="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", 0xfc, 0x0, 0x0, 0x2}])
recvmmsg(r4, &(0x7f00000068c0)=[{{0x0, 0x0, 0x0}}], 0x300, 0x102, 0x0)

04:59:03 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

04:59:03 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 37)

04:59:03 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:03 executing program 5:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffff000, 0x1}}, 0x0, 0x2000, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x1f, 0x40, 0x6d, 0x2a, 0x0, 0x3, 0x0, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x5, 0x9}, 0x240, 0x101, 0x4, 0x0, 0x5, 0x10000, 0x7, 0x0, 0x1f, 0x0, 0xffff}, 0x0, 0xe, 0xffffffffffffffff, 0x1)
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="667265657a65722c002a7b8bb8cff284f8547e93eaf71be120ac2aaba0f9"])
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2811423, 0x0)

04:59:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000003f000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:03 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1813.188264] FAULT_INJECTION: forcing a failure.
[ 1813.188264] name failslab, interval 1, probability 0, space 0, times 0
[ 1813.190146] CPU: 0 PID: 10181 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1813.191227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1813.192544] Call Trace:
[ 1813.192961]  dump_stack+0x107/0x167
[ 1813.193545]  should_fail.cold+0x5/0xa
[ 1813.194160]  ? __io_queue_sqe+0x666/0x9d0
[ 1813.194801]  should_failslab+0x5/0x20
[ 1813.195378]  kmem_cache_alloc_trace+0x55/0x320
[ 1813.196078]  ? lock_downgrade+0x6d0/0x6d0
[ 1813.196732]  __io_queue_sqe+0x666/0x9d0
[ 1813.197347]  ? io_issue_sqe+0x77b0/0x77b0
[ 1813.198007]  ? __fget_files+0x2f8/0x520
[ 1813.198624]  ? io_prep_rw+0x7f5/0x1050
[ 1813.199252]  io_submit_sqes+0x44aa/0x8610
[ 1813.199445] FAULT_INJECTION: forcing a failure.
[ 1813.199445] name failslab, interval 1, probability 0, space 0, times 0
[ 1813.199924]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.203554]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.204298]  ? find_held_lock+0x2c/0x110
[ 1813.204930]  ? io_submit_sqes+0x8610/0x8610
[ 1813.205598]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1813.206359]  ? wait_for_completion_io+0x270/0x270
[ 1813.207122]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1813.207850]  ? vfs_write+0x354/0xb10
[ 1813.208421]  ? fput_many+0x2f/0x1a0
[ 1813.209004]  ? ksys_write+0x1a9/0x260
[ 1813.209601]  ? __ia32_sys_read+0xb0/0xb0
[ 1813.210227]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1813.211065]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1813.211872]  do_syscall_64+0x33/0x40
[ 1813.212437]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1813.213224] RIP: 0033:0x7f8f6841db19
[ 1813.213801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1813.216584] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1813.217765] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1813.218860] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1813.219964] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1813.221075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1813.222197] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1813.223327] CPU: 1 PID: 10174 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1813.224911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1813.226800] Call Trace:
[ 1813.227405]  dump_stack+0x107/0x167
[ 1813.228236]  should_fail.cold+0x5/0xa
[ 1813.229105]  ? __io_queue_sqe+0x666/0x9d0
[ 1813.230056]  should_failslab+0x5/0x20
[ 1813.230914]  kmem_cache_alloc_trace+0x55/0x320
[ 1813.231953]  ? lock_downgrade+0x6d0/0x6d0
[ 1813.232896]  __io_queue_sqe+0x666/0x9d0
[ 1813.233808]  ? io_issue_sqe+0x77b0/0x77b0
[ 1813.234746]  ? __fget_files+0x2f8/0x520
[ 1813.235649]  ? io_prep_rw+0x7f5/0x1050
[ 1813.236534]  io_submit_sqes+0x44aa/0x8610
[ 1813.237507]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.238652]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.239741]  ? find_held_lock+0x2c/0x110
[ 1813.240669]  ? io_submit_sqes+0x8610/0x8610
[ 1813.241655]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1813.242754]  ? wait_for_completion_io+0x270/0x270
[ 1813.243846]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1813.244895]  ? vfs_write+0x354/0xb10
[ 1813.245736]  ? fput_many+0x2f/0x1a0
[ 1813.246568]  ? ksys_write+0x1a9/0x260
[ 1813.247430]  ? __ia32_sys_read+0xb0/0xb0
[ 1813.248351]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1813.249534]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1813.250716]  do_syscall_64+0x33/0x40
04:59:03 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1813.251560]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1813.252927] RIP: 0033:0x7f93ba828b19
[ 1813.253779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1813.257930] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1813.259656] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1813.261278] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1813.262892] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1813.264512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1813.266129] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
04:59:03 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 38)

[ 1813.380265] FAULT_INJECTION: forcing a failure.
[ 1813.380265] name failslab, interval 1, probability 0, space 0, times 0
[ 1813.383010] CPU: 1 PID: 10192 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1813.384580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1813.386455] Call Trace:
[ 1813.387061]  dump_stack+0x107/0x167
[ 1813.387885]  should_fail.cold+0x5/0xa
[ 1813.388743]  ? io_setup_async_rw+0x180/0x580
[ 1813.389739]  should_failslab+0x5/0x20
[ 1813.390606]  __kmalloc+0x72/0x390
[ 1813.391396]  io_setup_async_rw+0x180/0x580
[ 1813.392352]  ? iov_iter_restore+0x195/0x3a0
[ 1813.393330]  io_read+0x775/0x11e0
[ 1813.394127]  ? __is_insn_slot_addr+0x14c/0x290
[ 1813.395162]  ? kernel_text_address+0xf2/0x120
[ 1813.396185]  ? unwind_get_return_address+0x55/0xa0
[ 1813.397295]  ? create_prof_cpu_mask+0x20/0x20
[ 1813.398316]  ? kiocb_done+0xc90/0xc90
[ 1813.399175]  ? mark_lock+0xf5/0x2df0
[ 1813.400027]  ? lock_chain_count+0x20/0x20
[ 1813.400961]  ? __lock_acquire+0xbb1/0x5b00
[ 1813.401947]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1813.403134]  ? SOFTIRQ_verbose+0x10/0x10
[ 1813.404044]  ? kasan_save_stack+0x1b/0x40
[ 1813.404974]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1813.406126]  ? __io_queue_sqe+0x666/0x9d0
[ 1813.407067]  ? __lock_acquire+0xbb1/0x5b00
[ 1813.408031]  io_issue_sqe+0x2e8a/0x77b0
[ 1813.408941]  ? perf_trace_lock+0xac/0x490
[ 1813.409881]  ? SOFTIRQ_verbose+0x10/0x10
[ 1813.410807]  ? io_connect+0x610/0x610
[ 1813.411676]  ? lock_acquire+0x197/0x470
[ 1813.412571]  ? find_held_lock+0x2c/0x110
[ 1813.413503]  ? __fget_files+0x2cf/0x520
[ 1813.414409]  ? lock_downgrade+0x6d0/0x6d0
[ 1813.415347]  __io_queue_sqe+0x90/0x9d0
[ 1813.416244]  ? io_issue_sqe+0x77b0/0x77b0
[ 1813.417174]  ? __fget_files+0x2f8/0x520
[ 1813.418089]  ? io_prep_rw+0x7f5/0x1050
[ 1813.418974]  io_submit_sqes+0x44aa/0x8610
[ 1813.419946]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.421065]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1813.422168]  ? find_held_lock+0x2c/0x110
[ 1813.423097]  ? io_submit_sqes+0x8610/0x8610
[ 1813.424076]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1813.425164]  ? wait_for_completion_io+0x270/0x270
[ 1813.426261]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1813.427303]  ? vfs_write+0x354/0xb10
[ 1813.428152]  ? fput_many+0x2f/0x1a0
[ 1813.428976]  ? ksys_write+0x1a9/0x260
[ 1813.429845]  ? __ia32_sys_read+0xb0/0xb0
[ 1813.430775]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1813.431956]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1813.433122]  do_syscall_64+0x33/0x40
[ 1813.433979]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1813.435138] RIP: 0033:0x7f8f6841db19
[ 1813.435981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1813.440131] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1813.441852] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1813.443470] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1813.445087] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1813.446698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1813.448316] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:59:17 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='cgroup\x00', 0x40, &(0x7f00000002c0)='!).[\x00')
mount(0x0, 0x0, &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
pivot_root(0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000100), 0xd8, 0x113181)
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000140)={0x101})
readv(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)

04:59:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000065000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:17 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:17 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 39)

04:59:17 executing program 7:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {<r1=>0x0}}}], 0x20}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
r3 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r1, 0x9, r2, 0xa)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/vtconsole', 0x644800, 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xff, 0x3f, 0x20, 0x4, 0x0, 0xff, 0xa088, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x4, @perf_config_ext={0x0, 0x2}, 0x1, 0x5, 0x401, 0x4, 0x8, 0x3, 0x9, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, r1, 0x2, r4, 0x8)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=@acquire={0x1ac, 0x17, 0x1, 0x0, 0x0, {{@in=@multicast2}, @in=@local, {@in=@empty, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, [@tmpl={0x84, 0x5, [{{@in=@dev, 0x0, 0x33}, 0x0, @in6=@local}, {{@in=@local, 0x0, 0x3c}, 0x0, @in6=@empty}]}]}, 0x1ac}}, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r3, 0xffffffff00000000)

04:59:17 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:17 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

04:59:17 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1827.665314] FAULT_INJECTION: forcing a failure.
[ 1827.665314] name failslab, interval 1, probability 0, space 0, times 0
[ 1827.667058] CPU: 0 PID: 10205 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1827.668101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1827.669334] Call Trace:
[ 1827.669739]  dump_stack+0x107/0x167
[ 1827.670293]  should_fail.cold+0x5/0xa
[ 1827.670884]  ? create_object.isra.0+0x3a/0xa20
[ 1827.671588]  should_failslab+0x5/0x20
[ 1827.672156]  kmem_cache_alloc+0x5b/0x310
[ 1827.672769]  create_object.isra.0+0x3a/0xa20
[ 1827.673427]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1827.674189]  kmem_cache_alloc_trace+0x151/0x320
[ 1827.674878]  ? lock_downgrade+0x6d0/0x6d0
[ 1827.675497]  __io_queue_sqe+0x666/0x9d0
[ 1827.676112]  ? io_issue_sqe+0x77b0/0x77b0
[ 1827.676748]  ? __fget_files+0x2f8/0x520
[ 1827.677350]  ? io_prep_rw+0x7f5/0x1050
[ 1827.677969]  io_submit_sqes+0x44aa/0x8610
[ 1827.678623]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.679380]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.680106]  ? find_held_lock+0x2c/0x110
[ 1827.680730]  ? io_submit_sqes+0x8610/0x8610
[ 1827.681412]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1827.682168]  ? wait_for_completion_io+0x270/0x270
[ 1827.682908]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1827.683618]  ? vfs_write+0x354/0xb10
[ 1827.684195]  ? fput_many+0x2f/0x1a0
[ 1827.684748]  ? ksys_write+0x1a9/0x260
[ 1827.685331]  ? __ia32_sys_read+0xb0/0xb0
[ 1827.685961]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1827.686762]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1827.687550]  do_syscall_64+0x33/0x40
[ 1827.688118]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1827.688899] RIP: 0033:0x7f93ba828b19
[ 1827.689466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1827.692283] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1827.693444] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1827.694549] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1827.695645] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1827.696739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1827.697835] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1827.715186] FAULT_INJECTION: forcing a failure.
[ 1827.715186] name failslab, interval 1, probability 0, space 0, times 0
[ 1827.717880] CPU: 1 PID: 10213 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1827.719491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1827.721407] Call Trace:
[ 1827.722037]  dump_stack+0x107/0x167
[ 1827.722888]  should_fail.cold+0x5/0xa
[ 1827.723774]  ? create_object.isra.0+0x3a/0xa20
[ 1827.724831]  should_failslab+0x5/0x20
[ 1827.725712]  kmem_cache_alloc+0x5b/0x310
[ 1827.726668]  create_object.isra.0+0x3a/0xa20
[ 1827.727681]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1827.728858]  __kmalloc+0x16e/0x390
[ 1827.729689]  io_setup_async_rw+0x180/0x580
[ 1827.730669]  ? iov_iter_restore+0x195/0x3a0
[ 1827.731669]  io_read+0x775/0x11e0
[ 1827.732480]  ? __is_insn_slot_addr+0x14c/0x290
[ 1827.733542]  ? kernel_text_address+0xf2/0x120
[ 1827.734587]  ? unwind_get_return_address+0x55/0xa0
[ 1827.735714]  ? create_prof_cpu_mask+0x20/0x20
[ 1827.736744]  ? kiocb_done+0xc90/0xc90
[ 1827.737620]  ? mark_lock+0xf5/0x2df0
[ 1827.738505]  ? lock_chain_count+0x20/0x20
[ 1827.739462]  ? __lock_acquire+0xbb1/0x5b00
[ 1827.740465]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1827.741673]  ? SOFTIRQ_verbose+0x10/0x10
[ 1827.742615]  ? kasan_save_stack+0x1b/0x40
[ 1827.743566]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1827.744737]  ? __io_queue_sqe+0x666/0x9d0
[ 1827.745702]  ? __lock_acquire+0xbb1/0x5b00
[ 1827.746695]  io_issue_sqe+0x2e8a/0x77b0
[ 1827.747627]  ? perf_trace_lock+0xac/0x490
[ 1827.748582]  ? SOFTIRQ_verbose+0x10/0x10
[ 1827.749526]  ? io_connect+0x610/0x610
[ 1827.750424]  ? lock_acquire+0x197/0x470
[ 1827.751341]  ? find_held_lock+0x2c/0x110
[ 1827.752288]  ? __fget_files+0x2cf/0x520
[ 1827.753215]  ? lock_downgrade+0x6d0/0x6d0
[ 1827.754190]  __io_queue_sqe+0x90/0x9d0
[ 1827.755097]  ? io_issue_sqe+0x77b0/0x77b0
[ 1827.756052]  ? __fget_files+0x2f8/0x520
[ 1827.756978]  ? io_prep_rw+0x7f5/0x1050
[ 1827.757886]  io_submit_sqes+0x44aa/0x8610
[ 1827.758893]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.760039]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.761155]  ? find_held_lock+0x2c/0x110
[ 1827.762111]  ? io_submit_sqes+0x8610/0x8610
[ 1827.763112]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1827.764227]  ? wait_for_completion_io+0x270/0x270
[ 1827.765340]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1827.766417]  ? vfs_write+0x354/0xb10
[ 1827.767278]  ? fput_many+0x2f/0x1a0
[ 1827.768121]  ? ksys_write+0x1a9/0x260
[ 1827.768999]  ? __ia32_sys_read+0xb0/0xb0
[ 1827.769938]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1827.771145]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1827.772327]  do_syscall_64+0x33/0x40
[ 1827.773188]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1827.774366] RIP: 0033:0x7f8f6841db19
[ 1827.775221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1827.779450] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1827.781210] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1827.782855] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1827.784502] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1827.786155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1827.787803] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:59:17 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

04:59:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000a7c000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:17 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:17 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1827.819371] cgroup: Unknown subsys name '!).['
[ 1827.844677] FAULT_INJECTION: forcing a failure.
[ 1827.844677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1827.846530] CPU: 0 PID: 10224 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1827.847526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1827.848726] Call Trace:
[ 1827.849113]  dump_stack+0x107/0x167
[ 1827.849642]  should_fail.cold+0x5/0xa
[ 1827.850205]  _copy_from_user+0x2e/0x1b0
[ 1827.850781]  iovec_from_user+0x141/0x400
[ 1827.851370]  __import_iovec+0x67/0x590
[ 1827.851928]  ? kfree+0xd7/0x340
[ 1827.852412]  io_import_iovec+0x581/0x1120
[ 1827.853006]  ? io_put_sq_data+0x80/0x250
[ 1827.853598]  ? io_complete_rw+0x230/0x230
[ 1827.854197]  ? io_clean_op+0x30c/0x870
[ 1827.854757]  ? kiocb_done+0x16b/0xc90
[ 1827.855312]  io_read+0xe14/0x11e0
[ 1827.855812]  ? __is_insn_slot_addr+0x14c/0x290
[ 1827.856472]  ? kernel_text_address+0xf2/0x120
[ 1827.857118]  ? unwind_get_return_address+0x55/0xa0
[ 1827.857824]  ? create_prof_cpu_mask+0x20/0x20
[ 1827.858472]  ? kiocb_done+0xc90/0xc90
[ 1827.859015]  ? mark_lock+0xf5/0x2df0
[ 1827.859556]  ? lock_chain_count+0x20/0x20
[ 1827.860155]  ? __lock_acquire+0xbb1/0x5b00
[ 1827.860774]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1827.861518]  ? SOFTIRQ_verbose+0x10/0x10
[ 1827.862103]  ? kasan_save_stack+0x1b/0x40
[ 1827.862690]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1827.863409]  ? __io_queue_sqe+0x666/0x9d0
[ 1827.864006]  ? __lock_acquire+0xbb1/0x5b00
[ 1827.864610]  io_issue_sqe+0x2e8a/0x77b0
[ 1827.865180]  ? perf_trace_lock+0xac/0x490
[ 1827.865769]  ? SOFTIRQ_verbose+0x10/0x10
[ 1827.866362]  ? io_connect+0x610/0x610
[ 1827.866912]  ? lock_acquire+0x197/0x470
[ 1827.867479]  ? find_held_lock+0x2c/0x110
[ 1827.868065]  ? __fget_files+0x2cf/0x520
[ 1827.868629]  ? lock_downgrade+0x6d0/0x6d0
[ 1827.869225]  __io_queue_sqe+0x90/0x9d0
[ 1827.869782]  ? io_issue_sqe+0x77b0/0x77b0
[ 1827.870389]  ? __fget_files+0x2f8/0x520
[ 1827.870958]  ? io_prep_rw+0x7f5/0x1050
[ 1827.871518]  io_submit_sqes+0x44aa/0x8610
[ 1827.872134]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.872846]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1827.873536]  ? find_held_lock+0x2c/0x110
[ 1827.874129]  ? io_submit_sqes+0x8610/0x8610
[ 1827.874749]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1827.875438]  ? wait_for_completion_io+0x270/0x270
[ 1827.876127]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1827.876782]  ? vfs_write+0x354/0xb10
[ 1827.877309]  ? fput_many+0x2f/0x1a0
[ 1827.877827]  ? ksys_write+0x1a9/0x260
[ 1827.878386]  ? __ia32_sys_read+0xb0/0xb0
[ 1827.878987]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1827.879756]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1827.880512]  do_syscall_64+0x33/0x40
[ 1827.881060]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1827.881816] RIP: 0033:0x7f93ba828b19
[ 1827.882338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1827.885027] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1827.886146] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1827.887208] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1827.888265] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1827.889312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1827.890371] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1827.899102] cgroup: Unknown subsys name '!).['
04:59:17 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:17 executing program 7:
syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000000140)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x200}, {&(0x7f0000000080)="0004000000000000003527ffccf1cbfbcfaffa4b13bc8f9caa884d7b1bc0c5209307769e797d27006b3c4215043d53679d32ff1e33e3bd2a62430ef14afa11d83f7cf9b8de97c3127c6cf94d3098c5", 0x4f, 0x2000000007fd}, {&(0x7f0000000100)="ed4100000093b200dff47e5fe0f4655fe0f4655f0000ff000000040004", 0x1d, 0x4}], 0x0, &(0x7f00000004c0)=ANY=[])
execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000440)=[&(0x7f00000001c0)='ext2\x00', &(0x7f00000002c0)='ext2\x00', &(0x7f0000000300)='ext2\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='%#\x00', &(0x7f00000003c0)='\\6\x00', &(0x7f0000000400)='\x00'], &(0x7f00000004c0)=[&(0x7f0000000480)='[&@&-\'(-\x00'], 0x2e3df6f444e956df)

04:59:17 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000480000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1827.951294] loop7: detected capacity change from 0 to 135266304
[ 1827.978821] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
04:59:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000f0000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:17 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
clone3(&(0x7f0000000740)={0x404d2340, &(0x7f0000000480)=<r1=>0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000001800)=[0x0, 0xffffffffffffffff, 0x0, 0x0], 0x4}, 0x58)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x2, 0x55)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', <r5=>0x0})
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4ce6, &(0x7f0000000680)={0x0, 0xc920, 0x4, 0x1, 0x2b0, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000700), &(0x7f00000007c0))
io_uring_enter(r4, 0x2b9d, 0xc5a9, 0x2, &(0x7f0000000640)={[0xacb]}, 0x8)
syz_io_uring_submit(r6, 0x0, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r0, 0x0, &(0x7f0000000400)={&(0x7f0000001840)=@alg, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000000340)=""/86, 0x56}, {&(0x7f0000000180)=""/22, 0x16}], 0x3, &(0x7f0000002e00)=""/4096, 0x1000}, 0x0, 0x1, 0x0, {0x1}}, 0x2)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000018c0)=ANY=[@ANYRES16, @ANYRES16=0x0, @ANYBLOB="01000000000000000000040000000c00018008000100", @ANYRES32=0x0, @ANYRESHEX=r1], 0x20}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6_vti0\x00', r5, 0x2f, 0xc3, 0x3f, 0x0, 0x2, @dev={0xfe, 0x80, '\x00', 0x37}, @remote, 0x8, 0x40, 0x80000003, 0x4}})
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f00000000c0)=@v2={0x2000000, [{0x40, 0x20000}, {0x8000000, 0x3}]}, 0x14, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000200)={0x0, 0x4, 0x8001, 0x2})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

[ 1828.015407] loop7: detected capacity change from 0 to 135266304
[ 1828.027999] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
04:59:34 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat2(r1, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x4400, 0x11}, 0x18)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, 0x1e, 0xc21, 0x0, 0x0, {0x9}, [@typed={0x8, 0x19, 0x0, 0x0, @u32}, @typed={0x14, 0x9, 0x0, 0x0, @ipv6=@mcast2}]}, 0x3b}}, 0x0)

04:59:34 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000200000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:34 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

04:59:34 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 40)

04:59:34 executing program 7:
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
sigaltstack(&(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sigaltstack(&(0x7f0000ff7000/0x4000)=nil, 0x0)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00')
readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xe8b82, 0x0)
r1 = epoll_create(0x1)
signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0)
mlock2(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_setup(0x11cd, &(0x7f00000002c0)={0x0, 0x2000cf11, 0x1, 0x400, 0xa0, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000240))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="8f4275dc430600000f00740000009700000000000000000000e1b6bceecf570f141854a98dcc3f8bd7c0722d0dc86299244095c27ab1727387e490578b77f649ae4574ad2ec69cf1cccb755bf23b61f613fca822772ca2f555fe3c85ff587a59b3874403d587440608b77d5b7138552efc41a7b08641de2873e8653dd16c210009", @ANYRES32, @ANYRES64=r0])
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xa0000003})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000180)=0x800, 0x2, 0x2)

[ 1844.660361] FAULT_INJECTION: forcing a failure.
[ 1844.660361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1844.662105] CPU: 1 PID: 10257 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 1844.663937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1844.665583] FAULT_INJECTION: forcing a failure.
[ 1844.665583] name failslab, interval 1, probability 0, space 0, times 0
[ 1844.666061] Call Trace:
[ 1844.666097]  dump_stack+0x107/0x167
[ 1844.669056]  should_fail.cold+0x5/0xa
[ 1844.670051]  _copy_to_iter+0x264/0x12d0
[ 1844.671101]  ? seq_read_iter+0xd4d/0x12b0
[ 1844.672339]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 1844.673812]  ? __virt_addr_valid+0x170/0x5d0
[ 1844.674928]  ? __check_object_size+0x319/0x440
[ 1844.676319]  seq_read_iter+0xdcb/0x12b0
[ 1844.677387]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 1844.678727]  proc_reg_read_iter+0x20a/0x2e0
[ 1844.679844]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 1844.681177]  io_read+0x2dc/0x11e0
[ 1844.682087]  ? __is_insn_slot_addr+0x14c/0x290
[ 1844.683296]  ? kernel_text_address+0xf2/0x120
[ 1844.684470]  ? unwind_get_return_address+0x55/0xa0
[ 1844.685792]  ? create_prof_cpu_mask+0x20/0x20
[ 1844.686909]  ? kiocb_done+0xc90/0xc90
[ 1844.687766]  ? mark_lock+0xf5/0x2df0
[ 1844.688638]  ? lock_chain_count+0x20/0x20
[ 1844.689603]  ? __lock_acquire+0xbb1/0x5b00
[ 1844.690616]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1844.691812]  ? SOFTIRQ_verbose+0x10/0x10
[ 1844.692735]  ? kasan_save_stack+0x1b/0x40
[ 1844.693678]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1844.694839]  ? __io_queue_sqe+0x666/0x9d0
[ 1844.695955]  ? __lock_acquire+0xbb1/0x5b00
[ 1844.697096]  io_issue_sqe+0x2e8a/0x77b0
[ 1844.698214]  ? perf_trace_lock+0xac/0x490
[ 1844.699342]  ? SOFTIRQ_verbose+0x10/0x10
[ 1844.700326]  ? io_connect+0x610/0x610
[ 1844.701381]  ? lock_acquire+0x197/0x470
[ 1844.702476]  ? find_held_lock+0x2c/0x110
[ 1844.703462]  ? __fget_files+0x2cf/0x520
[ 1844.704397]  ? lock_downgrade+0x6d0/0x6d0
[ 1844.705528]  __io_queue_sqe+0x90/0x9d0
[ 1844.706617]  ? io_issue_sqe+0x77b0/0x77b0
[ 1844.707740]  ? __fget_files+0x2f8/0x520
[ 1844.708685]  ? io_prep_rw+0x7f5/0x1050
[ 1844.709570]  io_submit_sqes+0x44aa/0x8610
[ 1844.710557]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1844.711676]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1844.712757]  ? find_held_lock+0x2c/0x110
[ 1844.713702]  ? io_submit_sqes+0x8610/0x8610
[ 1844.714631]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1844.715296]  ? wait_for_completion_io+0x270/0x270
[ 1844.715960]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1844.716596]  ? vfs_write+0x354/0xb10
[ 1844.717104]  ? fput_many+0x2f/0x1a0
[ 1844.717602]  ? ksys_write+0x1a9/0x260
[ 1844.718147]  ? __ia32_sys_read+0xb0/0xb0
[ 1844.718759]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1844.719651]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1844.720526]  do_syscall_64+0x33/0x40
[ 1844.721146]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1844.722007] RIP: 0033:0x7f93ba828b19
[ 1844.722629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1844.725251] RSP: 002b:00007f93b7d9e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1844.726341] RAX: ffffffffffffffda RBX: 00007f93ba93bf60 RCX: 00007f93ba828b19
[ 1844.727362] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1844.728385] RBP: 00007f93b7d9e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1844.729399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1844.730413] R13: 00007fff80a9ac1f R14: 00007f93b7d9e300 R15: 0000000000022000
[ 1844.731460] CPU: 0 PID: 10262 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1844.732302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1844.733257] Call Trace:
[ 1844.733564]  dump_stack+0x107/0x167
[ 1844.733993]  should_fail.cold+0x5/0xa
[ 1844.734440]  ? create_object.isra.0+0x3a/0xa20
[ 1844.734968]  should_failslab+0x5/0x20
[ 1844.735409]  kmem_cache_alloc+0x5b/0x310
[ 1844.735883]  create_object.isra.0+0x3a/0xa20
[ 1844.736392]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1844.737011]  __kmalloc+0x16e/0x390
[ 1844.737443]  io_setup_async_rw+0x180/0x580
[ 1844.737939]  ? iov_iter_restore+0x195/0x3a0
[ 1844.738465]  io_read+0x775/0x11e0
[ 1844.738869]  ? __is_insn_slot_addr+0x14c/0x290
[ 1844.739420]  ? kernel_text_address+0xf2/0x120
[ 1844.739942]  ? unwind_get_return_address+0x55/0xa0
[ 1844.740537]  ? create_prof_cpu_mask+0x20/0x20
[ 1844.741081]  ? kiocb_done+0xc90/0xc90
[ 1844.741521]  ? mark_lock+0xf5/0x2df0
[ 1844.741971]  ? lock_chain_count+0x20/0x20
[ 1844.742477]  ? __lock_acquire+0xbb1/0x5b00
[ 1844.742979]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1844.743590]  ? SOFTIRQ_verbose+0x10/0x10
[ 1844.744065]  ? kasan_save_stack+0x1b/0x40
[ 1844.744541]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1844.745124]  ? __io_queue_sqe+0x666/0x9d0
[ 1844.745607]  ? __lock_acquire+0xbb1/0x5b00
[ 1844.746099]  io_issue_sqe+0x2e8a/0x77b0
[ 1844.746569]  ? perf_trace_lock+0xac/0x490
[ 1844.747051]  ? SOFTIRQ_verbose+0x10/0x10
[ 1844.747525]  ? io_connect+0x610/0x610
[ 1844.747977]  ? lock_acquire+0x197/0x470
[ 1844.748455]  ? find_held_lock+0x2c/0x110
[ 1844.748949]  ? __fget_files+0x2cf/0x520
[ 1844.749431]  ? lock_downgrade+0x6d0/0x6d0
[ 1844.749918]  __io_queue_sqe+0x90/0x9d0
[ 1844.750408]  ? io_issue_sqe+0x77b0/0x77b0
[ 1844.750925]  ? __fget_files+0x2f8/0x520
[ 1844.751423]  ? io_prep_rw+0x7f5/0x1050
[ 1844.751910]  io_submit_sqes+0x44aa/0x8610
[ 1844.752451]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1844.753076]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1844.753673]  ? find_held_lock+0x2c/0x110
[ 1844.754181]  ? io_submit_sqes+0x8610/0x8610
[ 1844.754728]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1844.755325]  ? wait_for_completion_io+0x270/0x270
[ 1844.755926]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1844.756610]  ? vfs_write+0x354/0xb10
[ 1844.757095]  ? fput_many+0x2f/0x1a0
[ 1844.757548]  ? ksys_write+0x1a9/0x260
[ 1844.758021]  ? __ia32_sys_read+0xb0/0xb0
[ 1844.758528]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1844.759190]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1844.759858]  do_syscall_64+0x33/0x40
[ 1844.760358]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1844.760984] RIP: 0033:0x7f8f6841db19
[ 1844.761430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1844.763620] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1844.764536] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1844.765399] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1844.766241] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1844.767062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1844.767893] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:59:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000300000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:34 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

04:59:34 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000400000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:34 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:34 executing program 7:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x20, 0x81, 0x80, 0x5, 0x0, 0x8, 0x480, 0x4, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000100), 0x3}, 0x80810, 0xfff, 0x8, 0x0, 0x1, 0x0, 0x8, 0x0, 0x1000, 0x0, 0x6}, 0x0, 0x8, r1, 0x2)
statx(r0, &(0x7f0000000340)='./file0\x00', 0x100, 0x800, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
sendmsg$nl_generic(r1, &(0x7f00000009c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000480)={0x4cc, 0x17, 0x100, 0x70bd25, 0x25dfdbff, {0x1d}, [@nested={0xc4, 0x89, 0x0, 0x1, [@typed={0xc, 0x5d, 0x0, 0x0, @u64=0x1a6a}, @typed={0xc, 0x12, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}, @typed={0x14, 0x10, 0x0, 0x0, @ipv6=@loopback}, @typed={0x89, 0xe, 0x0, 0x0, @binary="ad2e05bc03e1d38a1bd77fca358c778570c51119066c04179e5b97224bee9de61ddf5469c7a87126bc1297de3be8918780c8ce3f259de7bbcf1832f5260c85944f238f236d810141d9f1b1cde7d3683ebb9643f0909b42f84c83b108b759b157370e333e06cdeeaa5299b8dea40760d626dce0e82b8965ac308f4d1606c6f157122130a428"}]}, @nested={0x66, 0x68, 0x0, 0x1, [@typed={0x14, 0x87, 0x0, 0x0, @str='/proc/key-users\x00'}, @generic="a006b86274fc63e69351db50cf91c1008f9f8db74f37c2d0dfc1eb017d90d8dc18ef2f350f2ad9690259ee3744550a031e1e3e0be11f4fc096fb109f6c8ff4ec0b30b936e0acc1fdb70558381ae9"]}, @nested={0x35, 0x49, 0x0, 0x1, [@generic="cea55ff3789d25aaa96ee6dbba955143e085754753a41776c763593c70bdf5a22dcd7628787cba3050", @typed={0x8, 0x1c, 0x0, 0x0, @uid=r2}]}, @typed={0x8, 0x87, 0x0, 0x0, @u32=0x8}, @generic="14e13a6fdcf4438909e4898f0a98520b4780d3b33eb7f2b6c2eaa02a96ef80d6dbf301f5c3ac973754f8113749715de4d3f2a313c4ed484afe5e1015695af9a95a4e3d8ffcaa5e273de52cb2afb28cb065d16cecf5e373697a3bcdbb5692cd70fd150eb6", @nested={0x2e5, 0x65, 0x0, 0x1, [@generic="c296dbce2f3ed39d3978b2941426a602aba30935378bd92d534b2d3b39bf0c46dca72ae9553d4f01a81e702886ed40d88fb7d7f0e2baf52b2978d31701832b6672e5a6d0464b190eae82908b291dcfc90b57f2c88f21dea646446fd7bcb350e8885ff2815cddf5c8291e9ea5852aeba47594c330e681fa8e54e634a2a54cc2f4ee4f6db1808d66ac7bf2c2896d981b004db32b89dc4c48f58ce665c6ef9705b180d119f8d8ca74168e77a7cba66f5e0219b4b8a790c6d6952d9e537120f3652fa574c3aed00ef5a1be43da8d605bd995ca65d5347d0575ba301e679ccbabac4a89459d478a13aeb21581ef3c63c1e3f0937d537bbf", @generic="1871da11f498367bf8f962c23f4516eb45a0ec537b3a25711e19eca11a699eda18a9844a00cc250f326bd6b1eb787f0d2c1a5f2de1f30dad4c950a9fe5b824e353846e40ba47eecf781d6f2728a58ad4ec147a51a8da604355a11bb6fa20b51c679db9d5e03421ede84a63d3e7dee175a256e3dc66b19f5b194196d22d1ddbadce8256b88f59cc2b3306edca29a44a72e93a2f708f6576909a4d43e54ea5380f1a62cd7c1fbfdbfc85c2fb7e2df3c20f59e622d583e43a337ef7fa927493fbc56164", @typed={0x4, 0x27}, @generic="11360a9c58487e9187bc93feb524c20343a3a4a4aaecc92649fca95cd0a8709d39916225115f6a7f0d247e5637bcf90a7f47fc13ef37145007ba", @generic="84021105a8e3180d56ebfb5885ecdd4d403eb1249ded97094410bdff6508b2e8d976b999b45ac6cf6981a866ae95d6a74b114611dd937fbd121d01f795c92c8d5d8e522a964c145ecc8e2c25f0fde464cfe77e934575d022da306f4af4cebdef951a31cd", @typed={0xc, 0x1d, 0x0, 0x0, @u64=0xfff}, @generic="03432aeb107d1f84cb3eaadca6cf325ce20bf7d0851fcf74eabd5231f3bacbe876411d8a3168b3e792abedf799ee88e653788b8a9f0c9a0954c9bddf88d3ccc2927078566f6a5b24e3000a0a2e6c6c02e33e7d12eed1bf478c11b2e05ef8ff8aa8b52f1115233f7aa7e64c71dbbfa4f25e18520296459fe9b70e378d"]}]}, 0x4cc}}, 0x24008800)
pwrite64(r0, &(0x7f00000000c0)="04", 0x1, 0x3ff03)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000a00)={<r3=>0x0}, &(0x7f0000000a40)=0xc)
fcntl$lock(r1, 0x7, &(0x7f0000000a80)={0x0, 0x1, 0x4, 0x87c4, r3})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x81, 0x9, 0x3, 0x2, 0x0, 0x21, 0x90081, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000000), 0x4}, 0x4420, 0x8, 0x8000, 0x8, 0xfffffffffffffffe, 0x1, 0x1, 0x0, 0x8000, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r4, 0x2)

[ 1844.939282] loop7: detected capacity change from 0 to 33559552
[ 1859.405564] FAULT_INJECTION: forcing a failure.
[ 1859.405564] name failslab, interval 1, probability 0, space 0, times 0
[ 1859.407529] CPU: 0 PID: 10301 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1859.408535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1859.409746] Call Trace:
[ 1859.410139]  dump_stack+0x107/0x167
[ 1859.410682]  should_fail.cold+0x5/0xa
[ 1859.411242]  should_failslab+0x5/0x20
[ 1859.411801]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1859.412461]  io_submit_sqes+0x6fe6/0x8610
[ 1859.413075]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1859.413817]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.414567]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.415288]  ? find_held_lock+0x2c/0x110
[ 1859.415887]  ? io_submit_sqes+0x8610/0x8610
[ 1859.416518]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1859.417224]  ? wait_for_completion_io+0x270/0x270
[ 1859.417945]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1859.418642]  ? vfs_write+0x354/0xb10
[ 1859.419193]  ? fput_many+0x2f/0x1a0
[ 1859.419732]  ? ksys_write+0x1a9/0x260
[ 1859.420285]  ? __ia32_sys_read+0xb0/0xb0
[ 1859.420890]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1859.421657]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1859.422423]  do_syscall_64+0x33/0x40
[ 1859.422964]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1859.423957] RIP: 0033:0x7fbe4d75bb19
[ 1859.424497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1859.427172] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1859.428275] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1859.429304] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1859.430342] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1859.431387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1859.432411] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
04:59:49 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 41)

04:59:49 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r1=>0x0})
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x800}, {0x8, 0x15, 0x6}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000001}, 0x20008800)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x60, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x34, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @broadcast, @random="d6900f844e05"}}, 0x0, @val={0x8c, 0x10, {0x0, "711b6e94ee12", @short="00000000000000ee"}}}}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x60}}, 0x0)

04:59:49 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000500000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:49 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

04:59:49 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="04002bbd7000fbdbdf2503000000060001004e21000006000a020000000014000900fc020000000000000000000000000001080008007f00000108000600e000000108000600e0000001050002000200000008000800ffffffff060001004e24000032cdcf374fa3a6"], 0x68}, 0x1, 0x0, 0x0, 0x40440c1}, 0x40000)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000240)={0x140004000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f00000000c0)=ANY=[@ANYRES64, @ANYRES16=r2])
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'})

[ 1859.458368] FAULT_INJECTION: forcing a failure.
[ 1859.458368] name failslab, interval 1, probability 0, space 0, times 0
[ 1859.460071] CPU: 0 PID: 10312 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1859.461071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1859.462263] Call Trace:
[ 1859.462651]  dump_stack+0x107/0x167
[ 1859.463187]  should_fail.cold+0x5/0xa
[ 1859.463734]  ? create_object.isra.0+0x3a/0xa20
[ 1859.464391]  should_failslab+0x5/0x20
[ 1859.464936]  kmem_cache_alloc+0x5b/0x310
[ 1859.465521]  create_object.isra.0+0x3a/0xa20
[ 1859.466156]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1859.466906]  kmem_cache_alloc_trace+0x151/0x320
[ 1859.467575]  ? lock_downgrade+0x6d0/0x6d0
[ 1859.468176]  __io_queue_sqe+0x666/0x9d0
[ 1859.468758]  ? io_issue_sqe+0x77b0/0x77b0
[ 1859.469356]  ? __fget_files+0x2f8/0x520
[ 1859.469928]  ? io_prep_rw+0x7f5/0x1050
[ 1859.470494]  io_submit_sqes+0x44aa/0x8610
[ 1859.471112]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.471834]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.472546]  ? find_held_lock+0x2c/0x110
[ 1859.473132]  ? io_submit_sqes+0x8610/0x8610
[ 1859.473755]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1859.474456]  ? wait_for_completion_io+0x270/0x270
[ 1859.475147]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1859.475808]  ? vfs_write+0x354/0xb10
[ 1859.476336]  ? fput_many+0x2f/0x1a0
[ 1859.476852]  ? ksys_write+0x1a9/0x260
[ 1859.477392]  ? __ia32_sys_read+0xb0/0xb0
[ 1859.477988]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1859.478749]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1859.479484]  do_syscall_64+0x33/0x40
[ 1859.480015]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1859.480739] RIP: 0033:0x7f8f6841db19
[ 1859.481265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1859.483888] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1859.484968] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1859.485973] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1859.487008] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1859.488026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1859.489044] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
04:59:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

04:59:49 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 7:
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {<r2=>0xee00, <r3=>0xee00}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000005c0)=ANY=[@ANYRES64, @ANYRESHEX=r3, @ANYRESHEX, @ANYRESOCT, @ANYRESHEX, @ANYRES32])
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x4305, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x400, 0x8, 0x7c, 0x0, 0x5}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, &(0x7f0000000040), &(0x7f0000000440)=0xc)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100)
accept$unix(r1, &(0x7f0000000640)=@abs, 0x0)
openat(r5, &(0x7f0000000380)='./file0\x00', 0x24000, 0x20)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r6, &(0x7f0000000000)=""/41, 0x29, 0x3)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000200)={0x2f, 0x8, '\x00', [@hao={0xc9, 0x10, @mcast1}, @calipso={0x7, 0x30, {0x3, 0xa, 0x5, 0x935d, [0x3, 0xffffffff, 0x1, 0xfffffffffffffffc, 0x2b5]}}]}, 0x50)
setresuid(r2, 0xee00, r2)
getresgid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f00000003c0))

04:59:49 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0xe, 0x0, 0x0, 0x0, 0x0)

04:59:49 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 42)

[ 1859.646354] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 1859.681233] FAULT_INJECTION: forcing a failure.
[ 1859.681233] name failslab, interval 1, probability 0, space 0, times 0
[ 1859.682845] CPU: 0 PID: 10328 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1859.683751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1859.684844] Call Trace:
[ 1859.685202]  dump_stack+0x107/0x167
[ 1859.685683]  should_fail.cold+0x5/0xa
[ 1859.686190]  ? io_setup_async_rw+0x180/0x580
[ 1859.686797]  should_failslab+0x5/0x20
[ 1859.687291]  __kmalloc+0x72/0x390
[ 1859.687743]  io_setup_async_rw+0x180/0x580
[ 1859.688295]  ? iov_iter_restore+0x195/0x3a0
[ 1859.688861]  io_read+0x775/0x11e0
[ 1859.689313]  ? __is_insn_slot_addr+0x14c/0x290
[ 1859.689924]  ? kernel_text_address+0xf2/0x120
[ 1859.690530]  ? unwind_get_return_address+0x55/0xa0
[ 1859.691167]  ? create_prof_cpu_mask+0x20/0x20
[ 1859.691755]  ? kiocb_done+0xc90/0xc90
[ 1859.692260]  ? mark_lock+0xf5/0x2df0
[ 1859.692750]  ? lock_chain_count+0x20/0x20
[ 1859.693288]  ? __lock_acquire+0xbb1/0x5b00
[ 1859.693855]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1859.694565]  ? SOFTIRQ_verbose+0x10/0x10
[ 1859.695093]  ? kasan_save_stack+0x1b/0x40
[ 1859.695634]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1859.696297]  ? __io_queue_sqe+0x666/0x9d0
[ 1859.696839]  ? __lock_acquire+0xbb1/0x5b00
[ 1859.697397]  io_issue_sqe+0x2e8a/0x77b0
[ 1859.697924]  ? perf_trace_lock+0xac/0x490
[ 1859.698469]  ? SOFTIRQ_verbose+0x10/0x10
[ 1859.699004]  ? io_connect+0x610/0x610
[ 1859.699503]  ? lock_acquire+0x197/0x470
[ 1859.700016]  ? find_held_lock+0x2c/0x110
[ 1859.700549]  ? __fget_files+0x2cf/0x520
[ 1859.701065]  ? lock_downgrade+0x6d0/0x6d0
[ 1859.701615]  __io_queue_sqe+0x90/0x9d0
[ 1859.702129]  ? io_issue_sqe+0x77b0/0x77b0
[ 1859.702670]  ? __fget_files+0x2f8/0x520
[ 1859.703182]  ? io_prep_rw+0x7f5/0x1050
[ 1859.703690]  io_submit_sqes+0x44aa/0x8610
[ 1859.704247]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.704888]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1859.705513]  ? find_held_lock+0x2c/0x110
[ 1859.706040]  ? io_submit_sqes+0x8610/0x8610
[ 1859.706608]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1859.707239]  ? wait_for_completion_io+0x270/0x270
[ 1859.707861]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1859.708468]  ? vfs_write+0x354/0xb10
[ 1859.708957]  ? fput_many+0x2f/0x1a0
[ 1859.709432]  ? ksys_write+0x1a9/0x260
[ 1859.709925]  ? __ia32_sys_read+0xb0/0xb0
[ 1859.710462]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1859.711139]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1859.711816]  do_syscall_64+0x33/0x40
[ 1859.712301]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1859.712959] RIP: 0033:0x7f8f6841db19
[ 1859.713444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1859.713919] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1859.715816] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1859.715831] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1859.715839] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1859.715847] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1859.715854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1859.715875] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1859.717518] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1859.767457] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:00:05 executing program 5:
r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000380)="9a4876e5213215efccf96076d081584efe9a9c7bf2a33452ed1b104fe62bb2c52657a8bc41eb1001abcdb8ec06e3774cd3b5466fc0071e074e5e87a36d0f33ea72251fd91783d332a21dfa9671d996f90f1b88ae8ac8bf34af2555d6f6affd6a3efa53be538ec3b7a3ef545e2a4c3d9b161477a325d221ad41e92934061b90665c12ab094334fb5e5d927bb6a3", 0x8d}], 0x1)
pidfd_open(0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe72"]})
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1)
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)
close(r0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_WRITE={0x17, 0x4, 0x2000, @fd=r2, 0x7fc0000000000000, &(0x7f0000000500)="5c164b13fab0fbfaf065572f2e7b3074e569ad555cbb6518f229e8250225059ca78f3afb68ab24123068b917d423b58490066caeaeac7927034d746230ef145390f55ef7241cb8c9c821e62453f1985e4d2ae31c4b8ad22d4789dec24e", 0x5d, 0x0, 0x417640b9470e98f7, {0x0, r3}}, 0xffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x2, 0x0, r1, 0x0, r0, 0x2, 0x0, 0x1, {0x0, r3}}, 0x81)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8982, &(0x7f0000000200)={0x3, 'veth0_macvtap\x00', {0x1}, 0x3})
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
unshare(0x48020200)
pwrite64(r0, &(0x7f0000000440)="3acff55253c450b17cecaeb5ffae4379d2fe166cf9631407a35b8ad99b31b57576126186954a22c5ba9895b5e95d805fc1854c266310c9db7a901175afcc61a6b872dc6d677f2b90141b5b51923c19d1a7d92de6ec518417881e9198b71fd903e12c712d584b631f6daad6194185dbde7c2e67586adc86f9fdfc69e68e7cb3a039483a41e53a2c2b20e052e99ef433d80abb5e39e89c33211847c312460362008d115de216de6f4bad466377cf9c26613a8d3e16ca", 0xb5, 0xfffffffffffffe01)

05:00:05 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:05 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 43)

05:00:05 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

05:00:05 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r0 = inotify_init()
fcntl$setlease(r0, 0x400, 0x1)
syz_io_uring_setup(0x149e, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x3, 0x3af}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
socket$inet(0x2, 0xa, 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_open_dev$rtc(&(0x7f0000000380), 0x12e, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
read(0xffffffffffffffff, &(0x7f0000000000), 0x1b4000)
write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
[ 1875.791249] FAULT_INJECTION: forcing a failure.
[ 1875.791249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1875.794322] CPU: 1 PID: 10350 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1875.795933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1875.797840] Call Trace:
[ 1875.798453]  dump_stack+0x107/0x167
[ 1875.799306]  should_fail.cold+0x5/0xa
[ 1875.800195]  _copy_to_iter+0x264/0x12d0
[ 1875.801282]  ? seq_read_iter+0xd4d/0x12b0
[ 1875.802448]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 1875.803636]  ? __virt_addr_valid+0x170/0x5d0
[ 1875.804695]  ? __check_object_size+0x319/0x440
[ 1875.805787]  seq_read_iter+0xdcb/0x12b0
[ 1875.806776]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 1875.808005]  proc_reg_read_iter+0x20a/0x2e0
[ 1875.809044]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 1875.810383]  io_read+0x2dc/0x11e0
[ 1875.811354]  ? __is_insn_slot_addr+0x14c/0x290
[ 1875.812451]  ? kernel_text_address+0xf2/0x120
[ 1875.813518]  ? unwind_get_return_address+0x55/0xa0
[ 1875.814704]  ? create_prof_cpu_mask+0x20/0x20
[ 1875.815763]  ? kiocb_done+0xc90/0xc90
[ 1875.816669]  ? mark_lock+0xf5/0x2df0
[ 1875.817554]  ? lock_chain_count+0x20/0x20
[ 1875.818546]  ? __lock_acquire+0xbb1/0x5b00
[ 1875.819586]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1875.820831]  ? SOFTIRQ_verbose+0x10/0x10
[ 1875.821810]  ? kasan_save_stack+0x1b/0x40
[ 1875.822810]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1875.824015]  ? __io_queue_sqe+0x666/0x9d0
[ 1875.825000]  ? __lock_acquire+0xbb1/0x5b00
[ 1875.826008]  io_issue_sqe+0x2e8a/0x77b0
[ 1875.826960]  ? perf_trace_lock+0xac/0x490
[ 1875.827928]  ? SOFTIRQ_verbose+0x10/0x10
[ 1875.828898]  ? io_connect+0x610/0x610
[ 1875.829807]  ? lock_acquire+0x197/0x470
[ 1875.830751]  ? find_held_lock+0x2c/0x110
[ 1875.831710]  ? __fget_files+0x2cf/0x520
[ 1875.832662]  ? lock_downgrade+0x6d0/0x6d0
[ 1875.833640]  __io_queue_sqe+0x90/0x9d0
[ 1875.834572]  ? io_issue_sqe+0x77b0/0x77b0
[ 1875.835555]  ? __fget_files+0x2f8/0x520
[ 1875.836521]  ? io_prep_rw+0x7f5/0x1050
[ 1875.837454]  io_submit_sqes+0x44aa/0x8610
[ 1875.838509]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1875.839696]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1875.840864]  ? find_held_lock+0x2c/0x110
[ 1875.841862]  ? io_submit_sqes+0x8610/0x8610
[ 1875.842920]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1875.844082]  ? wait_for_completion_io+0x270/0x270
[ 1875.845566]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1875.846814]  ? vfs_write+0x354/0xb10
[ 1875.847683]  ? fput_many+0x2f/0x1a0
[ 1875.848524]  ? ksys_write+0x1a9/0x260
[ 1875.849404]  ? __ia32_sys_read+0xb0/0xb0
[ 1875.850361]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1875.851582]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1875.852774]  do_syscall_64+0x33/0x40
[ 1875.853644]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1875.854846] RIP: 0033:0x7f8f6841db19
[ 1875.855782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1875.860163] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1875.862175] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1875.863997] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1875.865684] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1875.867370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1875.869101] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1875.910741] FAULT_INJECTION: forcing a failure.
[ 1875.910741] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1875.912566] CPU: 0 PID: 10354 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1875.913471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1875.914573] Call Trace:
[ 1875.914945]  dump_stack+0x107/0x167
[ 1875.915447]  should_fail.cold+0x5/0xa
[ 1875.915965]  __alloc_pages_nodemask+0x182/0x600
[ 1875.916579]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 1875.917378]  alloc_pages_current+0x187/0x280
[ 1875.917953]  allocate_slab+0x26f/0x380
[ 1875.918520]  ___slab_alloc+0x470/0x700
[ 1875.919043]  ? io_submit_sqes+0x6fe6/0x8610
[ 1875.919631]  ? kmem_cache_alloc_bulk+0x1ec/0x320
[ 1875.920245]  kmem_cache_alloc_bulk+0x1ec/0x320
[ 1875.920843]  io_submit_sqes+0x6fe6/0x8610
[ 1875.921403]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1875.922086]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1875.922762]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1875.923418]  ? find_held_lock+0x2c/0x110
[ 1875.923948]  ? io_submit_sqes+0x8610/0x8610
[ 1875.924518]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1875.925152]  ? wait_for_completion_io+0x270/0x270
[ 1875.925790]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1875.926399]  ? vfs_write+0x354/0xb10
[ 1875.926886]  ? fput_many+0x2f/0x1a0
[ 1875.927358]  ? ksys_write+0x1a9/0x260
[ 1875.927853]  ? __ia32_sys_read+0xb0/0xb0
[ 1875.928385]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1875.929067]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1875.929753]  do_syscall_64+0x33/0x40
[ 1875.930236]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1875.930907] RIP: 0033:0x7fbe4d75bb19
[ 1875.931396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1875.933819] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1875.934833] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1875.935775] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1875.936704] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1875.937617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1875.938542] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
ioctl$BTRFS_IOC_SPACE_INFO(r2, 0xc0109414, &(0x7f0000017980)=ANY=[@ANYBLOB="6e0e0000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000da1e1f3e588f45e8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001ebdf8c17a582b776de72a02e9fb041aa2a99f927348bcb2ebb801ff9d97d1edcef61088067184f0b79238ba54aa81dad02940e631233b29300d063a4caba352b1dd76fcf60f9bf46e16bba6d46bf4df3e18cf4a8dc4ce241224aa5eda8fdf5e2a2adc1860b4e699b6f6cfaa34bac4b0134c70fdb00b3e609f7f3de145832113c8e64d17a0892aa20b0b3ca570500a58a56077fc1948f4a95b10a4b4ef292f2a5453df8c5884380c4f27e7358360b87d271181ac0a10c3e029bacb4f402502c30f3b66592645cdeb27034fe5d4bd0a73715239846592349"])
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x80)

05:00:05 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

05:00:05 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000f00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:05 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:05 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000e40), &(0x7f0000000e80)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000ec0)='2', 0x1, 0x80000001}], 0x0, &(0x7f0000000fc0)={[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]})

05:00:05 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

[ 1876.118251] loop5: detected capacity change from 0 to 135266304
[ 1876.121700] SELinux: security_context_str_to_sid(staff_u) failed for (dev tmpfs, type tmpfs) errno=-22
[ 1876.147162] loop5: detected capacity change from 0 to 135266304
[ 1876.150225] SELinux: security_context_str_to_sid(staff_u) failed for (dev tmpfs, type tmpfs) errno=-22
05:00:20 executing program 7:
recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0}, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$RTC_IRQP_READ(r2, 0x8008700b, &(0x7f0000000000))
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0xa0000, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_setup(0x20003a07, &(0x7f0000000340)={0x0, 0x7f8e, 0x0, 0x0, 0x8, 0x0, r3}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc)

05:00:20 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

05:00:20 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x4300, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$nfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x5, 0x6, &(0x7f0000000680)=[{&(0x7f0000000140)="6dab706ec1092371a2fd9730b29eca5eea120d30a9898d7ddd124152a40018f43f8acb4bc9c485cb1e74e01e36e7cbcae7d450158b3b6471cfa5858e86d6cc55d04268bfe66d275b938343bea562360fdf5522a43b51ee267d62bf63e76bc1c69b0a94523d2ffbc73d3ca0dbb1b3ce36453f562f60a531bafd8d0b8c456519861c9b425672d8009205ec9b00d01b71c3797d8da56c475bf31d643b1a74c5c44d808e99561d8d211868117f081ad1ec7b32f11a6177eac59f7c7b8b18a8b2b354a4077f00b1a3773253403609", 0xcc, 0x3}, {&(0x7f0000000240)="8dbaf08ad04cb204508f5ed58e91764bc939f6b173176e0e9bdcf79e2119dfe898e136f9c1221cd1a12ba4a91d8c1fda74270e4d2b7df10de80eebbf34f6a743b41e1868", 0x44, 0x7b2}, {&(0x7f00000002c0)="c01152f46f14428ca5549536be701c17faf5b850153d298ccdc0af512e2ac563afb9f35b5028531244dfd1fbb7f33e6c97805073b67aa9037fe9be5d21d7ad6727836e5e83e891186ce664c0f0163d829512130ec598591edda2cc8c90878e28c377eb7b6d3ec1612044032da3c230d13095f3516dc866ea341b17314501db70cfd9480a853985dc42676020116c54887bf6447b2fbe8ad17fe5a3bd9f62f3e8e0a0c6da9eed1314deac7a2cfb43a8b39b2c9cb97b", 0xb5, 0x10001}, {&(0x7f0000000380)="9bc23486cf60e73713af0f0085622018ceee00092173559c943ae4ba95486d334d24981512f4274535c3bf", 0x2b, 0xd95}, {&(0x7f00000003c0)="f9764ca47b88572d55ca923e4295de093c4f2aaf18563ef3497ede09fc53e44ba25a593f44163ecf00b20f6963c34649543eb5e407252cbae8b71a593478f8bcc96d7c61d5b4406af71c8460e9dd05425997281da69baf9b5d287fc2c075582cf8ec00c5a45abf8a64d9e455c74ee0dcd89391b6cefffbd8b3575b6e6379d90226e0df0e66e7afcad9f9f9927239f07c6078c95ce92df3c0796755e13093741599f9abb6e79ca64fcce1d8075e1cce347376f7fcc6725b97568cd5a7323f10006b0c58eba01f6b", 0xc7, 0x7}, {&(0x7f0000000580)="f29e74b90d7086b4786443136aa4184fdaf216bbdb5478ea2a754a276d985d875626af956d04a5b9ecd46735e9653f3ff98cfcbac6c2b04ed7a4ad487f00abe8bd126b71a89fe5b191a00bc6aaaa79872399f9c72077621da6ce521f0c6f80481c1e4153cd70ad52b11bc69ed329484b5b277f4dffd800d9c7585e92d5a6780eec20ca1698fa53e39d4e56b6517a072d91235bc2c7e1af7830ececaeda3482d1c84c9c0c2e8c6bf8eff548d5f5fb4fbd0730f115bd1e848eae4d07de1cbf1e1c6c34524f33f25246b8aa82cd38662af38a6433db21ccdbd2eb50e15014bd09b302d299818bc423ce00663fe21e5a9d7030dcfa0bcf", 0xf5, 0xfffffffffffffffd}], 0x40, &(0x7f0000001ec0)=ANY=[@ANYBLOB='\x00,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2c0054ccd1566d203f848b5caa74ca28d146df05d42be9cddaa05dc8039ff0f0329cd785768dd70bc01779d8344636626cdf0056848131dbcf8663a309ee6beefb708a699073dee8075467e8fa88faecf7c15e5e504fc583c298fcd35c83bb363d63dad6e69616bb1482ab11f319e9f59310e636cd738572e037ed6c79"])
readv(r1, &(0x7f0000001e00)=[{&(0x7f0000000740)=""/233, 0xe9}, {&(0x7f0000000840)=""/61, 0x3d}, {&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000001880)=""/169, 0xa9}, {&(0x7f0000001940)=""/238, 0xee}, {&(0x7f0000001a40)=""/242, 0xf2}, {&(0x7f0000001b40)=""/120, 0x78}, {&(0x7f0000001bc0)=""/184, 0xb8}, {&(0x7f0000001c80)=""/75, 0x4b}], 0x9)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0)

05:00:20 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:20 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 44)

05:00:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000006651200000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

05:00:20 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1891.094774] FAULT_INJECTION: forcing a failure.
[ 1891.094774] name failslab, interval 1, probability 0, space 0, times 0
[ 1891.097597] CPU: 0 PID: 10392 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1891.099180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1891.101058] Call Trace:
[ 1891.101660]  dump_stack+0x107/0x167
[ 1891.102488]  should_fail.cold+0x5/0xa
[ 1891.103359]  ? create_object.isra.0+0x3a/0xa20
[ 1891.104402]  should_failslab+0x5/0x20
[ 1891.105254]  kmem_cache_alloc+0x5b/0x310
[ 1891.106178]  ? mark_held_locks+0x9e/0xe0
[ 1891.107115]  create_object.isra.0+0x3a/0xa20
[ 1891.108106]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1891.109255]  kmem_cache_alloc_bulk+0x168/0x320
[ 1891.110286]  io_submit_sqes+0x6fe6/0x8610
[ 1891.111238]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1891.112360]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.113478]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.114568]  ? find_held_lock+0x2c/0x110
[ 1891.115503]  ? io_submit_sqes+0x8610/0x8610
[ 1891.116476]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1891.117566]  ? wait_for_completion_io+0x270/0x270
[ 1891.118664]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1891.119707]  ? vfs_write+0x354/0xb10
[ 1891.120543]  ? fput_many+0x2f/0x1a0
[ 1891.121358]  ? ksys_write+0x1a9/0x260
[ 1891.122214]  ? __ia32_sys_read+0xb0/0xb0
[ 1891.123140]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1891.124312]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1891.125474]  do_syscall_64+0x33/0x40
[ 1891.126308]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1891.127464] RIP: 0033:0x7fbe4d75bb19
[ 1891.128302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1891.132439] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1891.134152] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1891.135767] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1891.137393] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1891.139031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1891.140656] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 1891.155477] loop5: detected capacity change from 0 to 8388096
[ 1891.156765] FAULT_INJECTION: forcing a failure.
[ 1891.156765] name failslab, interval 1, probability 0, space 0, times 0
05:00:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000001b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1891.159316] CPU: 1 PID: 10401 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1891.160985] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1891.162749] Call Trace:
[ 1891.163318]  dump_stack+0x107/0x167
[ 1891.164089]  should_fail.cold+0x5/0xa
[ 1891.164888]  ? io_setup_async_rw+0x180/0x580
[ 1891.165817]  should_failslab+0x5/0x20
[ 1891.166621]  __kmalloc+0x72/0x390
[ 1891.167370]  io_setup_async_rw+0x180/0x580
[ 1891.168261]  ? iov_iter_restore+0x195/0x3a0
[ 1891.169175]  io_read+0x775/0x11e0
[ 1891.169907]  ? __is_insn_slot_addr+0x14c/0x290
[ 1891.170902]  ? kernel_text_address+0xf2/0x120
[ 1891.171851]  ? unwind_get_return_address+0x55/0xa0
[ 1891.172893]  ? create_prof_cpu_mask+0x20/0x20
[ 1891.173843]  ? kiocb_done+0xc90/0xc90
[ 1891.174665]  ? mark_lock+0xf5/0x2df0
[ 1891.175461]  ? lock_chain_count+0x20/0x20
[ 1891.176332]  ? __lock_acquire+0xbb1/0x5b00
[ 1891.177245]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1891.178348]  ? SOFTIRQ_verbose+0x10/0x10
[ 1891.179219]  ? kasan_save_stack+0x1b/0x40
[ 1891.180094]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1891.181277]  ? __io_queue_sqe+0x666/0x9d0
[ 1891.182268]  ? __lock_acquire+0xbb1/0x5b00
[ 1891.183191]  io_issue_sqe+0x2e8a/0x77b0
[ 1891.184050]  ? perf_trace_lock+0xac/0x490
[ 1891.184918]  ? SOFTIRQ_verbose+0x10/0x10
[ 1891.185781]  ? io_connect+0x610/0x610
[ 1891.186603]  ? lock_acquire+0x197/0x470
[ 1891.187454]  ? find_held_lock+0x2c/0x110
[ 1891.188321]  ? __fget_files+0x2cf/0x520
[ 1891.189153]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.190033]  __io_queue_sqe+0x90/0x9d0
[ 1891.190866]  ? io_issue_sqe+0x77b0/0x77b0
[ 1891.191740]  ? __fget_files+0x2f8/0x520
[ 1891.192579]  ? io_prep_rw+0x7f5/0x1050
[ 1891.193408]  io_submit_sqes+0x44aa/0x8610
[ 1891.194317]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.195382]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.196404]  ? find_held_lock+0x2c/0x110
[ 1891.197267]  ? io_submit_sqes+0x8610/0x8610
[ 1891.198182]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1891.199217]  ? wait_for_completion_io+0x270/0x270
[ 1891.200232]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1891.201204]  ? vfs_write+0x354/0xb10
[ 1891.201982]  ? fput_many+0x2f/0x1a0
[ 1891.202771]  ? ksys_write+0x1a9/0x260
[ 1891.203577]  ? __ia32_sys_read+0xb0/0xb0
[ 1891.204445]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1891.205550]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1891.206635]  do_syscall_64+0x33/0x40
[ 1891.207427]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1891.208505] RIP: 0033:0x7f8f6841db19
[ 1891.209288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1891.213164] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1891.214788] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1891.216286] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1891.217795] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1891.219319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1891.220831] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:00:21 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

05:00:21 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:21 executing program 7:
r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
syz_open_procfs$userns(0x0, &(0x7f00000001c0))
gettid()
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
r1 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc1}, &(0x7f0000000100)={0x0, "89d2508ded9a3576c3c8b97375f17e4ba5b039c35d02dcff5ad2018c9650f315f00391fc92dd2238d96b0440a29ddbeaed9f39da636690eac1637013b800e527", 0x38}, 0x48, r0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r1)
request_key(&(0x7f0000000180)='asymmetric\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000240)='keyring\x00', r0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r2, 0x0, 0x62ed2fd542ac0f11)

05:00:21 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:21 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 45)

05:00:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000002700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1891.443469] FAULT_INJECTION: forcing a failure.
[ 1891.443469] name failslab, interval 1, probability 0, space 0, times 0
[ 1891.446116] CPU: 0 PID: 10423 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1891.447693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1891.449569] Call Trace:
[ 1891.450176]  dump_stack+0x107/0x167
[ 1891.451019]  should_fail.cold+0x5/0xa
[ 1891.451885]  ? create_object.isra.0+0x3a/0xa20
[ 1891.452922]  should_failslab+0x5/0x20
[ 1891.453785]  kmem_cache_alloc+0x5b/0x310
[ 1891.454727]  create_object.isra.0+0x3a/0xa20
[ 1891.455719]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1891.456871]  __kmalloc+0x16e/0x390
[ 1891.457680]  io_setup_async_rw+0x180/0x580
[ 1891.458631]  ? iov_iter_restore+0x195/0x3a0
[ 1891.459619]  io_read+0x775/0x11e0
[ 1891.460416]  ? __is_insn_slot_addr+0x14c/0x290
[ 1891.461451]  ? kernel_text_address+0xf2/0x120
[ 1891.462472]  ? unwind_get_return_address+0x55/0xa0
[ 1891.463595]  ? create_prof_cpu_mask+0x20/0x20
[ 1891.464610]  ? kiocb_done+0xc90/0xc90
[ 1891.465471]  ? mark_lock+0xf5/0x2df0
[ 1891.466330]  ? lock_chain_count+0x20/0x20
[ 1891.467283]  ? __lock_acquire+0xbb1/0x5b00
[ 1891.468265]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1891.469456]  ? SOFTIRQ_verbose+0x10/0x10
[ 1891.470362]  ? kasan_save_stack+0x1b/0x40
[ 1891.471300]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1891.472437]  ? __io_queue_sqe+0x666/0x9d0
[ 1891.473388]  ? __lock_acquire+0xbb1/0x5b00
[ 1891.474350]  io_issue_sqe+0x2e8a/0x77b0
[ 1891.475266]  ? perf_trace_lock+0xac/0x490
[ 1891.476204]  ? SOFTIRQ_verbose+0x10/0x10
[ 1891.477125]  ? io_connect+0x610/0x610
[ 1891.477992]  ? lock_acquire+0x197/0x470
[ 1891.478900]  ? find_held_lock+0x2c/0x110
[ 1891.479823]  ? __fget_files+0x2cf/0x520
[ 1891.480723]  ? lock_downgrade+0x6d0/0x6d0
[ 1891.481672]  __io_queue_sqe+0x90/0x9d0
[ 1891.482558]  ? io_issue_sqe+0x77b0/0x77b0
[ 1891.483500]  ? __fget_files+0x2f8/0x520
[ 1891.484407]  ? io_prep_rw+0x7f5/0x1050
[ 1891.485295]  io_submit_sqes+0x44aa/0x8610
[ 1891.486272]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.487402]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1891.488490]  ? find_held_lock+0x2c/0x110
[ 1891.489409]  ? io_submit_sqes+0x8610/0x8610
[ 1891.490389]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1891.491489]  ? wait_for_completion_io+0x270/0x270
[ 1891.492582]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1891.493626]  ? vfs_write+0x354/0xb10
[ 1891.494464]  ? fput_many+0x2f/0x1a0
[ 1891.495293]  ? ksys_write+0x1a9/0x260
[ 1891.496151]  ? __ia32_sys_read+0xb0/0xb0
[ 1891.497071]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
05:00:21 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1891.498257]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1891.499663]  do_syscall_64+0x33/0x40
[ 1891.500502]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1891.501663] RIP: 0033:0x7f8f6841db19
[ 1891.502521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1891.506666] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1891.508373] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1891.509971] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1891.511592] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1891.513187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1891.514802] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:00:21 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

05:00:36 executing program 5:
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)="04", 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, {0x34}, 0x1}, 0x7f)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x74}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)
r3 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x2, 0x10420)
fsetxattr$security_capability(r3, &(0x7f0000000500), &(0x7f0000000540)=@v2={0x2000000, [{0x1, 0x2}, {0x3e, 0x401}]}, 0x14, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

05:00:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 46)

05:00:36 executing program 7:
pwritev(0xffffffffffffffff, &(0x7f0000000540)=[{&(0x7f0000000000)="72af684cf7655fca", 0x8}, {&(0x7f0000000040)="da51631b3f50f9eaf78b915f543f3aa8eff363433043329fb6bf0df432075956b78d11d261412d8230ddd9d8e96a82b5006105f659a92df408394556f31c39997529cc3dd3f5f5030c5527696b601b9f2045ae75b925dc0dfd0944cfeb16bc8e9215f19b46ddf69bd13ab696e6b56ee4cd091039f6a49c67e4172aca301a6d2f568a44253c0f7c432adb1cdae2e8be64999897d74fcbdedb481116a32e7c6e2e39c9772d144aacb66d145154231f9b59b1b2f2fc2df661bfc875f2ace1bebbe78391a1", 0xc3}, {&(0x7f0000000140)="563e1b44a3fdba5ce0659aa0ca6faf81cd530fb0e01e0abacfcd75b5c90815f08fe619009613e13243957ad02dc10674326f40717be154b83396c4cc8f2bf3787d6d7e55018e1fe65392eb59554051182effda23ece53b2f77a2d2cb90c98d04e86fd9e6535390bbe4e5fa58b27e4ab6be884608b4b92c1fccd5a543b45c7ced201b7e", 0x83}, {&(0x7f0000000200)="a92d6c713739a040c4909d3f9f38b168c806fb259ead32f73d8e7ca16c7fb9075e610f8dc963a412df38e751e9f40a003e69196946058cb550fc53cb5e9c769e7bd1d750f56e1b1123bbfe5a77402047825c1488e55696a99203000042531ff1d51f6982029f53497da13747ece3d71a0e96948cd7fc57a236f154649cc7d0c5ad6d550bdb9981a58f9e153461531d0f02fafe7e41858e69a889e433", 0x9c}, {&(0x7f00000002c0)="438e1e72d0b39ca4c8e8b866e5fdd8118cd9dbb46f169992f664cd8ca1c40f6d9af834975a064216fe36f944ec8a7eb3a263f7f7d84bcf5bb6ff8d5b08561332acaae968912bf4bd942f1ddbc59a60a055ea6592e1fc0b992ceccedf32ffafbaabd43494895b74ebbdce2c566d12e37134", 0x71}, {&(0x7f0000000340)="47c29a55df91be7a94ca309705a802afeb1802f1633a702d33617974ec0eb8b8c61ada3606530dbb172ec3cdf36ac01e1aca4cfbe65e7ef05b05a3f36abab46b4c79c2abef0618bf0ab09faa8ba79dfb34cd93cc4fce6f11fd0a86230a0792aefb98f43b9927733d0981a37abdcf7d7b6295e8354e47d258397bc79201df1b9cab951fbebeb50be23f0f7e2e00f7c05e9716d95dde3587642c44fa9ea0bffc4dac992bc9b913946ed3f94f2d35ab743465220895bfedc68d5517b7bb4e58b31b1beca83fb8828c385f312d7c6dfe435c9179163f0a37cde16bb936323d667ab7de47f4fcd384bf03f5c6307482882efb0d", 0xf1}, {&(0x7f0000000440)="a0a11e3e20a47b910e6307ca5955eba0de354c9ad4c21472911a486edca018dba6f7c0bd55b8b716d2351fa581b6a8cb7e6822df0719b4cd04a8f39db21fcd5981bc12950220e27cf9123796c35e7fa878d37f996f6d6f409c982725a2861902707fa4585e4261087292a3c29ae1008b09dd4a117d7dc48d826c171f775f3d061bd10ec526fe8ba3b927e8e6c167219d864a9b9eb7d5f2650dd3b76b9119b131e17ab36659802fc5b05d0b4844edac82efe23587a78064eb74bf287f504bec74465b4bdb5ab7d1693ccc40000b", 0xcd}], 0x7, 0x1, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000005c0), 0x402000, 0x0)
write$rfkill(r0, &(0x7f0000000600)={0x4, 0x4, 0x1, 0x0, 0x1}, 0x8)
r1 = syz_io_uring_complete(0x0)
fsetxattr$security_selinux(r1, &(0x7f0000000640), &(0x7f0000000680)='system_u:object_r:apt_lock_t:s0\x00', 0x20, 0x2)
fsetxattr$trusted_overlay_upper(r1, &(0x7f00000006c0), &(0x7f0000000700)={0x0, 0xfb, 0xd3, 0x6, 0xb5, "d076743dfb9c43e87a68ba0ab86a3ad5", "b9f9454f9c4595b2db8e502ea7c0f238493c77a42aecac53dfa33479896ee83ddcf9932efa39228fda67b075418fda9cd263c5790b7e72f7f1b09c3a24dd3a52954359298d25f3e9cb7f0e7a4503b00d6308fb043af6a45ac85d20c13e04e553c5a038fa3abd16f92bbb6d4e584016d7b9fc515ff333912ea36ef3066d24174486859bba98545dfe328e38b947a296f397c7f39e097ba5f0aee95c8458595316732c03db39d7d018e14f353fc795d87773e6b46ff84845c003cb39bda985"}, 0xd3, 0x0)
r2 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000800)='./binderfs2/binder-control\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000840)=""/27, 0x1b, 0x6)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r3=>r2, {0x80000001}}, './file0\x00'})
dup(r3)
recvmmsg$unix(r1, &(0x7f0000002480)=[{{&(0x7f0000000980)=@abs, 0x6e, &(0x7f0000000c40)=[{&(0x7f0000000a00)=""/253, 0xfd}, {&(0x7f0000000b00)=""/36, 0x24}, {&(0x7f0000000b40)=""/249, 0xf9}], 0x3, &(0x7f0000000c80)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000000cc0), 0x6e, &(0x7f0000000d40)}}, {{&(0x7f0000000d80), 0x6e, &(0x7f0000002000)=[{&(0x7f0000000e00)=""/235, 0xeb}, {&(0x7f0000000f00)=""/192, 0xc0}, {&(0x7f0000000fc0)=""/15, 0xf}, {&(0x7f0000001000)=""/4096, 0x1000}], 0x4, &(0x7f0000002040)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{0x0, 0x0, &(0x7f0000002340)=[{&(0x7f0000002140)=""/100, 0x64}, {&(0x7f00000021c0)=""/57, 0x39}, {&(0x7f0000002200)=""/65, 0x41}, {&(0x7f0000002280)=""/45, 0x2d}, {&(0x7f00000022c0)=""/103, 0x67}], 0x5, &(0x7f00000023c0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}], 0x4, 0x10040, &(0x7f0000002580))
perf_event_open(&(0x7f0000000900)={0x2, 0x80, 0x3, 0x0, 0x7f, 0x76, 0x0, 0x101, 0x200, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xff, 0x1, @perf_bp={&(0x7f00000008c0), 0x8}, 0x820, 0x5, 0x7fff, 0x5, 0xfffffffffffffffa, 0x4, 0x8001, 0x0, 0x8001, 0x0, 0xd1e9}, 0x0, 0x9, r5, 0x2)
symlink(&(0x7f00000025c0)='./file0\x00', &(0x7f0000002600)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000002640)='./file0\x00', 0x10d3c1, 0x4)
sendmsg$sock(r4, &(0x7f0000002b40)={&(0x7f0000002680)=@l2tp6={0xa, 0x0, 0x6, @rand_addr=' \x01\x00', 0x9}, 0x80, &(0x7f0000002a40)=[{&(0x7f0000002700)="ccc8154ea993d875764e6b3ee9c985b5dbf4c26d09c48d1348b3fa2e8904429369ee9d2678fd1a2c2a69753a8954cfce6cfcf10293cfec2b7044932bd0f1b7c24cfa4bd85b95098b040a4276a633110fc368b521082eb3df733974fd12d49ccf019e49550309a2dfb679b0ab02821d8d487f7d578ec364c6daee35220f9b54f5599a65860b560eec391bdf19d1ddf2bf04150cc2b5754dc7e4c5cf38ebe83e506a074fce887d812e52e66ff747461095f7b20a2e985de938d6e567e2309710", 0xbf}, {&(0x7f00000027c0)="4a0fe4fbf576058581cc489c08c1f6e9f5b77feabe65", 0x16}, {&(0x7f0000002800)="956ec55da17a75d08d210a5cf1f8a4b646ff5be7342ecfdd8991f3aba4de0aa988faac50c558c49bf594b3139128551122b91447e4801d616c0a66a7c85fe953b3939180c74933f5a000b505161fcb38f49251ef383331984a9e03605825fb3980c589702424e36bab3a6c77afc8747e59338642dae6ebba822c77b104e0cfc70921223734ba4f21456f54e28e632edbc4d1adf545ab244b0db287ae28beac5d3302d5307c2e4f06e4812892e83fc9ba19e1d664778746968c533843c9b5d59ca7c8d0c8ef22563a845caf45eb6af6d19d2da32c", 0xd4}, {&(0x7f0000002900)="e38e35f3b701198ca0305a3456e16872043bacf9f04faa6c9b68d39733c2deb737afc5", 0x23}, {&(0x7f0000002940)="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", 0xfb}], 0x5, &(0x7f0000002ac0)=[@mark={{0x14, 0x1, 0x24, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x10000}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x7af}}], 0x60}, 0x800)
r6 = epoll_create1(0x80000)
r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000002b80), 0x10d200, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000002bc0)={0x8000000d})
r8 = openat$nvram(0xffffffffffffff9c, &(0x7f0000002c00), 0x18a00, 0x0)
epoll_wait(r8, &(0x7f0000002c40)=[{}, {}, {}], 0x3, 0x80000001)

05:00:36 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

05:00:36 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

05:00:36 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, 0x0, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000004000000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1906.926953] FAULT_INJECTION: forcing a failure.
[ 1906.926953] name failslab, interval 1, probability 0, space 0, times 0
[ 1906.929084] CPU: 0 PID: 10454 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1906.930168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1906.931472] Call Trace:
[ 1906.931889]  dump_stack+0x107/0x167
[ 1906.932463]  should_fail.cold+0x5/0xa
[ 1906.933057]  ? create_object.isra.0+0x3a/0xa20
[ 1906.933772]  should_failslab+0x5/0x20
[ 1906.934375]  kmem_cache_alloc+0x5b/0x310
[ 1906.935020]  ? mark_held_locks+0x9e/0xe0
[ 1906.935658]  create_object.isra.0+0x3a/0xa20
[ 1906.936345]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1906.937148]  kmem_cache_alloc_bulk+0x168/0x320
[ 1906.937867]  io_submit_sqes+0x6fe6/0x8610
[ 1906.938524]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1906.939311]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1906.940093]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1906.940848]  ? find_held_lock+0x2c/0x110
[ 1906.941485]  ? io_submit_sqes+0x8610/0x8610
[ 1906.941944] FAULT_INJECTION: forcing a failure.
[ 1906.941944] name failslab, interval 1, probability 0, space 0, times 0
[ 1906.942157]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1906.942174]  ? wait_for_completion_io+0x270/0x270
[ 1906.942198]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1906.946908]  ? vfs_write+0x354/0xb10
[ 1906.947485]  ? fput_many+0x2f/0x1a0
[ 1906.948050]  ? ksys_write+0x1a9/0x260
[ 1906.948642]  ? __ia32_sys_read+0xb0/0xb0
[ 1906.949275]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1906.950088]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1906.950894]  do_syscall_64+0x33/0x40
[ 1906.951472]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1906.952264] RIP: 0033:0x7fbe4d75bb19
[ 1906.952844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1906.955726] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1906.956954] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1906.958102] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1906.959252] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1906.960394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1906.961540] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 1906.962719] CPU: 1 PID: 10457 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1906.964298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1906.966155] Call Trace:
[ 1906.966751]  dump_stack+0x107/0x167
[ 1906.967583]  should_fail.cold+0x5/0xa
[ 1906.968439]  ? __io_queue_sqe+0x666/0x9d0
[ 1906.969372]  should_failslab+0x5/0x20
[ 1906.970224]  kmem_cache_alloc_trace+0x55/0x320
[ 1906.971251]  ? lock_downgrade+0x6d0/0x6d0
[ 1906.972179]  __io_queue_sqe+0x666/0x9d0
[ 1906.973074]  ? io_issue_sqe+0x77b0/0x77b0
[ 1906.973992]  ? __fget_files+0x2f8/0x520
[ 1906.974889]  ? io_prep_rw+0x7f5/0x1050
[ 1906.975764]  io_submit_sqes+0x44aa/0x8610
[ 1906.976725]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1906.977829]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1906.978911]  ? find_held_lock+0x2c/0x110
[ 1906.979819]  ? io_submit_sqes+0x8610/0x8610
[ 1906.980787]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1906.981859]  ? wait_for_completion_io+0x270/0x270
[ 1906.982940]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1906.983962]  ? vfs_write+0x354/0xb10
[ 1906.984783]  ? fput_many+0x2f/0x1a0
[ 1906.985588]  ? ksys_write+0x1a9/0x260
[ 1906.986428]  ? __ia32_sys_read+0xb0/0xb0
[ 1906.987338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1906.988489]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1906.989631]  do_syscall_64+0x33/0x40
[ 1906.990453]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1906.991588] RIP: 0033:0x7f8f6841db19
[ 1906.992407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1906.996355] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1906.997969] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1906.999488] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1907.001009] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1907.002521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1907.004043] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:00:36 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, 0x0, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

05:00:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000005100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:50 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

05:00:50 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000002000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:50 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0)

05:00:50 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, 0x0, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:50 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:50 executing program 5:
r0 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x91, 0x6, 0x3, 0x0, 0x0, 0x3000000000000, 0x20080, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2400, 0x2, @perf_bp, 0x10000, 0x5, 0x10000000, 0x2, 0x7fff, 0x0, 0x2, 0x0, 0xffffc000, 0x0, 0x7fffffff}, 0x0, 0xd, 0xffffffffffffffff, 0x3)
r1 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x80, 0x0, 0x3, 0x0, 0x0, 0x82c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x2, @perf_config_ext={0x6, 0x1000}, 0x10200, 0xfffffffffffffffe, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x40d, r0, 0x1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout_data(r2, 0x107, 0xd, &(0x7f0000000080)={0x0, 0x0}, 0x10)

05:00:50 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 47)

05:00:50 executing program 7:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x50102}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000140))
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='maps\x00')
io_setup(0x3, &(0x7f0000000000))
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="20000000130000000500000003ffff000000000041000000b42cc261000080008431827f99a15d842f1cce067672e4d22d7d880d25f4c3c92eff006328a2e120f3000000000000000dc4086caa1d0385fecf88f1edd66fec"], 0x46000)
ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x127c, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x1, 0x84)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
signalfd4(r3, &(0x7f0000000040), 0x8, 0x180000)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000006c0)={{{@in6=@initdev, @in=@empty}}, {{@in=@initdev}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8)
ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000180))
syz_io_uring_setup(0x47aa, &(0x7f0000000280)={0x0, 0x15b6, 0x8, 0x1, 0x67}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f00000001c0)=0x20)
ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f0000000380))
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f00000007c0)={{r3}, 0x0, 0x14, @unused=[0x3, 0xffffffff, 0x3ff, 0x1], @name="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"})
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
sendmmsg(r1, &(0x7f0000001040), 0x3fffffffffffdca, 0x40)

[ 1920.860666] FAULT_INJECTION: forcing a failure.
[ 1920.860666] name failslab, interval 1, probability 0, space 0, times 0
[ 1920.863131] CPU: 1 PID: 10481 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1920.864610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1920.866370] Call Trace:
[ 1920.866939]  dump_stack+0x107/0x167
[ 1920.867732]  should_fail.cold+0x5/0xa
[ 1920.868559]  ? create_object.isra.0+0x3a/0xa20
[ 1920.869559]  should_failslab+0x5/0x20
[ 1920.870393]  kmem_cache_alloc+0x5b/0x310
[ 1920.871301]  create_object.isra.0+0x3a/0xa20
[ 1920.872257]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1920.873374]  kmem_cache_alloc_trace+0x151/0x320
[ 1920.874390]  ? lock_downgrade+0x6d0/0x6d0
[ 1920.875317]  __io_queue_sqe+0x666/0x9d0
[ 1920.876196]  ? io_issue_sqe+0x77b0/0x77b0
[ 1920.877103]  ? __fget_files+0x2f8/0x520
[ 1920.877980]  ? io_prep_rw+0x7f5/0x1050
[ 1920.878841]  io_submit_sqes+0x44aa/0x8610
[ 1920.879793]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1920.880877]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1920.881933]  ? find_held_lock+0x2c/0x110
[ 1920.882826]  ? io_submit_sqes+0x8610/0x8610
[ 1920.883782]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1920.884833]  ? wait_for_completion_io+0x270/0x270
[ 1920.885400] FAULT_INJECTION: forcing a failure.
[ 1920.885400] name failslab, interval 1, probability 0, space 0, times 0
[ 1920.885887]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1920.889867]  ? vfs_write+0x354/0xb10
[ 1920.890684]  ? fput_many+0x2f/0x1a0
[ 1920.891495]  ? ksys_write+0x1a9/0x260
[ 1920.892327]  ? __ia32_sys_read+0xb0/0xb0
[ 1920.893219]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1920.894368]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1920.895503]  do_syscall_64+0x33/0x40
[ 1920.896316]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1920.897433] RIP: 0033:0x7f8f6841db19
[ 1920.898243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1920.902253] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1920.903924] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1920.905476] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1920.907046] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1920.908615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1920.910184] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1920.911785] CPU: 0 PID: 10480 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1920.913420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1920.915374] Call Trace:
[ 1920.915989]  dump_stack+0x107/0x167
[ 1920.916852]  should_fail.cold+0x5/0xa
[ 1920.917744]  ? create_object.isra.0+0x3a/0xa20
[ 1920.918812]  should_failslab+0x5/0x20
[ 1920.919710]  kmem_cache_alloc+0x5b/0x310
[ 1920.920660]  ? mark_held_locks+0x9e/0xe0
[ 1920.921619]  create_object.isra.0+0x3a/0xa20
[ 1920.922643]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1920.923847]  kmem_cache_alloc_bulk+0x168/0x320
[ 1920.924924]  io_submit_sqes+0x6fe6/0x8610
[ 1920.925906]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1920.927082]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1920.928248]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1920.929383]  ? find_held_lock+0x2c/0x110
[ 1920.930341]  ? io_submit_sqes+0x8610/0x8610
[ 1920.931369]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1920.932502]  ? wait_for_completion_io+0x270/0x270
[ 1920.933632]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1920.934717]  ? vfs_write+0x354/0xb10
[ 1920.935597]  ? fput_many+0x2f/0x1a0
[ 1920.936448]  ? ksys_write+0x1a9/0x260
[ 1920.937339]  ? __ia32_sys_read+0xb0/0xb0
[ 1920.938293]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1920.939528]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1920.940738]  do_syscall_64+0x33/0x40
[ 1920.941610]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1920.942808] RIP: 0033:0x7fbe4d75bb19
[ 1920.943684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1920.947994] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1920.949774] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1920.951457] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1920.953127] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1920.954802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1920.956490] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:00:50 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:50 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000003000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:00:50 executing program 5:
pipe(&(0x7f00000014c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18}, './file0\x00'})
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000180)={0x1, 0x6, 0x1000, 0x4f88, 0x5, "57cd1928bd78d702"})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x14081, 0x0)
openat(r1, &(0x7f00000002c0)='./file1\x00', 0x140, 0x0)
getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x5, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x4b68, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01}, 0x14}}, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f0000000100))
clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:00:50 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:50 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

05:00:51 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 48)

05:00:51 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:00:51 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000004000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1921.215355] FAULT_INJECTION: forcing a failure.
[ 1921.215355] name failslab, interval 1, probability 0, space 0, times 0
[ 1921.217808] CPU: 1 PID: 10508 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1921.219254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1921.220970] Call Trace:
[ 1921.221529]  dump_stack+0x107/0x167
[ 1921.222299]  should_fail.cold+0x5/0xa
[ 1921.223105]  ? create_object.isra.0+0x3a/0xa20
[ 1921.224064]  should_failslab+0x5/0x20
[ 1921.224859]  kmem_cache_alloc+0x5b/0x310
[ 1921.225704]  create_object.isra.0+0x3a/0xa20
[ 1921.226610]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1921.227672]  __kmalloc+0x16e/0x390
[ 1921.228416]  io_setup_async_rw+0x180/0x580
[ 1921.229287]  ? iov_iter_restore+0x195/0x3a0
[ 1921.230181]  io_read+0x775/0x11e0
[ 1921.230900]  ? __is_insn_slot_addr+0x14c/0x290
[ 1921.231854]  ? kernel_text_address+0xf2/0x120
[ 1921.232789]  ? unwind_get_return_address+0x55/0xa0
[ 1921.233801]  ? create_prof_cpu_mask+0x20/0x20
[ 1921.234725]  ? kiocb_done+0xc90/0xc90
[ 1921.235540]  ? mark_lock+0xf5/0x2df0
[ 1921.236336]  ? lock_chain_count+0x20/0x20
[ 1921.237217]  ? __lock_acquire+0xbb1/0x5b00
[ 1921.238141]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1921.239258]  ? SOFTIRQ_verbose+0x10/0x10
[ 1921.240113]  ? kasan_save_stack+0x1b/0x40
[ 1921.240993]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1921.242066]  ? __io_queue_sqe+0x666/0x9d0
[ 1921.242948]  ? __lock_acquire+0xbb1/0x5b00
[ 1921.243863]  io_issue_sqe+0x2e8a/0x77b0
[ 1921.244721]  ? perf_trace_lock+0xac/0x490
[ 1921.245603]  ? SOFTIRQ_verbose+0x10/0x10
[ 1921.246473]  ? io_connect+0x610/0x610
[ 1921.247301]  ? lock_acquire+0x197/0x470
[ 1921.248137]  ? find_held_lock+0x2c/0x110
[ 1921.249007]  ? __fget_files+0x2cf/0x520
[ 1921.249851]  ? lock_downgrade+0x6d0/0x6d0
[ 1921.250741]  __io_queue_sqe+0x90/0x9d0
[ 1921.251587]  ? io_issue_sqe+0x77b0/0x77b0
[ 1921.252462]  ? __fget_files+0x2f8/0x520
[ 1921.253311]  ? io_prep_rw+0x7f5/0x1050
[ 1921.254148]  io_submit_sqes+0x44aa/0x8610
[ 1921.255073]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1921.256113]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1921.257124]  ? find_held_lock+0x2c/0x110
[ 1921.257983]  ? io_submit_sqes+0x8610/0x8610
[ 1921.258897]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1921.259917]  ? wait_for_completion_io+0x270/0x270
[ 1921.260929]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1921.261902]  ? vfs_write+0x354/0xb10
[ 1921.262684]  ? fput_many+0x2f/0x1a0
[ 1921.263455]  ? ksys_write+0x1a9/0x260
[ 1921.264254]  ? __ia32_sys_read+0xb0/0xb0
[ 1921.265111]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1921.266212]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1921.267304]  do_syscall_64+0x33/0x40
[ 1921.268085]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1921.269155] RIP: 0033:0x7f8f6841db19
[ 1921.269934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1921.273730] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1921.275277] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1921.276724] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1921.278161] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1921.279596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1921.281032] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:01:08 executing program 7:
r0 = syz_io_uring_setup(0x13cb, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_WRITEV={0x2, 0x0, 0x4000, @fd_index=0x49, 0x401, 0x0, 0x0, 0x0, 0x1}, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETVERSION(r4, 0x40087602, &(0x7f0000000500)=0xffffffffffffffff)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000008, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xbea, &(0x7f0000000240)={0x0, 0x701d, 0x2, 0x0, 0x170}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000004c0)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r8, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$EXT4_IOC_CHECKPOINT(r8, 0x4004662b, &(0x7f0000000480)=0x95f7e0e549193df1)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r9, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_submit(r5, r7, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x4, 0x0, r9, 0x0, r3}, 0x1000)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x8005)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x7, 0x80, 0x0, 0x8, 0x0, 0x3f, 0x984c8, 0xe, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x1, 0xdd1}, 0x39, 0x6, 0x6a, 0x7, 0xd3, 0x4, 0x0, 0x0, 0x1, 0x0, 0xfd}, 0x0, 0x3, r8, 0xc4afbbc305747767)

05:01:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000005000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 49)

05:01:08 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

05:01:08 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x806cad}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000180))
socket$inet_udp(0x2, 0x2, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x2160}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
signalfd4(r0, &(0x7f00000001c0)={[0x3]}, 0x8, 0x80800)
copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000900)={@in6={{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x0, 0x33, 0x0, "4fb2386f65a856b6930930052d7d4e52fc4032fe98f268baabdf34269819ec36e44c87f906b59567acb1dd5aa5ba7be8ecc7069f172fddc076e97b1bb7ad34493270d4dbba4a2ca52cc13ca18e08c805"}, 0xd8)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f00000024c0)={0x0, 0x6, 0x930000, {0x0, 0x7}})
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000200))
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x51, 0x0, 0x0, 0x3ff, 0x1, 0x1}, 0x10000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x20d315)
symlinkat(&(0x7f0000000240)='./file1\x00', r1, &(0x7f0000000280)='./file1\x00')

05:01:08 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

05:01:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1938.267696] FAULT_INJECTION: forcing a failure.
[ 1938.267696] name failslab, interval 1, probability 0, space 0, times 0
[ 1938.270356] CPU: 1 PID: 10530 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1938.271918] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1938.273771] Call Trace:
[ 1938.274364]  dump_stack+0x107/0x167
[ 1938.275209]  should_fail.cold+0x5/0xa
[ 1938.276070]  ? create_object.isra.0+0x3a/0xa20
[ 1938.277097]  should_failslab+0x5/0x20
[ 1938.277951]  kmem_cache_alloc+0x5b/0x310
[ 1938.278863]  ? mark_held_locks+0x9e/0xe0
[ 1938.279790]  create_object.isra.0+0x3a/0xa20
[ 1938.280774]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1938.281911]  kmem_cache_alloc_bulk+0x168/0x320
[ 1938.282940]  io_submit_sqes+0x6fe6/0x8610
[ 1938.283889]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1938.285001]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1938.286123]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1938.287211]  ? find_held_lock+0x2c/0x110
[ 1938.288129]  ? io_submit_sqes+0x8610/0x8610
[ 1938.289100]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1938.290194]  ? wait_for_completion_io+0x270/0x270
[ 1938.291277]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1938.291836] FAULT_INJECTION: forcing a failure.
[ 1938.291836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1938.292315]  ? vfs_write+0x354/0xb10
[ 1938.292338]  ? fput_many+0x2f/0x1a0
[ 1938.292366]  ? ksys_write+0x1a9/0x260
[ 1938.297602]  ? __ia32_sys_read+0xb0/0xb0
[ 1938.298519]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1938.299731]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1938.300888]  do_syscall_64+0x33/0x40
[ 1938.301724]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1938.302864] RIP: 0033:0x7fbe4d75bb19
[ 1938.303701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1938.307821] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1938.309533] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1938.311124] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1938.312729] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1938.314322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1938.315925] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 1938.317570] CPU: 0 PID: 10524 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1938.319312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1938.321353] Call Trace:
[ 1938.322009]  dump_stack+0x107/0x167
[ 1938.322903]  should_fail.cold+0x5/0xa
[ 1938.323851]  _copy_to_iter+0x264/0x12d0
[ 1938.324832]  ? seq_read_iter+0xd4d/0x12b0
[ 1938.326024]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 1938.327246]  ? __virt_addr_valid+0x170/0x5d0
[ 1938.328314]  ? __check_object_size+0x319/0x440
[ 1938.329400]  seq_read_iter+0xdcb/0x12b0
[ 1938.330371]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 1938.331603]  proc_reg_read_iter+0x20a/0x2e0
[ 1938.332670]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 1938.333926]  io_read+0x2dc/0x11e0
[ 1938.334779]  ? __is_insn_slot_addr+0x14c/0x290
[ 1938.335899]  ? kernel_text_address+0xf2/0x120
[ 1938.336991]  ? unwind_get_return_address+0x55/0xa0
[ 1938.338182]  ? create_prof_cpu_mask+0x20/0x20
[ 1938.339278]  ? kiocb_done+0xc90/0xc90
[ 1938.340215]  ? mark_lock+0xf5/0x2df0
[ 1938.341131]  ? lock_chain_count+0x20/0x20
[ 1938.342139]  ? __lock_acquire+0xbb1/0x5b00
[ 1938.343212]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1938.344492]  ? SOFTIRQ_verbose+0x10/0x10
[ 1938.345474]  ? kasan_save_stack+0x1b/0x40
[ 1938.346469]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1938.347714]  ? __io_queue_sqe+0x666/0x9d0
[ 1938.348733]  ? __lock_acquire+0xbb1/0x5b00
[ 1938.349778]  io_issue_sqe+0x2e8a/0x77b0
[ 1938.350748]  ? perf_trace_lock+0xac/0x490
[ 1938.351770]  ? SOFTIRQ_verbose+0x10/0x10
[ 1938.352767]  ? io_connect+0x610/0x610
[ 1938.353712]  ? lock_acquire+0x197/0x470
[ 1938.354678]  ? find_held_lock+0x2c/0x110
[ 1938.355685]  ? __fget_files+0x2cf/0x520
[ 1938.356666]  ? lock_downgrade+0x6d0/0x6d0
[ 1938.357690]  __io_queue_sqe+0x90/0x9d0
[ 1938.358653]  ? io_issue_sqe+0x77b0/0x77b0
[ 1938.359679]  ? __fget_files+0x2f8/0x520
[ 1938.360652]  ? io_prep_rw+0x7f5/0x1050
[ 1938.361617]  io_submit_sqes+0x44aa/0x8610
[ 1938.362681]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1938.363904]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1938.365087]  ? find_held_lock+0x2c/0x110
[ 1938.366085]  ? io_submit_sqes+0x8610/0x8610
[ 1938.367144]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1938.368330]  ? wait_for_completion_io+0x270/0x270
[ 1938.369512]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1938.370647]  ? vfs_write+0x354/0xb10
[ 1938.371570]  ? fput_many+0x2f/0x1a0
[ 1938.372457]  ? ksys_write+0x1a9/0x260
[ 1938.373392]  ? __ia32_sys_read+0xb0/0xb0
[ 1938.374393]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1938.375690]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1938.376957]  do_syscall_64+0x33/0x40
[ 1938.377865]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1938.379115] RIP: 0033:0x7f8f6841db19
[ 1938.380043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1938.384558] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1938.386430] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1938.388178] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1938.389957] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1938.391718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1938.393453] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:01:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000006000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 50)

05:01:08 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

05:01:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000007000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:08 executing program 7:
sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x50, 0x0, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x20, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x3f}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@empty}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x18, 0x4, 0x7f}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x4}]}]}, 0x50}}, 0x20000000)
r0 = getpgrp(0xffffffffffffffff)
r1 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3f, 0x3000000000000000}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, r0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r2, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e)
pwrite64(r1, &(0x7f00000002c0)="01fa149f2e542af1a789b21de25569cb832d8a9b576c9e70479a2e161afeab0b904d061a959c6e4e6bba79cb1623c4171130591fed7f058e4c3c1a25c5f9521fffb1b4e6384ec3c397f9329d40048ba2ca0f4b343951f1684d4d0292a7fc5321120fc4bb7ff8709b4434475216317f8cb34810d09af8b333a22fcbadcb6e4ac50a9141bb7f97d90ad133ce805dbdd1756b2afa2dbe", 0x95, 0x200)

05:01:08 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0x0)
r1 = pidfd_open(r0, 0x0)
r2 = dup(r1)
setns(r2, 0x2020000)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = perf_event_open(&(0x7f0000000100)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
openat(r2, &(0x7f00000000c0)='./file1\x00', 0x880, 0x8)
dup2(r4, r3)
r5 = perf_event_open(&(0x7f0000000100)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
accept4$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x0, @none}, &(0x7f0000000080)=0xe, 0x0)
dup2(r6, r5)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
faccessat2(r7, 0x0, 0x4e, 0x1000)
r8 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
flistxattr(r8, &(0x7f0000000180)=""/33, 0x21)

[ 1939.016207] FAULT_INJECTION: forcing a failure.
[ 1939.016207] name failslab, interval 1, probability 0, space 0, times 0
[ 1939.018617] CPU: 1 PID: 10549 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1939.020251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1939.022154] Call Trace:
[ 1939.022774]  dump_stack+0x107/0x167
[ 1939.023655]  should_fail.cold+0x5/0xa
[ 1939.024456]  ? io_setup_async_rw+0x180/0x580
[ 1939.025516]  should_failslab+0x5/0x20
[ 1939.026315]  __kmalloc+0x72/0x390
[ 1939.027131]  io_setup_async_rw+0x180/0x580
[ 1939.028089]  ? iov_iter_restore+0x195/0x3a0
[ 1939.029000]  io_read+0x775/0x11e0
[ 1939.029869]  ? __is_insn_slot_addr+0x14c/0x290
[ 1939.031034]  ? kernel_text_address+0xf2/0x120
[ 1939.031996]  ? unwind_get_return_address+0x55/0xa0
[ 1939.033172]  ? create_prof_cpu_mask+0x20/0x20
[ 1939.034223]  ? kiocb_done+0xc90/0xc90
[ 1939.035160]  ? mark_lock+0xf5/0x2df0
[ 1939.036043]  ? lock_chain_count+0x20/0x20
[ 1939.037038]  ? __lock_acquire+0xbb1/0x5b00
[ 1939.038028]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1939.039125]  ? SOFTIRQ_verbose+0x10/0x10
[ 1939.040101]  ? kasan_save_stack+0x1b/0x40
[ 1939.040970]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1939.042020]  ? __io_queue_sqe+0x666/0x9d0
[ 1939.042956]  ? __lock_acquire+0xbb1/0x5b00
[ 1939.044006]  io_issue_sqe+0x2e8a/0x77b0
[ 1939.045069]  ? perf_trace_lock+0xac/0x490
[ 1939.046073]  ? SOFTIRQ_verbose+0x10/0x10
[ 1939.046989]  ? io_connect+0x610/0x610
[ 1939.047803]  ? lock_acquire+0x197/0x470
[ 1939.048640]  ? find_held_lock+0x2c/0x110
[ 1939.049613]  ? __fget_files+0x2cf/0x520
[ 1939.050576]  ? lock_downgrade+0x6d0/0x6d0
[ 1939.051576]  __io_queue_sqe+0x90/0x9d0
[ 1939.052405]  ? io_issue_sqe+0x77b0/0x77b0
[ 1939.053260]  ? __fget_files+0x2f8/0x520
[ 1939.054096]  ? io_prep_rw+0x7f5/0x1050
[ 1939.054900]  io_submit_sqes+0x44aa/0x8610
[ 1939.055816]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1939.056912]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1939.057976]  ? find_held_lock+0x2c/0x110
[ 1939.058846]  ? io_submit_sqes+0x8610/0x8610
[ 1939.059876]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1939.061089]  ? wait_for_completion_io+0x270/0x270
[ 1939.062115]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1939.063230]  ? vfs_write+0x354/0xb10
[ 1939.064167]  ? fput_many+0x2f/0x1a0
[ 1939.065033]  ? ksys_write+0x1a9/0x260
[ 1939.066041]  ? __ia32_sys_read+0xb0/0xb0
[ 1939.066908]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1939.068139]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1939.069208]  do_syscall_64+0x33/0x40
[ 1939.069988]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1939.071132] RIP: 0033:0x7f8f6841db19
[ 1939.072012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1939.076104] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1939.077703] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1939.079212] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1939.080700] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1939.082347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1939.084119] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:01:31 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 51)

05:01:31 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000008000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:31 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1961.749522] FAULT_INJECTION: forcing a failure.
05:01:31 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

05:01:31 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

05:01:31 executing program 5:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./file1\x00', &(0x7f0000000180), &(0x7f0000000280)='system_u:object_r:ssh_keysign_exec_t:s0\x00', 0x28, 0x2)
fsmount(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4d53, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c63616368656f6e65c002d2167377c0d0a7b9aadaf8ba2c005f3c0035e3016ade811947ee836dfb4635c86ed71c7044b628"])

05:01:31 executing program 7:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x8}}}}}, 0x0)
pipe2(&(0x7f0000000000), 0x800)

05:01:31 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1961.749522] name failslab, interval 1, probability 0, space 0, times 0
[ 1961.752392] CPU: 1 PID: 10577 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1961.753894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1961.755725] Call Trace:
[ 1961.756306]  dump_stack+0x107/0x167
[ 1961.757105]  should_fail.cold+0x5/0xa
[ 1961.757940]  ? create_object.isra.0+0x3a/0xa20
[ 1961.758939]  should_failslab+0x5/0x20
[ 1961.759785]  kmem_cache_alloc+0x5b/0x310
[ 1961.760675]  create_object.isra.0+0x3a/0xa20
[ 1961.761624]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1961.762732]  __kmalloc+0x16e/0x390
[ 1961.763549]  io_setup_async_rw+0x180/0x580
[ 1961.764473]  ? iov_iter_restore+0x195/0x3a0
[ 1961.765414]  io_read+0x775/0x11e0
[ 1961.766174]  ? __is_insn_slot_addr+0x14c/0x290
[ 1961.767177]  ? kernel_text_address+0xf2/0x120
[ 1961.768178]  ? unwind_get_return_address+0x55/0xa0
[ 1961.769235]  ? create_prof_cpu_mask+0x20/0x20
[ 1961.770209]  ? kiocb_done+0xc90/0xc90
[ 1961.771033]  ? mark_lock+0xf5/0x2df0
[ 1961.771865]  ? lock_chain_count+0x20/0x20
[ 1961.772762]  ? __lock_acquire+0xbb1/0x5b00
[ 1961.773701]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1961.774831]  ? SOFTIRQ_verbose+0x10/0x10
[ 1961.775755]  ? kasan_save_stack+0x1b/0x40
[ 1961.776708]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1961.777880]  ? __io_queue_sqe+0x666/0x9d0
[ 1961.778850]  ? __lock_acquire+0xbb1/0x5b00
[ 1961.779855]  io_issue_sqe+0x2e8a/0x77b0
[ 1961.780796]  ? perf_trace_lock+0xac/0x490
[ 1961.781754]  ? SOFTIRQ_verbose+0x10/0x10
[ 1961.782700]  ? io_connect+0x610/0x610
[ 1961.783612]  ? lock_acquire+0x197/0x470
[ 1961.784529]  ? find_held_lock+0x2c/0x110
[ 1961.785481]  ? __fget_files+0x2cf/0x520
[ 1961.786402]  ? lock_downgrade+0x6d0/0x6d0
[ 1961.787372]  __io_queue_sqe+0x90/0x9d0
[ 1961.788304]  ? io_issue_sqe+0x77b0/0x77b0
[ 1961.789271]  ? __fget_files+0x2f8/0x520
[ 1961.790199]  ? io_prep_rw+0x7f5/0x1050
[ 1961.791115]  io_submit_sqes+0x44aa/0x8610
[ 1961.792131]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.793291]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.794411]  ? find_held_lock+0x2c/0x110
[ 1961.795362]  ? io_submit_sqes+0x8610/0x8610
[ 1961.796383]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1961.797507]  ? wait_for_completion_io+0x270/0x270
[ 1961.798623]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1961.799714]  ? vfs_write+0x354/0xb10
[ 1961.800580]  ? fput_many+0x2f/0x1a0
[ 1961.801423]  ? ksys_write+0x1a9/0x260
[ 1961.802305]  ? __ia32_sys_read+0xb0/0xb0
[ 1961.803251]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1961.804483]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1961.805682]  do_syscall_64+0x33/0x40
[ 1961.806550]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1961.807747] RIP: 0033:0x7f8f6841db19
[ 1961.808612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1961.812875] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1961.814633] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1961.816293] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1961.817943] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1961.819618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1961.821267] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1961.830639] FAULT_INJECTION: forcing a failure.
[ 1961.830639] name failslab, interval 1, probability 0, space 0, times 0
[ 1961.833383] CPU: 1 PID: 10586 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1961.834978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1961.836910] Call Trace:
[ 1961.837528]  dump_stack+0x107/0x167
[ 1961.838374]  should_fail.cold+0x5/0xa
[ 1961.839255]  ? create_object.isra.0+0x3a/0xa20
[ 1961.840336]  should_failslab+0x5/0x20
[ 1961.841219]  kmem_cache_alloc+0x5b/0x310
[ 1961.842158]  ? mark_held_locks+0x9e/0xe0
[ 1961.843103]  create_object.isra.0+0x3a/0xa20
[ 1961.844120]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1961.845306]  kmem_cache_alloc_bulk+0x168/0x320
[ 1961.846367]  io_submit_sqes+0x6fe6/0x8610
[ 1961.847340]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1961.848504]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.849654]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1961.850782]  ? find_held_lock+0x2c/0x110
[ 1961.851741]  ? io_submit_sqes+0x8610/0x8610
[ 1961.852747]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1961.853864]  ? wait_for_completion_io+0x270/0x270
[ 1961.854983]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1961.856075]  ? vfs_write+0x354/0xb10
[ 1961.856940]  ? fput_many+0x2f/0x1a0
[ 1961.857784]  ? ksys_write+0x1a9/0x260
[ 1961.858667]  ? __ia32_sys_read+0xb0/0xb0
[ 1961.859626]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1961.860845]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1961.862038]  do_syscall_64+0x33/0x40
[ 1961.862906]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1961.864096] RIP: 0033:0x7fbe4d75bb19
[ 1961.864957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1961.869201] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1961.870954] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
05:01:31 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x8)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000006c3a919a3da76dea90ccb1000000efffffff00"/244])
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0)
ioctl$DVD_AUTH(r3, 0x5390, &(0x7f0000000000)=@lrpcs={0x0, 0x0, 0x1})
sendfile(r2, r3, &(0x7f0000000200)=0x8001, 0x5)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r2)
sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f0000000600)=ANY=[@ANYBLOB="44000000cba3cc5730d3d974ddc6329e9fbe1a9ed3f642eab5f1dc4aa1f7d33af4d00a9974de02f9648a39374f9ed463a0a233b4f561ee5fcbd5bfb2b380bdbf21870fa6f07992737e8ff64d6d47b20ea24677e5a1e5217145754157b3f7be8935e1e6679aabad5d511d9abbe6b334740ec2ed28dadab0e160501f3e935908a888feec662b44b6237ffb90ab2d249b67e72f6c8388517a283487cdec5e99d29dca4d2fa38fe1fbe6d53736ef5b718b36d5d1bc103d17b952c228229fc0fee79aae3991ec77ac896c86b5bdc238cfac726febd6c1827b5a77fe3958b2", @ANYRES16=r4, @ANYRESOCT, @ANYBLOB="060036000d0000000620360010000000060036001a000000060036003c0000000600360042000000"], 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendfile(0xffffffffffffffff, r5, &(0x7f0000000200)=0x6, 0x3)
write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629)
r6 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x200, 0x7)
pwrite64(r6, &(0x7f00000000c0)="04", 0x1, 0x3ff03)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x1000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0xffffffff000)

[ 1961.872621] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1961.874689] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1961.876346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1961.877986] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:01:31 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

05:01:31 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000018000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:31 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1961.958436] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 1961.961107] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 1961.963004] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 1961.964783] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 10 00 00 02 00
[ 1961.966822] print_req_error: 339 callbacks suppressed
[ 1961.966844] blk_update_request: I/O error, dev sr0, sector 64 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[ 1961.972416] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1961.973969] blk_update_request: I/O error, dev sr0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1961.976731] buffer_io_error: 342 callbacks suppressed
[ 1961.976744] Buffer I/O error on dev sr0, logical block 64, async page read
[ 1961.980288] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1961.981832] blk_update_request: I/O error, dev sr0, sector 65 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1961.984515] Buffer I/O error on dev sr0, logical block 65, async page read
[ 1961.986478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1961.988003] blk_update_request: I/O error, dev sr0, sector 66 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0
[ 1961.990654] Buffer I/O error on dev sr0, logical block 66, async page read
[ 1961.992657] Buffer I/O error on dev sr0, logical block 67, async page read
[ 1961.994560] Buffer I/O error on dev sr0, logical block 68, async page read
[ 1961.996684] Buffer I/O error on dev sr0, logical block 69, async page read
[ 1961.998794] Buffer I/O error on dev sr0, logical block 70, async page read
[ 1962.000700] Buffer I/O error on dev sr0, logical block 71, async page read
05:01:31 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:01:31 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:31 executing program 5:
rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100))
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x2000000}}}, 0x108)
pselect6(0x40, &(0x7f00000013c0)={0x0, 0xfffffffffffffeff, 0x0, 0x9d, 0x5, 0x0, 0x8}, 0x0, &(0x7f0000001440)={0xe5, 0x80000000a, 0x0, 0x2000000000000005, 0x1, 0x401, 0x81, 0x104c0cd1}, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)={[0x7]}, 0x8})
fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1)
quotactl(0x0, &(0x7f0000001340)='./file0\x00', 0x0, &(0x7f0000000180)="637b5d08aede0e6ded4f1e4ea75480cf7f06d1e53798a2acdb3a4a8f435a290000c65a7edea4f0d894b6")
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000200)={0x1, 0x0, {0xa, 0x19, 0x12, 0xd, 0x9, 0xb54, 0x3, 0x142, 0xffffffffffffffff}})
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
fallocate(0xffffffffffffffff, 0x4, 0x0, 0x68cb)
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/41, 0x29, 0x3)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000900)={0x101, {{0xa, 0x4e24, 0xffffffff, @mcast1, 0x8001}}, 0x0, 0x8, [{{0xa, 0x4e22, 0x4, @empty}}, {{0xa, 0x4e22, 0x6, @rand_addr=' \x01\x00', 0x3}}, {{0xa, 0x4e21, 0xff, @mcast2, 0x9}}, {{0xa, 0x4e20, 0x7fffffff, @local, 0x5}}, {{0xa, 0x4e22, 0xfffffffd, @remote}}, {{0xa, 0x4e23, 0x2, @local, 0x400}}, {{0xa, 0x4e21, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x9}}, {{0xa, 0x4e20, 0xffffff55, @private2, 0x2}}]}, 0x490)
socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f00000001c0)=0x2)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000008c0), 0xc)
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000240)=0xffffffffffffffff)
unshare(0x48020200)

05:01:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000001c000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 52)

05:01:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

05:01:32 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1962.332850] FAULT_INJECTION: forcing a failure.
[ 1962.332850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1962.335635] CPU: 1 PID: 10619 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1962.337239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1962.339166] Call Trace:
[ 1962.339797]  dump_stack+0x107/0x167
[ 1962.340658]  should_fail.cold+0x5/0xa
[ 1962.341554]  _copy_to_iter+0x264/0x12d0
[ 1962.342497]  ? seq_read_iter+0xd4d/0x12b0
[ 1962.343487]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 1962.344636]  ? __virt_addr_valid+0x170/0x5d0
[ 1962.345665]  ? __check_object_size+0x319/0x440
[ 1962.346729]  seq_read_iter+0xdcb/0x12b0
[ 1962.347698]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 1962.348894]  proc_reg_read_iter+0x20a/0x2e0
[ 1962.349898]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 1962.351094]  io_read+0x2dc/0x11e0
[ 1962.351917]  ? __is_insn_slot_addr+0x14c/0x290
[ 1962.352988]  ? kernel_text_address+0xf2/0x120
[ 1962.354050]  ? unwind_get_return_address+0x55/0xa0
[ 1962.355138]  ? create_prof_cpu_mask+0x20/0x20
[ 1962.356126]  ? kiocb_done+0xc90/0xc90
[ 1962.356954]  ? mark_lock+0xf5/0x2df0
[ 1962.357770]  ? lock_chain_count+0x20/0x20
[ 1962.358672]  ? __lock_acquire+0xbb1/0x5b00
[ 1962.359627]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1962.360764]  ? SOFTIRQ_verbose+0x10/0x10
[ 1962.361646]  ? kasan_save_stack+0x1b/0x40
[ 1962.362542]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1962.363653]  ? __io_queue_sqe+0x666/0x9d0
[ 1962.364564]  ? __lock_acquire+0xbb1/0x5b00
[ 1962.365486]  io_issue_sqe+0x2e8a/0x77b0
[ 1962.366363]  ? perf_trace_lock+0xac/0x490
[ 1962.367266]  ? SOFTIRQ_verbose+0x10/0x10
[ 1962.368164]  ? io_connect+0x610/0x610
[ 1962.368998]  ? lock_acquire+0x197/0x470
[ 1962.369859]  ? find_held_lock+0x2c/0x110
[ 1962.370757]  ? __fget_files+0x2cf/0x520
[ 1962.371636]  ? lock_downgrade+0x6d0/0x6d0
[ 1962.372542]  __io_queue_sqe+0x90/0x9d0
[ 1962.373401]  ? io_issue_sqe+0x77b0/0x77b0
[ 1962.374302]  ? __fget_files+0x2f8/0x520
[ 1962.375173]  ? io_prep_rw+0x7f5/0x1050
[ 1962.376040]  io_submit_sqes+0x44aa/0x8610
[ 1962.376981]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1962.378071]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1962.379124]  ? find_held_lock+0x2c/0x110
[ 1962.380024]  ? io_submit_sqes+0x8610/0x8610
[ 1962.380973]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1962.382026]  ? wait_for_completion_io+0x270/0x270
[ 1962.383079]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1962.384096]  ? vfs_write+0x354/0xb10
[ 1962.384908]  ? fput_many+0x2f/0x1a0
[ 1962.385705]  ? ksys_write+0x1a9/0x260
[ 1962.386556]  ? __ia32_sys_read+0xb0/0xb0
[ 1962.387446]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1962.388593]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1962.389718]  do_syscall_64+0x33/0x40
[ 1962.390529]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1962.391648] RIP: 0033:0x7f8f6841db19
[ 1962.392458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1962.396466] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1962.398123] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1962.399681] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1962.401234] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1962.402787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1962.404342] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:01:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 53)

05:01:47 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

05:01:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:47 executing program 5:
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block', 0x280800, 0x160)
sendmsg$nl_generic(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002900000826bd7000ffdbdf250f4a47eb568aa769c5030000000000000008006b0000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000011}, 0x40001)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80d00, 0x2b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0xd8, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0xc, 0x11, 0x0, 0x1, [@typed={0x7, 0x76, 0x0, 0x0, @str='\xf3+\x00'}]}, @generic="2ef9b9d79bb827e8b023d973f9a9b317430606a5eb854dcf902b63643a28dfea2b84efeeb6dd5765d40299ce6e50190d9408877186bdf575b0c6c65b685d75e818361d6b1d17e3cf85df0b3de40dc1ec6c27fdc611b63c9c9d1c566dd4d417a0d86a6b907220885899fea9320188a414523d893995ae45cdc0276ce695fd4969066c7fe9dbabe7b9f1185eaa5447775b2f81f9484dc04a388b73b9313d8395bb5588a2d2d59aaee6064f9ea0235eebdd073e56f754222c96"]}, 0xd8}}, 0x0)

05:01:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000065000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:01:47 executing program 7:
bind$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000056c0)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000001580)=[{&(0x7f0000000280)=""/190, 0xbe}, {&(0x7f0000000340)=""/130, 0x82}, {&(0x7f0000000180)=""/62, 0x3e}, {&(0x7f0000000400)=""/91, 0x5b}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/128, 0x80}], 0x7}}, {{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000001600)=""/21, 0x15}], 0x2, &(0x7f0000001680)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd8}}, {{&(0x7f0000001780)=@abs, 0x6e, &(0x7f0000002c40)=[{&(0x7f0000001800)=""/106, 0x6a}, {&(0x7f0000001880)=""/50, 0x32}, {&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/96, 0x60}, {&(0x7f0000002940)=""/236, 0xec}, {&(0x7f0000002a40)=""/220, 0xdc}, {&(0x7f0000002b40)=""/224, 0xe0}], 0x7, &(0x7f0000002cc0)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r0=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}, {{0x0, 0x0, &(0x7f0000005180)=[{&(0x7f0000002d00)=""/4096, 0x1000}, {&(0x7f0000003d00)=""/48, 0x30}, {&(0x7f0000003d40)=""/161, 0xa1}, {&(0x7f0000003e00)=""/170, 0xaa}, {&(0x7f0000003ec0)=""/119, 0x77}, {&(0x7f0000003f40)=""/109, 0x6d}, {&(0x7f0000003fc0)=""/167, 0xa7}, {&(0x7f0000004080)=""/4096, 0x1000}, {&(0x7f0000005080)=""/240, 0xf0}], 0x9, &(0x7f0000005240)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000005ee90000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32], 0x68}}, {{&(0x7f00000052c0)=@abs, 0x6e, &(0x7f0000005680)=[{&(0x7f0000005340)=""/80, 0x50}, {&(0x7f00000053c0)=""/165, 0xa5}, {&(0x7f0000005480)=""/217, 0xd9}, {&(0x7f0000005580)=""/199, 0xc7}], 0x4}}], 0x5, 0x40000000, &(0x7f0000005800)={0x77359400})
fchmodat(r0, &(0x7f0000005840)='./file0\x00', 0x98)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = fork()
ptrace(0x10, r1)
pidfd_open(r1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)

05:01:47 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:01:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

[ 1977.183735] FAULT_INJECTION: forcing a failure.
[ 1977.183735] name failslab, interval 1, probability 0, space 0, times 0
[ 1977.186518] CPU: 0 PID: 10635 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1977.188224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1977.190267] Call Trace:
[ 1977.190913]  dump_stack+0x107/0x167
[ 1977.191824]  should_fail.cold+0x5/0xa
[ 1977.192758]  ? create_object.isra.0+0x3a/0xa20
[ 1977.193878]  should_failslab+0x5/0x20
[ 1977.194809]  kmem_cache_alloc+0x5b/0x310
[ 1977.195824]  create_object.isra.0+0x3a/0xa20
[ 1977.196892]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1977.198250]  kmem_cache_alloc_trace+0x151/0x320
[ 1977.199469]  ? lock_downgrade+0x6d0/0x6d0
[ 1977.200595]  __io_queue_sqe+0x666/0x9d0
[ 1977.201578]  ? io_issue_sqe+0x77b0/0x77b0
[ 1977.202593]  ? __fget_files+0x2f8/0x520
[ 1977.203667]  ? io_prep_rw+0x7f5/0x1050
[ 1977.204713]  io_submit_sqes+0x44aa/0x8610
[ 1977.205817]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.207049]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.208307]  ? find_held_lock+0x2c/0x110
[ 1977.209306]  ? io_submit_sqes+0x8610/0x8610
[ 1977.210364]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1977.211550]  ? wait_for_completion_io+0x270/0x270
[ 1977.212740]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1977.213871]  ? vfs_write+0x354/0xb10
[ 1977.214783]  ? fput_many+0x2f/0x1a0
[ 1977.215681]  ? ksys_write+0x1a9/0x260
[ 1977.216629]  ? __ia32_sys_read+0xb0/0xb0
[ 1977.217684]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1977.218984]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1977.220272]  do_syscall_64+0x33/0x40
[ 1977.221183]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1977.222456] RIP: 0033:0x7f8f6841db19
[ 1977.223358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1977.227865] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1977.229739] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1977.231484] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1977.233244] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1977.234989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1977.236744] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1977.265456] netlink: 184 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1977.267643] FAULT_INJECTION: forcing a failure.
[ 1977.267643] name failslab, interval 1, probability 0, space 0, times 0
[ 1977.269313] CPU: 1 PID: 10650 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1977.270286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1977.271443] Call Trace:
[ 1977.271833]  dump_stack+0x107/0x167
[ 1977.272349]  should_fail.cold+0x5/0xa
[ 1977.272884]  ? create_object.isra.0+0x3a/0xa20
[ 1977.273523]  should_failslab+0x5/0x20
[ 1977.274057]  kmem_cache_alloc+0x5b/0x310
[ 1977.274633]  ? mark_held_locks+0x9e/0xe0
[ 1977.275208]  create_object.isra.0+0x3a/0xa20
[ 1977.275826]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1977.276541]  kmem_cache_alloc_bulk+0x168/0x320
[ 1977.277187]  io_submit_sqes+0x6fe6/0x8610
[ 1977.277777]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1977.278476]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.279166]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.279848]  ? find_held_lock+0x2c/0x110
[ 1977.280417]  ? io_submit_sqes+0x8610/0x8610
[ 1977.281026]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1977.281703]  ? wait_for_completion_io+0x270/0x270
[ 1977.282378]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1977.283030]  ? vfs_write+0x354/0xb10
[ 1977.283552]  ? fput_many+0x2f/0x1a0
[ 1977.284084]  ? ksys_write+0x1a9/0x260
[ 1977.284620]  ? __ia32_sys_read+0xb0/0xb0
[ 1977.285190]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1977.285918]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1977.286649]  do_syscall_64+0x33/0x40
[ 1977.287172]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1977.287900] RIP: 0033:0x7fbe4d75bb19
[ 1977.288422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1977.290966] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1977.292032] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1977.293021] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1977.294023] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1977.295017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1977.296014] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:01:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:01:47 executing program 7:
r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000080)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x15}, 0x800)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)
syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:01:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000f0000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 1977.355453] FAULT_INJECTION: forcing a failure.
[ 1977.355453] name failslab, interval 1, probability 0, space 0, times 0
[ 1977.357137] CPU: 1 PID: 10662 Comm: syz-executor.0 Not tainted 5.10.238 #1
[ 1977.358102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1977.359257] Call Trace:
05:01:47 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

05:01:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1977.359641]  dump_stack+0x107/0x167
[ 1977.360413]  should_fail.cold+0x5/0xa
[ 1977.360959]  should_failslab+0x5/0x20
[ 1977.361492]  kmem_cache_alloc_bulk+0x4b/0x320
[ 1977.362128]  io_submit_sqes+0x6fe6/0x8610
[ 1977.362713]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1977.363409]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.364135]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1977.364810]  ? find_held_lock+0x2c/0x110
[ 1977.365388]  ? io_submit_sqes+0x8610/0x8610
[ 1977.366002]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1977.366675]  ? wait_for_completion_io+0x270/0x270
[ 1977.367348]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1977.368010]  ? vfs_write+0x354/0xb10
[ 1977.368529]  ? fput_many+0x2f/0x1a0
[ 1977.369042]  ? ksys_write+0x1a9/0x260
[ 1977.369576]  ? __ia32_sys_read+0xb0/0xb0
[ 1977.370144]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1977.370876]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1977.371603]  do_syscall_64+0x33/0x40
[ 1977.372133]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1977.372845] RIP: 0033:0x7f225ff90b19
[ 1977.373367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1977.375926] RSP: 002b:00007f225d506188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1977.376988] RAX: ffffffffffffffda RBX: 00007f22600a3f60 RCX: 00007f225ff90b19
[ 1977.377975] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1977.378961] RBP: 00007f225d5061d0 R08: 0000000000000000 R09: 0000000000000000
[ 1977.379956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1977.380946] R13: 00007ffc070b7daf R14: 00007f225d506300 R15: 0000000000022000
[ 1977.448938] netlink: 184 bytes leftover after parsing attributes in process `syz-executor.5'.
05:02:00 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

05:02:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000030100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:00 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

05:02:00 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x19b5, &(0x7f0000003480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
syz_io_uring_setup(0x5ccf, &(0x7f0000000140)={0x0, 0x23a0, 0x0, 0x2, 0x23e, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x8003a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=<r5=>0x0, &(0x7f0000000100))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[@ANYBLOB="010005000100000018190000a0b9cbf804d8dbe81a5839cab44d8451f09fab61a882b5ef320d97046035ed73fdb1a425d1405f56ee9329073dd917e202a824757da7bdabaa1eb3cea9d07cf1c658472b7cb746e74c6547628753777727fc6bd4b327066502e7faedb67d5ece5f3762b251adfedb9fc6ff09641b41930859e3821a38f934ea1b80a891454d2867b2db537d713692e6bba7549328e264875b2bf1435b4f9f549698c91d16", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB='./file2\x00'])
syz_io_uring_submit(r5, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3}}, 0x7ff)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x2, 0x2, 0x0, 0x0, 0x0, 0x1}, 0x4a)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:00 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

05:02:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1990.725686] FAULT_INJECTION: forcing a failure.
[ 1990.725686] name failslab, interval 1, probability 0, space 0, times 0
05:02:00 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 54)

05:02:00 executing program 5:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
dup2(r0, r1)
r3 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0)
r4 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x8c000, 0x8)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x13, r4, 0x10000000)
ioctl$LOOP_SET_FD(r3, 0x4c00, r1)

[ 1990.727364] CPU: 1 PID: 10688 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 1990.728568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1990.729707] Call Trace:
[ 1990.730076]  dump_stack+0x107/0x167
[ 1990.730583]  should_fail.cold+0x5/0xa
[ 1990.731110]  ? create_object.isra.0+0x3a/0xa20
[ 1990.731732]  should_failslab+0x5/0x20
[ 1990.732261]  kmem_cache_alloc+0x5b/0x310
[ 1990.732829]  ? mark_held_locks+0x9e/0xe0
[ 1990.733392]  create_object.isra.0+0x3a/0xa20
[ 1990.733999]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1990.734739]  kmem_cache_alloc_bulk+0x168/0x320
[ 1990.735392]  io_submit_sqes+0x6fe6/0x8610
[ 1990.735979]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1990.736698]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.737384]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.738086]  ? find_held_lock+0x2c/0x110
[ 1990.738673]  ? io_submit_sqes+0x8610/0x8610
[ 1990.739301]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1990.740002]  ? wait_for_completion_io+0x270/0x270
[ 1990.740696]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1990.741367]  ? vfs_write+0x354/0xb10
[ 1990.741904]  ? fput_many+0x2f/0x1a0
[ 1990.742431]  ? ksys_write+0x1a9/0x260
[ 1990.742976]  ? __ia32_sys_read+0xb0/0xb0
[ 1990.743559]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1990.744318]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1990.745060]  do_syscall_64+0x33/0x40
[ 1990.745598]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1990.746331] RIP: 0033:0x7fbe4d75bb19
[ 1990.746862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1990.749491] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1990.750590] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 1990.751614] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1990.752639] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1990.753663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1990.754689] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 1990.775474] FAULT_INJECTION: forcing a failure.
[ 1990.775474] name failslab, interval 1, probability 0, space 0, times 0
[ 1990.776605] FAULT_INJECTION: forcing a failure.
[ 1990.776605] name failslab, interval 1, probability 0, space 0, times 0
[ 1990.777207] CPU: 1 PID: 10689 Comm: syz-executor.0 Not tainted 5.10.238 #1
[ 1990.780901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1990.782052] Call Trace:
[ 1990.782412]  dump_stack+0x107/0x167
[ 1990.782916]  should_fail.cold+0x5/0xa
[ 1990.783441]  ? create_object.isra.0+0x3a/0xa20
[ 1990.784072]  should_failslab+0x5/0x20
[ 1990.784591]  kmem_cache_alloc+0x5b/0x310
[ 1990.785150]  create_object.isra.0+0x3a/0xa20
[ 1990.785743]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1990.786435]  kmem_cache_alloc_bulk+0x168/0x320
[ 1990.787063]  io_submit_sqes+0x6fe6/0x8610
[ 1990.787632]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 1990.788333]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.789021]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.789674]  ? find_held_lock+0x2c/0x110
[ 1990.790235]  ? io_submit_sqes+0x8610/0x8610
[ 1990.790825]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1990.791480]  ? wait_for_completion_io+0x270/0x270
[ 1990.792146]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1990.792769]  ? vfs_write+0x354/0xb10
[ 1990.793278]  ? fput_many+0x2f/0x1a0
[ 1990.793780]  ? ksys_write+0x1a9/0x260
[ 1990.794294]  ? __ia32_sys_read+0xb0/0xb0
[ 1990.794857]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1990.795574]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1990.796279]  do_syscall_64+0x33/0x40
[ 1990.796778]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1990.797476] RIP: 0033:0x7f225ff90b19
[ 1990.797972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1990.800487] RSP: 002b:00007f225d506188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1990.801543] RAX: ffffffffffffffda RBX: 00007f22600a3f60 RCX: 00007f225ff90b19
[ 1990.802505] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1990.803473] RBP: 00007f225d5061d0 R08: 0000000000000000 R09: 0000000000000000
[ 1990.804450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1990.805409] R13: 00007ffc070b7daf R14: 00007f225d506300 R15: 0000000000022000
[ 1990.806420] CPU: 0 PID: 10690 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1990.808041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1990.809939] Call Trace:
[ 1990.810544]  dump_stack+0x107/0x167
[ 1990.811387]  should_fail.cold+0x5/0xa
[ 1990.812281]  ? create_object.isra.0+0x3a/0xa20
[ 1990.813329]  should_failslab+0x5/0x20
[ 1990.814228]  kmem_cache_alloc+0x5b/0x310
[ 1990.815156]  create_object.isra.0+0x3a/0xa20
[ 1990.816192]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1990.817352]  kmem_cache_alloc_trace+0x151/0x320
[ 1990.818419]  ? lock_downgrade+0x6d0/0x6d0
[ 1990.819388]  __io_queue_sqe+0x666/0x9d0
[ 1990.820329]  ? io_issue_sqe+0x77b0/0x77b0
[ 1990.821269]  ? __fget_files+0x2f8/0x520
[ 1990.822190]  ? io_prep_rw+0x7f5/0x1050
[ 1990.823093]  io_submit_sqes+0x44aa/0x8610
[ 1990.824098]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.825246]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1990.826389]  ? find_held_lock+0x2c/0x110
[ 1990.827322]  ? io_submit_sqes+0x8610/0x8610
[ 1990.828326]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1990.829436]  ? wait_for_completion_io+0x270/0x270
[ 1990.830535]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1990.831600]  ? vfs_write+0x354/0xb10
[ 1990.832478]  ? fput_many+0x2f/0x1a0
[ 1990.833310]  ? ksys_write+0x1a9/0x260
[ 1990.834227]  ? __ia32_sys_read+0xb0/0xb0
[ 1990.835172]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1990.836386]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1990.837571]  do_syscall_64+0x33/0x40
[ 1990.838425]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1990.839597] RIP: 0033:0x7f8f6841db19
[ 1990.840481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1990.844759] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1990.846520] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1990.848184] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1990.849833] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1990.851482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1990.853125] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:02:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000080040100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:00 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

05:02:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000050100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:00 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 55)

05:02:00 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r2, &(0x7f0000000240)="01", 0x1)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r4}], 0x1, 0x5)
clock_gettime(0x1, &(0x7f0000000140)={<r5=>0x0, <r6=>0x0})
mq_timedsend(r4, &(0x7f0000000140), 0xffffffffffffff9e, 0x3, &(0x7f00000001c0)={r5, r6+60000000})
r7 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0)
copy_file_range(r7, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000002c0), 0x0, 0x0, 0x1)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000180)=ANY=[@ANYBLOB="1700a6842059615679ddcc2807d6f8e7960600", @ANYRES32=<r8=>r7, @ANYBLOB="0000000000310000002f66696c653100293a868b"])
clock_gettime(0x0, &(0x7f0000000380)={<r9=>0x0, <r10=>0x0})
mq_timedsend(r8, &(0x7f0000000440)="25c7a1b65d76c9479fd9986057d09474ec75fd2375439e74eb3db3733a1f46c58035b5db59ea7bc0201a1835e013848fc02d1b21c06ba4cb6785ac2be1b325c098d9e8eca98f7da63f6fb2a199c24705a8b99ab32b70ea3455b07bae84a53e0f7c6c198e40f74f6873551439ab26e7bc3579d4f4b13f2f9e", 0x78, 0x7, &(0x7f00000003c0)={r9, r10+60000000})
mq_open(0x0, 0x0, 0x0, 0x0)

[ 1990.995335] loop5: detected capacity change from 0 to 262144
05:02:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1991.057557] FAULT_INJECTION: forcing a failure.
[ 1991.057557] name failslab, interval 1, probability 0, space 0, times 0
[ 1991.060161] CPU: 0 PID: 10710 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 1991.061776] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1991.063723] Call Trace:
[ 1991.064345]  dump_stack+0x107/0x167
[ 1991.065215]  should_fail.cold+0x5/0xa
[ 1991.066090]  ? __io_queue_sqe+0x666/0x9d0
[ 1991.067068]  should_failslab+0x5/0x20
[ 1991.067965]  kmem_cache_alloc_trace+0x55/0x320
[ 1991.069005]  ? lock_downgrade+0x6d0/0x6d0
[ 1991.069977]  __io_queue_sqe+0x666/0x9d0
[ 1991.070895]  ? io_issue_sqe+0x77b0/0x77b0
[ 1991.071881]  ? __fget_files+0x2f8/0x520
[ 1991.072799]  ? io_prep_rw+0x7f5/0x1050
[ 1991.073719]  io_submit_sqes+0x44aa/0x8610
[ 1991.074701]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 1991.075843]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 1991.076971]  ? find_held_lock+0x2c/0x110
[ 1991.077925]  ? io_submit_sqes+0x8610/0x8610
[ 1991.078965]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1991.080108]  ? wait_for_completion_io+0x270/0x270
[ 1991.081235]  ? rcu_read_lock_any_held+0x75/0xa0
[ 1991.082306]  ? vfs_write+0x354/0xb10
[ 1991.083167]  ? fput_many+0x2f/0x1a0
[ 1991.084042]  ? ksys_write+0x1a9/0x260
[ 1991.084908]  ? __ia32_sys_read+0xb0/0xb0
[ 1991.085869]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1991.087082]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1991.088285]  do_syscall_64+0x33/0x40
[ 1991.089142]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1991.090308] RIP: 0033:0x7f8f6841db19
[ 1991.091156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1991.095330] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1991.097107] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 1991.098738] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 1991.100372] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 1991.102008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1991.103629] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 1991.162605] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
05:02:15 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 56)

05:02:15 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

05:02:15 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000060100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:15 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43, 0x0, 0x0, 0x0)

05:02:15 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:15 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[], 0xfdef)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={<r3=>r0, 0xfffffffffffffff7, 0x101, 0x1})
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000100)=0x3)
pread64(r1, &(0x7f0000000cc0)=""/212, 0xd4, 0x8)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x5, 0x80000001, 0x4})
write$binfmt_elf64(r0, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x9, 0x91, 0x4, 0x17df, 0x2, 0x3, 0xacb3, 0x29, 0x40, 0xf0, 0x6e8a0065, 0x7f, 0x38, 0x1, 0xa778, 0x0, 0x1}, [{0x6, 0x7fffffff, 0x994, 0x7f, 0x2, 0xffffffff, 0x3, 0x1}, {0x4, 0xcdb1, 0x7f, 0x9, 0x2, 0x3f, 0x9, 0x1f}], "304dc35e083750ac70edf29480807413eb57a00c67512e5e7baed3dba7e04dda59f2b3cb118e5445f260688e6baebf79b035bdcd1bb27861f643ccc0e97bb204eb9ccada13b16c966cae9b950f34b05eeb5f91de1062f8618c524b117777bee91fe8658fff162da9142bc1e1fca741d60c78cab3135c667496ff2701984f4fb44c3427415cecf9e9051b41f607ad30ed956bb2349e683f466ba1cd19afdf", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xb4e)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x660c)

05:02:15 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ff1000/0x3000)=nil)
shmat(r0, &(0x7f0000ff6000/0x1000)=nil, 0x5000)
msync(&(0x7f0000ff3000/0x9000)=nil, 0x9000, 0x4)
shmctl$SHM_INFO(r0, 0xe, &(0x7f00000001c0)=""/204)

05:02:15 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

[ 2005.309087] FAULT_INJECTION: forcing a failure.
[ 2005.309087] name failslab, interval 1, probability 0, space 0, times 0
[ 2005.310931] CPU: 0 PID: 10737 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2005.312026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2005.313343] Call Trace:
[ 2005.313768]  dump_stack+0x107/0x167
[ 2005.314347]  should_fail.cold+0x5/0xa
[ 2005.314943]  ? io_setup_async_rw+0x180/0x580
[ 2005.315646]  should_failslab+0x5/0x20
[ 2005.316269]  __kmalloc+0x72/0x390
[ 2005.316818]  io_setup_async_rw+0x180/0x580
[ 2005.317481]  ? iov_iter_restore+0x195/0x3a0
[ 2005.318181]  io_read+0x775/0x11e0
[ 2005.318726]  ? __is_insn_slot_addr+0x14c/0x290
[ 2005.319425]  ? kernel_text_address+0xf2/0x120
[ 2005.320145]  ? unwind_get_return_address+0x55/0xa0
[ 2005.320915]  ? create_prof_cpu_mask+0x20/0x20
[ 2005.321614]  ? kiocb_done+0xc90/0xc90
[ 2005.322201]  ? mark_lock+0xf5/0x2df0
[ 2005.322800]  ? lock_chain_count+0x20/0x20
[ 2005.323420]  ? __lock_acquire+0xbb1/0x5b00
[ 2005.324115]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2005.324930]  ? SOFTIRQ_verbose+0x10/0x10
[ 2005.325567]  ? kasan_save_stack+0x1b/0x40
[ 2005.325967] FAULT_INJECTION: forcing a failure.
[ 2005.325967] name failslab, interval 1, probability 0, space 0, times 0
[ 2005.326234]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2005.326256]  ? __io_queue_sqe+0x666/0x9d0
[ 2005.330084]  ? __lock_acquire+0xbb1/0x5b00
[ 2005.330751]  io_issue_sqe+0x2e8a/0x77b0
[ 2005.331389]  ? perf_trace_lock+0xac/0x490
[ 2005.332044]  ? SOFTIRQ_verbose+0x10/0x10
[ 2005.332691]  ? io_connect+0x610/0x610
[ 2005.333307]  ? lock_acquire+0x197/0x470
[ 2005.333942]  ? find_held_lock+0x2c/0x110
[ 2005.334592]  ? __fget_files+0x2cf/0x520
[ 2005.335209]  ? lock_downgrade+0x6d0/0x6d0
[ 2005.335842]  __io_queue_sqe+0x90/0x9d0
[ 2005.336468]  ? io_issue_sqe+0x77b0/0x77b0
[ 2005.337096]  ? __fget_files+0x2f8/0x520
[ 2005.337741]  ? io_prep_rw+0x7f5/0x1050
[ 2005.338372]  io_submit_sqes+0x44aa/0x8610
[ 2005.339032]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.339824]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.340591]  ? find_held_lock+0x2c/0x110
[ 2005.341249]  ? io_submit_sqes+0x8610/0x8610
[ 2005.341935]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2005.342706]  ? wait_for_completion_io+0x270/0x270
[ 2005.343465]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2005.344200]  ? vfs_write+0x354/0xb10
[ 2005.344775]  ? fput_many+0x2f/0x1a0
[ 2005.345360]  ? ksys_write+0x1a9/0x260
[ 2005.345956]  ? __ia32_sys_read+0xb0/0xb0
[ 2005.346584]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2005.347420]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2005.348202]  do_syscall_64+0x33/0x40
[ 2005.348789]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2005.349581] RIP: 0033:0x7f8f6841db19
[ 2005.350168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2005.352998] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2005.354132] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 2005.355199] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2005.356284] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.357385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2005.358470] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
[ 2005.359620] CPU: 1 PID: 10744 Comm: syz-executor.0 Not tainted 5.10.238 #1
[ 2005.361120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2005.362862] Call Trace:
[ 2005.363442]  dump_stack+0x107/0x167
[ 2005.364237]  should_fail.cold+0x5/0xa
[ 2005.365047]  ? create_object.isra.0+0x3a/0xa20
[ 2005.366024]  should_failslab+0x5/0x20
[ 2005.366826]  kmem_cache_alloc+0x5b/0x310
[ 2005.367690]  ? mark_held_locks+0x9e/0xe0
[ 2005.368563]  create_object.isra.0+0x3a/0xa20
[ 2005.369500]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2005.370578]  kmem_cache_alloc_bulk+0x168/0x320
[ 2005.371562]  io_submit_sqes+0x6fe6/0x8610
[ 2005.372463]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2005.373517]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.374572]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.375595]  ? find_held_lock+0x2c/0x110
[ 2005.376482]  ? io_submit_sqes+0x8610/0x8610
[ 2005.377393]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2005.378412]  ? wait_for_completion_io+0x270/0x270
[ 2005.379430]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2005.380414]  ? vfs_write+0x354/0xb10
[ 2005.381197]  ? fput_many+0x2f/0x1a0
[ 2005.381962]  ? ksys_write+0x1a9/0x260
[ 2005.382760]  ? __ia32_sys_read+0xb0/0xb0
[ 2005.383623]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2005.384735]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2005.385818]  do_syscall_64+0x33/0x40
[ 2005.386606]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2005.387687] RIP: 0033:0x7f225ff90b19
[ 2005.388480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2005.392351] RSP: 002b:00007f225d506188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2005.393945] RAX: ffffffffffffffda RBX: 00007f22600a3f60 RCX: 00007f225ff90b19
[ 2005.395447] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2005.396950] RBP: 00007f225d5061d0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.398457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2005.399969] R13: 00007ffc070b7daf R14: 00007f225d506300 R15: 0000000000022000
[ 2005.407721] FAULT_INJECTION: forcing a failure.
05:02:15 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48, 0x0, 0x0, 0x0)

05:02:15 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000070100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2005.407721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2005.410442] CPU: 1 PID: 10735 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2005.411897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2005.413655] Call Trace:
[ 2005.414214]  dump_stack+0x107/0x167
[ 2005.414986]  should_fail.cold+0x5/0xa
[ 2005.415795]  _copy_from_user+0x2e/0x1b0
05:02:15 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000004)
sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x40000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x400}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x40806685, &(0x7f0000000080)={0x1, 0x1, 0x1000, 0x3f, &(0x7f0000000040)="7df7c8545e2d143afbf585bd521cb7247e695205ab26799efd4d73a6dbebab946f458b0e9510e74907387038acd0c4acfce8fc2237c4a1bf25371bfba4e632", 0xb7, 0x0, &(0x7f0000000140)="80594c5d77d6a4ed940d3c4ab558eab2d8c2764b51c6c506936aceaeeddd5366190c052359ed811fbf4e7a26a5311350e6e45db4a497f874eb37ba29a7f691e840fe0c0752a1f42dc0f3fb3ac14bb4f3feda035c44f079598fee41f476e607d7af9b5a5aeaefe47a7488a9730d3644924186078223235c5f5d238849f1bc4de34f3a1cb9389ee4e7ec8cf75334087f86bd85c9649b10504e8a495487abe91a2776c32607745f7117c914d2c71d13acbb6ab86bd5bcba85"})
syz_open_procfs(0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000001000000fb0a9063", @ANYRES32=<r3=>r1, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00./file1\x00'])
sendmsg$BATADV_CMD_GET_GATEWAYS(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7fff}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4080}, 0x4000001)
sendfile(r1, r2, 0x0, 0x100000001)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)

[ 2005.416645]  iovec_from_user+0x141/0x400
[ 2005.417643]  __import_iovec+0x67/0x590
[ 2005.418464]  ? perf_trace_lock+0xac/0x490
[ 2005.419376]  io_import_iovec+0x581/0x1120
[ 2005.420291]  ? io_complete_rw+0x230/0x230
[ 2005.421186]  ? lock_downgrade+0x6d0/0x6d0
[ 2005.422089]  ? unwind_next_frame+0x13ef/0x1a90
[ 2005.423074]  io_read+0xe14/0x11e0
[ 2005.423872]  ? kiocb_done+0xc90/0xc90
[ 2005.424821]  ? mark_lock+0xf5/0x2df0
[ 2005.425626]  ? lock_chain_count+0x20/0x20
[ 2005.426530]  ? lock_chain_count+0x20/0x20
[ 2005.427426]  ? stack_trace_save+0x8c/0xc0
[ 2005.428452]  ? __lockdep_reset_lock+0x180/0x180
[ 2005.429466]  ? lock_acquire+0x197/0x470
[ 2005.430559]  ? __lock_acquire+0xbb1/0x5b00
[ 2005.431476]  io_issue_sqe+0x2e8a/0x77b0
[ 2005.432357]  ? perf_trace_lock+0xac/0x490
[ 2005.433255]  ? SOFTIRQ_verbose+0x10/0x10
[ 2005.434135]  ? lock_chain_count+0x20/0x20
[ 2005.435038]  ? io_connect+0x610/0x610
[ 2005.435869]  ? lock_acquire+0x197/0x470
[ 2005.436741]  ? find_held_lock+0x2c/0x110
[ 2005.437626]  ? __fget_files+0x2cf/0x520
[ 2005.438488]  ? lock_downgrade+0x6d0/0x6d0
[ 2005.439394]  __io_queue_sqe+0x90/0x9d0
[ 2005.440254]  ? io_issue_sqe+0x77b0/0x77b0
[ 2005.441150]  ? __fget_files+0x2f8/0x520
[ 2005.442021]  ? io_prep_rw+0x7f5/0x1050
[ 2005.442870]  io_submit_sqes+0x44aa/0x8610
[ 2005.443805]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.444886]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.445926]  ? find_held_lock+0x2c/0x110
[ 2005.446813]  ? io_submit_sqes+0x8610/0x8610
[ 2005.447753]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2005.448805]  ? wait_for_completion_io+0x270/0x270
[ 2005.449855]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2005.450860]  ? vfs_write+0x354/0xb10
[ 2005.451667]  ? fput_many+0x2f/0x1a0
[ 2005.452463]  ? ksys_write+0x1a9/0x260
[ 2005.453289]  ? __ia32_sys_read+0xb0/0xb0
[ 2005.454175]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2005.455312]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2005.456437]  do_syscall_64+0x33/0x40
[ 2005.457242]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2005.458345] RIP: 0033:0x7fbe4d75bb19
[ 2005.459146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2005.463107] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2005.464758] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2005.466294] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2005.467833] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.469376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2005.470912] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:02:15 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:15 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 57)

05:02:15 executing program 7:
prctl$PR_SET_FP_MODE(0x2d, 0x3)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38)
statx(0xffffffffffffffff, &(0x7f00000000c0)='./cgroup/cgroup.procs\x00', 0x100, 0x400, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', 0x0)
fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0)
r3 = open(&(0x7f0000000100)='./cgroup/cgroup.procs\x00', 0x141000, 0x80)
r4 = fsmount(r0, 0x0, 0x74)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f00000004c0)=ANY=[@ANYBLOB="7a6033a809a02e7cb5c3fa87755139b3c045ac9b2fd91553b41befe375e13ba702907981cd03a2682376613174390863d4af3c01da10450cbb80f22377b46d2208e08374374685ea489522bde012c160dad681a40a93c62ba45260b17f1e34134730cd33ae8008a3bb2d116158b7f341cb1a111ca9d22ef5fbdf9e7cb58d027e90311acc5ef826b36a232b15431622c8a8912139a770c50c9491fb0e47ed3281a6aac6b1c73bf3fb8bb0c3c62f4b86fe02809f7ed3045a8692cbec8fc280b17a1f41c80ef1a53b94131d81fb6986ce68c82e9cfd896c0c917064107421de207b8571c1b842", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00'])
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000340)=0x7, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'vxcan1\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_buf(r3, 0x107, 0x16, &(0x7f00000005c0)="52abe1f76a7f3f0ee977ca8b78b141092e5094d22244bcc8671363cb7b81f8d6d768087c359c92287b499663d320fb76ff1c66fd83c5ddaa645b7b566a7911f7889836d1a91b094ed243d028ef77f2", 0x4f)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00ad001d00210c00000000000000000400020008000c0000000000"], 0x1c}}, 0x0)

05:02:15 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b, 0x0, 0x0, 0x0)

05:02:15 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000007c0a0100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2005.611184] FAULT_INJECTION: forcing a failure.
[ 2005.611184] name failslab, interval 1, probability 0, space 0, times 0
[ 2005.613787] CPU: 1 PID: 10760 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2005.615297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2005.617100] Call Trace:
[ 2005.617674]  dump_stack+0x107/0x167
[ 2005.618471]  should_fail.cold+0x5/0xa
[ 2005.619307]  ? create_object.isra.0+0x3a/0xa20
[ 2005.620322]  should_failslab+0x5/0x20
[ 2005.621149]  kmem_cache_alloc+0x5b/0x310
[ 2005.622033]  create_object.isra.0+0x3a/0xa20
[ 2005.622990]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2005.624109]  __kmalloc+0x16e/0x390
[ 2005.624889]  io_setup_async_rw+0x180/0x580
[ 2005.625800]  ? iov_iter_restore+0x195/0x3a0
[ 2005.626741]  io_read+0x775/0x11e0
[ 2005.627501]  ? __is_insn_slot_addr+0x14c/0x290
[ 2005.628506]  ? kernel_text_address+0xf2/0x120
[ 2005.629477]  ? unwind_get_return_address+0x55/0xa0
[ 2005.630544]  ? create_prof_cpu_mask+0x20/0x20
[ 2005.631514]  ? kiocb_done+0xc90/0xc90
[ 2005.632352]  ? mark_lock+0xf5/0x2df0
[ 2005.633168]  ? lock_chain_count+0x20/0x20
[ 2005.634071]  ? __lock_acquire+0xbb1/0x5b00
[ 2005.635013]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2005.636158]  ? SOFTIRQ_verbose+0x10/0x10
[ 2005.637036]  ? kasan_save_stack+0x1b/0x40
[ 2005.637931]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2005.639032]  ? __io_queue_sqe+0x666/0x9d0
[ 2005.639939]  ? __lock_acquire+0xbb1/0x5b00
[ 2005.640879]  io_issue_sqe+0x2e8a/0x77b0
[ 2005.641753]  ? perf_trace_lock+0xac/0x490
[ 2005.642656]  ? SOFTIRQ_verbose+0x10/0x10
[ 2005.643544]  ? io_connect+0x610/0x610
[ 2005.644385]  ? lock_acquire+0x197/0x470
[ 2005.645250]  ? find_held_lock+0x2c/0x110
[ 2005.646134]  ? __fget_files+0x2cf/0x520
[ 2005.646995]  ? lock_downgrade+0x6d0/0x6d0
[ 2005.647908]  __io_queue_sqe+0x90/0x9d0
[ 2005.648774]  ? io_issue_sqe+0x77b0/0x77b0
[ 2005.649671]  ? __fget_files+0x2f8/0x520
[ 2005.650540]  ? io_prep_rw+0x7f5/0x1050
[ 2005.651391]  io_submit_sqes+0x44aa/0x8610
[ 2005.652334]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.653417]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2005.654465]  ? find_held_lock+0x2c/0x110
[ 2005.655353]  ? io_submit_sqes+0x8610/0x8610
[ 2005.656306]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2005.657360]  ? wait_for_completion_io+0x270/0x270
[ 2005.658411]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2005.659415]  ? vfs_write+0x354/0xb10
[ 2005.660230]  ? fput_many+0x2f/0x1a0
[ 2005.661027]  ? ksys_write+0x1a9/0x260
[ 2005.661853]  ? __ia32_sys_read+0xb0/0xb0
[ 2005.662743]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2005.663878]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2005.665009]  do_syscall_64+0x33/0x40
[ 2005.665822]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2005.666929] RIP: 0033:0x7f8f6841db19
[ 2005.667729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2005.671706] RSP: 002b:00007f8f65993188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2005.673366] RAX: ffffffffffffffda RBX: 00007f8f68530f60 RCX: 00007f8f6841db19
[ 2005.674913] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2005.676466] RBP: 00007f8f659931d0 R08: 0000000000000000 R09: 0000000000000000
[ 2005.678020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2005.679574] R13: 00007ffd7a65725f R14: 00007f8f65993300 R15: 0000000000022000
05:02:29 executing program 5:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000000)=@encrypted_load={'load ', 'ecryptfs', 0x20, 'trusted:', 'b-[', 0x20, 0x101, 0x20, [0x31, 0x32, 0xfa77d223c42a3d33]}, 0x33, 0xffffffffffffffff)
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r1, r0, r0, 0x1)
add_key$fscrypt_provisioning(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)={0x3, 0x0, @d}, 0x18, 0xfffffffffffffffd)
r2 = request_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)='keyring\x00', 0xffffffffffffffff)
r3 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000380)={'fscrypt:', @auto=[0x64, 0x64, 0x0, 0x35, 0x35, 0x30, 0x31, 0x36, 0x30, 0x30, 0x39, 0x38, 0x38, 0x39, 0x31, 0x36]}, &(0x7f00000003c0)={0x0, "01b82e770e5ea90e2e1e0b4a9981ef1a0816feefbc63e8ed1676f268442b6a2efa1a44b24b600a1292fabef6f1e8cd4c0c1df2e2c921e2740d468e1a679dacc8", 0x19}, 0x48, r2)
r4 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, r3)
add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, 0x0)
r5 = add_key$keyring(&(0x7f00000004c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$link(0x8, r2, r5)
r6 = add_key$keyring(&(0x7f0000000600), &(0x7f0000000640)={'syz', 0x1}, 0x0, 0x0, r4)
request_key(&(0x7f0000000540)='dns_resolver\x00', &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)='\x00', r6)
add_key(&(0x7f0000000680)='cifs.idmap\x00', &(0x7f00000006c0)={'syz', 0x2}, &(0x7f0000000700)="45dd9b63df14383253ab05dbd590276dbaace0cb772a3c7a02b8", 0x1a, 0xffffffffffffffff)
clone3(&(0x7f0000000980)={0x11400, &(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0), {0x1f}, &(0x7f0000000800)=""/199, 0xc7, &(0x7f0000000900)=""/36, &(0x7f0000000940)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x3}, 0x58)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a00)='/proc/consoles\x00', 0x0, 0x0)
openat$cgroup(r7, &(0x7f0000000a40)='syz0\x00', 0x200002, 0x0)
request_key(&(0x7f0000000a80)='rxrpc_s\x00', &(0x7f0000000ac0)={'syz', 0x1}, &(0x7f0000000b00)='\x00', 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000b40), &(0x7f0000000b80)={'syz', 0x3}, 0x0, 0x0, r2)
add_key$keyring(&(0x7f0000000bc0), &(0x7f0000000c00)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)

05:02:29 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

05:02:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000180100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:29 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000001c0)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x5e})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000100)=0x4384, 0x4)
setsockopt$inet6_buf(r0, 0x29, 0xca, &(0x7f0000007940)="e75d3c0679ecdf5e978a7a5e9fdd54009292369ce953871c9ff469ff6acb7ae41a5e159aa354fa96c8c100e3c6000174369da737b565826835ffb18839ef71c00a883b36d989e6ba7c60040c4e193dff7204256c1a3366ac037ac6a9fea27f7b964c12abc0ca272b9a4c359f612fac41b9f6c85aff32adcf80d45ab512f52b259b5c820d5500cebf105cd38e7d58bbf2a6a141b9dce83ff77b5ae5b3efd39cc8fecd123cf04370115344c1928f2dbc21a62a2d5a0b4898be4e94e550ec9ad9fdfc3801ccf5b7134a8015e3791e61894edd84d957316cd95d68333d5e3630dc2f5698", 0xe2)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000002ec0)={<r3=>0x0, @remote, @broadcast}, &(0x7f0000002f00)=0xc)
[ 2019.886893] FAULT_INJECTION: forcing a failure.
[ 2019.886893] name failslab, interval 1, probability 0, space 0, times 0
[ 2019.889598] CPU: 1 PID: 10778 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2019.891176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2019.893089] Call Trace:
[ 2019.893702]  dump_stack+0x107/0x167
[ 2019.894550]  should_fail.cold+0x5/0xa
[ 2019.895422]  ? kvmalloc_node+0x119/0x170
[ 2019.896361]  should_failslab+0x5/0x20
[ 2019.897387]  __kmalloc_node+0x76/0x420
sendmmsg$inet6(r2, &(0x7f00000076c0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="55b5b5a8b096ac97cbf72c502e8c0736510a7c42ff2635ac5677bcc387fa7a93958570bc445cb122c169b95e63c2eb38083adc1447532e09e50cc176e2494e58b905d8999dc78a7217ed54587933979b70f3e61dc80fdef6e840bc71bf49756eadc2b1", 0x63}, {&(0x7f0000000580)="0f23a82e7b9ee449c3f9892b6f8ecc52fbeba923a1046160da1870cc97289bfcf1bfe501dd9c3e3f48c53dadb283018264be590b6fa27fb380249d0dc9b739967798803da2aa2b61c2e7f900eee109bb475bf436c8ec08a9724ab938c333bb2056f527b6fb792dfef8017859d40719dffd128e35a5e51ebaaeeab6c91f6ba93830f6670f639ea4705b89350b4cd4b3c24e96df5edb2629aa177c3eed5d7420eccbfd66da8c2579e75635518e8f989da8595993892e3e5005510523cd778acb19a64c0e0e6c7ab202b42b7f30c3a54fe5b8e67e83b00e954533eb48aa41903f091571279b476239e3b380758578ee4636f8d27e40ef7e02ce7c36cbbeb64426005f8b67d53251f240be885a0462be510d7c6d9e56025745c4979d537bde3aa05aa741dd098b306f102053c9a68a65444e7552b628ce9e86baf24cb0da788c97b3effb2a07a604b1b363df10fd9ea8c79c8fd825d389b422a21fab06e2667de01fe8f06f1ff8aae9afea4957310377461886ca8c26ddfc127c4dad4eac80166306d8e718aa769beccbeb9c80227c54091277766208dc7c4d83e8afeb09d8653698c73798ef31d0b5eac65c6e5965520745c09bdd43b45de0ffacd9046692d3d3c1ab7f1215c08e00559d3d2ceae0b6ad5e7285a5b5578e074af48c4a2e0b9133daa8e10d6490e7a95c75c39dd989de2dd6b498544341cc793f4708362b2e2984f2cdc4caaa901d0a0a04cd404800b56b5cacb6022499ba4c6cd3530dcac1a71b032f3dd757b5651931fda0d83090268ece648d4d9f806e7abe68d959a23f282ccfc18c400b8147d11d55623f96f8409c75aad73be779664e272110a1c2e75af5d6bf3706a0716dfee59ca8d6767033d0dc0a921311245a0ac3c85a16ee5a9f7438d86ccc69c31c3c5a428a5b01308299c8c432f2884df54e6df089a949dab5eb80abf8b404b307dd106ae2b0d9eae1207df4bb6e61dc397927347f95318c21735d3be751d8bde25bd9002432d96eacb2d0d43ab4b7fbdf48af3f54064c558aeedd54d9940953fbfe63d329989602bf5482708740e88bb992c1d8b3b0fb4eaacaf8d31a73e168bab4d0749996c5c4cbd1de4b614ef8e9e1235b0f279bb8d3cccf12a8bbc56f9e4cbc00985384d16f118cd3e9aec087664baa4d1c464a19c0cf30a4408c289402b9512d3fde5ed290865f25a240cd308984154d532121f5db1e41fc0111ad6e386ba60cb07b150381396771445d8e08f7b7329583ef24b5b1118e781de89b9f41946a2b179100a1549fede98b8f949a084ad62ea6f365d38ec73688c4ef39988cffa9b14c018747f1a2527a58d0cc3db9d5aafdbb71c41657cb00096e63db670bc5e964718cb198a9d239fa27c70e2ed5cf5ea9864fd1b3f0d2b28bb7ede42b53e7aa344bbf7682a05e9c6654b6e27185a17fe712be3370fb38571bba087771b940a3581d470c154e55ef8b93b15e283f49b960aa79ff2998978c7d5d5e770e87ea36c0983b117c6e802a42974d701cfda696b18de2818f62a3eb35b5f712506f0fa71f10ba20d4f8eea6e43d94cf6a617cf8993675098cfb14792dea6cea5e4e938e191b946a22ab467beeb20336462884d77a60be46d6aa9c3c97ae1bb5446e11e830355b20b4db3fe0f2056b871c0dbc53d204713340ca806eaf76cb9a16e2d9672c91e6895d142a3de06000d6b3ffdb26cac2edc36ea2e67811b25f713eabb7bb46a692e7354928a70a9c827500c11689b1be877b0b371d0a1166f431d24a1129a034e2500136899a76bea9753221a1559bbdf50951388cdf485f08bb957963b1e9c9c2981e511cb64bd7286953ab3368d8d7b2799836c1b32b73e5891b0a9b22ba85dd526ed54b6760b8121572edd09a76159f8767065d5d7f1c2c57c418fc0969da2579844fb7255cbdf5e09e0a01d080d3c1b56e7fc2e77affb1763825154d6d32cd3ace58cdf3c58f3865d43f71ef9e41b64c3dee7b5923a97773d492e48470cee48fb6e7376f26456fa31b8f195f05778075e0840ce4207f2e008ad55fe992b16343c4c729a611ef43fc239af726bb4eb2dc657c56263ef20d6e0e1ea6e8d746d7f144a80958bd6f416869f5dd4c3e36cb479846d8a0c5f23821b7942c41a043bf28cfaa250696a1fb8e391c2140d09399b6dfc86c125f66f7420231ca53a29c443dfaf38a0737182b46746b23616d5b8ed9efe9522624afb39075189497d965894b226b70bcdaf281135feb6944a80a5690434087d71f4d9c3d695a9804e5368c2128c5a3c3b136fe9ddd6697e41c280e9675bca6d3df65346799deae59eec8dfd703c46f4e7a2b5dd9b581df76f7e632f7d365e44a50230647ecbf753288d95333bbbd19bdf1711a94717b299612525074f259d36c241d58bf122b37386fbf97556dcf2af021b54e996106cef82007bbf03ed94057907ddaa14ab629114250b8d587acf744d94228549792f62048958cae9ce1e5a107d92585d67bde0d829a568023d827caa6317a542f73e7ff46117700f35019d47c613b117113844dd1b71df7cb0a064d725f3cab41dd5895159060b3dfe16c9cb9978a69f12c266a08ff42c32317915cc2a625b3528ba2465661e0948240758223cf24535e711509798b5b58c7ccdbfe95c9c3cf5e0ab034c2db3fdd5ab4a4eb22baf19416401881addfc02ce89173f2aa08ce8713cd478631a141770ec5779ac160b579e451a399fbd439a0cc1fcd450362397935bc59eb472761ba39181b98d91dc8dfad6d85937137cbd4c3aa7e2f2a1afdf6c913fcb80c317406d430b6a5efd22b87be76533c2aed4289480ccc05e6c8e3aee0bca6c753f99cf5c302051bee51b5fde77b1766ef2d254295d3500be6767c4014efdae385030f370430bc474ad53105298e5d7ab0a9543bc71cf62ac3c05e5eab683a409b849383742131443f7fce4acae7c52fdbed81a55ce939290bfbfff45fce7864a1d347db0afbb8574ffac8dc477ecc4289168ab03fa8470b231e5d5e707fb1e69d12413a2033de3a648d0cc500295e52d0061839d0e4bcdc044e0066ff3aa285dc3cb9b0163ab897a25d9944a0a76420ecbaec64e27e81528c427314654d954ca451657ce054f6ec93a0a0a2d3cdc13f22d3488980dddbccced8bba5454551a1bb7fcd40916a7d5e945e8296d4776dea80eb0877ca437e31d04dace1099dec4b225de516ef2d571c29ed0fd06d56ee2ea1a72c57b3dcc0f78c08e62778101129b93fa1179b694075283e358f6b4c284aa21c587d062f20defc986e920bf8867d826b9a9314077486a89e61a915d57a7c9054591b2f6b650a8667d465ddc0080ec4679b1e86418a40023080d56f3ddcfafff7536ab331c65e88ca4ef74f2f7e135400167d01597dc46d5e30ce71f4cd839dbb0a0c442780519aa1384da258be74e231baf71a3c8076748eb8f19226a4aa841f00dcc7a8967b3ec710ebcf43eebb82cd4f6fa45800a421b196d2857a570fd7ffaa2c49bb538cb6566fffad8302831a61b0a23e25c8fe86c06cd2e65ec7ff817cacb5d2045c276763e695631bfe9f8cc163163c41de3f9185c79132ac37e81f5cfdb135bc725a7f6266448cc74136550262666fce74991455e89394fda38261841365c11a986a902534ffa36804347b17222dadbcd410b127202d095f34b16bc4f5e29fe00d5a4f8c4c4265bc9cce752c491d1e3587545c3c64bbe1f527f73ce9aa31f1d74c70b67f7195c54a2161fd0f2f589a70791034bacf7885aca92ebca93bdd9af7844184ccbddc37ac346908313e7e2d766bc0d168ec02356887996164d616e154658c71738318c00b8b467dccfa0bd87fffe67506a4586a9c8577d20c7d8f18eb6424c37f0f07523660f5221839cb5f28f6b819c21b6f280cd5d289329b8187fa02cc4d86276c0d88e3a33c3a2dc2ef8b9cff8500a7873dc83cea5a79254595be936a82049a2cdec8f9db3a84d9de062ca906fa1f0539124d0664099e8ce2434b9a4371d0fb2dd8e69f5f022fc5a4cf3e792dc913bc09771053841f848fed712beda55e5d0829caf6ab570f50dbe40ff6fd36475e5cba9853ea3d75a184fdfadf2c135c4263ddcbf31fe036dd01469a324d74aeec0edde1ed94c47e568c3587bb4f75a9a24ddb700c2a2b9a563c50e50e7e2cdfe675d3b1b228c5bd614d6eea9380f227a5cec9c33e774c01fc825d576b9468bdf149f2559c068a3dd137ae3d9ede88b0c4fdf487e8afda78e8897ee895afd283f34e81fb1fbafeb02c257ef2e07990595210bec7e680b804442ab6bd0870765b0578b992b23268c33c17f46b8606dac796eb77ca2b84beb8a9e8ca9e9662b41c19d71fa636d7d1dae4b1229959b85f5c691eb3bd14d020c5ba41ca080b4a2103dea2e18b9fe620dcaee498a92c66e190afa8202476afdf45839bcb2e4f6b7f2a25ee3bd602decbb30c0210a081507c99ada3e881da8a3f40d707f3cb6f78416945d5f8da6f7680654a43c361339cde99e3ecb145e52210dca18439f25ccc009dc9d0573aa5be95f08f39dc30f269cdb92b28da8f4d809df1077f6ca371e7dc2e8c60afbfea36b336ac2e7435a3db4be82e870e3d77fe04996d29d11fb6ae1243803c82a030166b83b4c523766cd6339e41cf852d3088c230eeaa53f45da04af9455445274f80e11cdb5a0b0a2394e1e9de1d38c51df8b034be47ef746b6d7ce06bee561350a356cb353801b503ba26332c202956072bf9ea14af104b8f11d12178d846bf93e75a53613bc8c50ad897a82a4baf6a6f43225b0971d424452cebe13837e5e861610a586bc8308ac1baed84c551cd03cfdd194f8dea083c49884b9b9fe7b636883e93deccba4a3f66b2ea116472aedf79ce78af2bee1201db6066f155ec64c2986942946b8ef565e0012a5ea6f39a4de6fccde5cb7348d32d28b02c15e6c12e7a8bf53f7604794bd084441f92692ca3decb6c9137f2c8a682188a38f60c68fcd13c7d5b25a2b18d6e2c58b5905bad8fca5bb1c2c004ab32f499b51a1415803856f545247d5d94e6754fc8f0c70f18849e9b81de9e38b2769f8b52d333d173d5cba836816b6d848d53f41e40dd5f763ec22a1b3f55b4219665d63d1981ad1c481106dc250f93a1f1c4206b233137a02d3f4bec9e7e17f8d13680339d20e4dd619cd7075e72fedc5b2a1ff382cdaf02116d2019b3413567c6ed76d6065be4f803dba1b8fd01b08461f4a9e5b4ba52a5cb07a8044e1f97c2568988b5c9b445fe4dc59aaa2794c3973e68bcf115997511da7277afc52f37bd45d05f2c4f4ce1c99d2cb1b0dae8db14ca24aac25ecffe689bb8bacbcd476ad0e8c411ed89f48a449b195e30b7d4fa54fb4361b26d24a8514d1fe1181edf5f940d596ec92285e896524d604c40fc9d359d9bc253e143efa5ceb8f3e74da3ea0006ce527e545077ce02ba52d12d0c126e5652ea73815a420eebd4d041a3ab3d8c3b3c66379e7d6000a7542eaecf04792b8e6c99757ee907db4cd1d336cbd06288ff910f19b078775ff0ad2168c7f989221b66186a12bb59a9fb5a4d0bc5a6627248c8a6ff5f7123c252b4c4eb4fec42eb6b8113aa0227843b002fd48bccad11fb1473c6ca5d8d011239b362fc6689e85ccd2e2130df1464af6d91e8f6b39969e7dd6a539e2a4d7f5e723c7cd01b8e5fc17fffbee3f1a11ae5997a46013dc5f0185e526f4661468635f0da4c98988891a9379aae2252fca36abe69920d5ba5e7fc2f5ca952075a886aeab7617683add4c5750f84cc6f1520357c4f1a4617b4447063c64cee68", 0x1000}, {&(0x7f0000000080)="1f5aae335d511c35d08b137111be7d1aadcd27e40920d5b9f16edd226a", 0x1d}, {&(0x7f00000000c0)="df27512b67455dcafa67951bc8f92bf0cb0306f06ed4afab202822b389936940314217f8b4286549fd4e59ffe0c090fbfe8b2f000700ac00c2a7b8eb9ee32f", 0x3f}], 0x4, &(0x7f0000001580)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x8}}, @flowinfo={{0x14}}, @dstopts={{0x80, 0x29, 0x37, {0x16, 0xc, '\x00', [@jumbo={0xc2, 0x4, 0x8}, @hao={0xc9, 0x10, @loopback}, @ra, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @remote}, @jumbo={0xc2, 0x4, 0x8}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @rthdr={{0x58, 0x29, 0x39, {0x2, 0x8, 0x0, 0x1, 0x0, [@loopback, @ipv4={'\x00', '\xff\xff', @empty}, @mcast1, @dev={0xfe, 0x80, '\x00', 0x41}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @hopopts={{0x38, 0x29, 0x36, {0x32, 0x3, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @padn={0x1, 0x1, [0x0]}, @pad1, @pad1, @jumbo={0xc2, 0x4, 0x5e59e1f3}, @pad1, @enc_lim={0x4, 0x1, 0x2}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x1ff}}, @hopopts_2292={{0x20, 0x29, 0x36, {0x16, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0xee}, @ra={0x5, 0x2, 0x8}]}}}, @dstopts_2292={{0x170, 0x29, 0x4, {0x0, 0x2a, '\x00', [@ra={0x5, 0x2, 0x4}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x6}, @enc_lim={0x4, 0x1, 0x7}, @hao={0xc9, 0x10, @mcast2}, @generic={0x5, 0xc7, "2105f9e2799d669c0318340bfedeb80374d1fc52204b4712de105ec13f6f0ac7da6a246930b7a1b0907e3d2c4f47ed0c094d47e27b03f6783838f9252a649b9e286b1750cdae50588f93b6505d5d0d196e0253ac1b3946e0f21b0246e6337ab4bf662d2c7385653ec08fb7b32c9f08ba2f9c45e9b63d16338c8f9e203dd6cbfde84d95cf4e8f6373f41edc73ed66fa04a09e1fabb9757ba96ded2099515eedcb24be8db9fcbe47909ca245907ea51c533c61a7c19fd9ebc311994d95c6fff014e95ec5d3d295b1"}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x58, {0x1, 0x14, 0x7, 0x0, [0x8, 0x9, 0xfffffffffffff187, 0x401, 0x3, 0x100, 0x3, 0x69f4cf02, 0x7c, 0xc1bb]}}]}}}, @rthdr={{0x58, 0x29, 0x39, {0x1, 0x8, 0x2, 0x5, 0x0, [@loopback, @private0, @loopback, @mcast2]}}}], 0x358}}, {{&(0x7f0000000180)={0xa, 0x4e21, 0x405, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c, &(0x7f0000002ac0)=[{&(0x7f00000001c0)}, {&(0x7f0000000200)="cd723c61dd34667de2d35f7031cf85c60920d24253714e79d77fb9cdc2483c7e902e8b92bda49b74b8664fc4679d3fd18073bdd2b618f1fe3046e59cefce2e4ff36ff2aa0b74f466a6056245d7975758aad8e291b068c89018bbebfa74a0da7d2ef222201593c0a92a2c8ca266", 0x6d}, {&(0x7f00000002c0)="2e905ea0599061603f17a893a3bdce2be03019aba59f11c3a65a1f677a1440f27e0193ae1b5eb87ac9cf1a17ef8ef5515cfda870f68944d3aa2c2adfef18f5020e51f8b56bec302b0370172e9a29549fdd97d8bb5abd2bed4ff4a418ef1fdb6295fa351a9681bb7ac2c5638f7a6590a610335a2b2fe6dd7d87f92224b57c4ff2ad7f493acd4da059c4", 0x89}, {&(0x7f0000000380)="9c3d8e4afc9b6c32b824d24fd8bdcddb6fc9287a70e5a7485fbced6af2b3d0b1917c1798a51a7e9382c37c155342a423fd7ae9ec0f0e6cb7e10491a77e05ad31406b93b80ab86de2fc1ab490279c5e366a9d1e86de8725430868810ed5a9580f6111dd384bc6db2977e3e27d4f7ee8176ef905193dbda9d54cb5", 0x7a}, {&(0x7f0000000400)="c6717659a405fe15be2f7fdd2f5b5e488cac77e133204120fe0d8d980c9a1564447aca20ef8fea606b212d00794c849f875dd314add585eeff4238ef9ba5970f0cd4ec7ec804b914a89f8d7b6add45146235ea0030db5666039d7751a0e1cc7a680cf9081eac17aafe7d4d6a5ed4c681dd561c19f272fc82eed4b45eb19be2f9711376dbe1f1832927b7f2690a07bf63eba316cd872fd3e61e168fa47629dec0315d75e03a63328131676e61b9408d6a96e17656b922e7166ee23ecb45e05ca2a3bc4d5a9e47acd31bdcc42a4800c223eb19400223378e4e62", 0xd9}, {&(0x7f0000000500)="84d06c64219389f8480becf91be803786ee663e2341a8adfe6d7e7591d082e9ac55cb9fd094caa5faa789647c9506679e72953e1288bd913987685", 0x3b}, {&(0x7f0000001900)="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", 0x1000}, {&(0x7f0000002900)="193b4b7fe2835c5e5adcd984358805efe334e1184c25a1fa90ac1a8e68bd76f38796a11f", 0x24}, {&(0x7f0000002940)="ded32c2707bc1e23f318dc1690702ea53c542c08e522828d38289ae2ad95139dfaf9d98feab63423756d6bf797909b1b8937fa7dbc2abf22ca4e4c786562544ab186a75db46eaa86a53967bca01c6ccc4db5a5bd2dda24ffd9e3ea2f2b27f7102dbbfa7a6f6eee406a00dec5f403af5e21b126cf", 0x74}, {&(0x7f00000029c0)="98f925fa0b403a0b541393efcadc829bef8b539d4d6f03710be3761fed466811e540dcf59065c5c381087ab815284d75f52c24aa273dcacaeac31ba5a57889c7fd91ad869316fb344be2f4680525246187c1929f00e1471c7f2cbdcc8e96ef7b3698d15db2271916c8dc9d099a180191bf1cf94b849e5cbf9eb1031cb9871c55c66710b2201d6627a0b6d38557b8a620123b45cae364d4a12c348bc71dc54275ee7c46b9aecf78c8d3d339905036d309caa293626c73184a624c043e17132abcfd68ec7998041e6e2e2491edd008343ee87128a56a9d802cb91c454611606871eda2d6b74946b84d470b952077001cc4101764c9344e", 0xf6}], 0xa, &(0x7f0000002b80)=[@hoplimit={{0x14, 0x29, 0x34, 0x101}}, @rthdrdstopts={{0x130, 0x29, 0x37, {0xc5, 0x22, '\x00', [@ra={0x5, 0x2, 0x7ff}, @calipso={0x7, 0x28, {0x4, 0x8, 0x1, 0x200, [0x1, 0x81, 0xff, 0x81]}}, @jumbo={0xc2, 0x4, 0x200}, @generic={0x8, 0xe0, "de6f75d3a7569ae70c28144209ed20d4beb29e61e2cf19e0c93ba9ceaf9a21b9d7016ae7dca113b1f15c6322165922cfd712f20013d31374a1b8e9504fa65a8e4d9d0a6299fd1d38f8a3e603beae0308a74ca47eeb7228c25d2de3dddee24ef674a8bc28dec34d9b30ace19ccd92e42ac069bed1ac7b38c6ab317008c9c4c1fef50a8c486d4dcd7f8b64057eec47ba745e899c379d059983aafd38b24677c9612f24556d22515c0b80bda26b0235288cd763ec3f629ce8db1486670e8a087161807c324cfa7f08642609ee3e1fe78fc593df781bc7749d9ed6648a03cdba5a64"}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x5}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x62, 0x4, '\x00', [@ra={0x5, 0x2, 0xd9d}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @ra, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @rthdr_2292={{0x68, 0x29, 0x39, {0x5e, 0xa, 0x2, 0x0, 0x0, [@remote, @mcast1, @local, @remote, @local]}}}, @dstopts={{0x68, 0x29, 0x37, {0x0, 0x9, '\x00', [@hao={0xc9, 0x10, @private2}, @calipso={0x7, 0x20, {0x2, 0x6, 0x40, 0x4, [0xeae, 0x7fffffff, 0xff]}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @enc_lim, @jumbo={0xc2, 0x4, 0x2}]}}}], 0x270}}, {{0x0, 0x0, &(0x7f0000002e80)=[{&(0x7f0000002e00)="0474ba8179272f627c3f0e9426acd9e265dfa36198bc94bd", 0x18}, {&(0x7f0000002e40)="cb763c4428642259d8e7773b", 0xc}], 0x2, &(0x7f0000002f40)=ANY=[@ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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"/284], 0x478}}, {{0x0, 0x0, &(0x7f0000003400)=[{&(0x7f00000033c0)="9510e0d7740f7daca1c8b15eff2c7b5fd3c39ed7", 0x14}], 0x1, &(0x7f0000003440)=[@hopopts={{0x88, 0x29, 0x36, {0x2b, 0xd, '\x00', [@hao={0xc9, 0x10, @loopback}, @calipso={0x7, 0x58, {0x3, 0x14, 0x8, 0x1, [0x135a, 0xe93, 0x1000, 0x550d, 0x2, 0x3a, 0x81, 0x6, 0x7, 0x7f]}}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0xd379}}, @dontfrag={{0x14}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x0, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0x101}]}}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x2b, 0x2, '\x00', [@pad1, @jumbo, @jumbo={0xc2, 0x4, 0x56}, @enc_lim={0x4, 0x1, 0x51}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xb3}}, @rthdr_2292={{0x18, 0x29, 0x39, {0x84, 0x0, 0x0, 0x7f}}}], 0x138}}, {{&(0x7f0000003580)={0xa, 0x4e23, 0xff, @mcast1, 0x6}, 0x1c, &(0x7f0000003740)=[{&(0x7f00000035c0)="5185b5c234935781fb85b653d4cf7d4d495b7da86f55ae5bf20039d47e14e4e4b26010162390207d2fadf890b2cc8deba6f8b0334742b8ece3ff4faba98a877a965c99283e4abda8c08b3d1e2544384f7355f85c51b3f6982bf471acd181cdd1deb0c31ff4062ce9e24fd4e1fe682b802be8d8f22080968cf42b4df8865c1a0d3ef5a6eee954563a9213962301586b03117eb4ed16630b0402bbdfc18bda6da863b103b88bf4f869f575d824b5deef2c994c448b557d46183dade5a8ee", 0xbd}, {&(0x7f0000003680)="a7da6394d4ba4581f1a32fbb3e300dc13cef261c761b3f35faa6890acebc4a70d7924945c6ed84676fc032f8ee84432ea2a80666aa92c5660e6a8567d8030461c823ae00b77b909f6518a988a2bd45e63be125f2384039bcae1bc491a66a33ffc690d6cbd743c64a1c478c5ea117cf6de3c5e9a166bb9bbd207e5956cbbb42c5ca03e589fddd4c7303e7cfd4c3a521d8dada5269514f6b913405c42ff4a1c740c46b544ec875d16cace7f6fd8204600785a94d5b6fb46a7a86678442", 0xbc}], 0x2, &(0x7f0000003780)=[@flowinfo={{0x14}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xfff}}, @hopopts_2292={{0x90, 0x29, 0x36, {0x2, 0xe, '\x00', [@hao={0xc9, 0x10, @private2}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @calipso={0x7, 0x48, {0x1, 0x10, 0x20, 0x401, [0x63, 0x376b, 0x8, 0xffffffff, 0x1, 0x100000000, 0x3, 0xfffffffffffffffb]}}, @generic={0xff}, @pad1, @enc_lim={0x4, 0x1, 0x3}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x1c}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x2b, 0x0, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}], 0xf8}}, {{0x0, 0x0, &(0x7f0000003940)=[{&(0x7f0000003880)="5722e9", 0x3}, {&(0x7f00000038c0)="003d23554a2cd696a91c08bd23029aa33cb7328d99a3296c934da51347194e537a3062e907da292cdc5533405630722e58fe80a17c5bfa23bd3a94a5e88fe514a5f2fb9b436fef794eab2f657b13b1fb307563735e909c86fca9d16717eb5998ff72ef109b4113c4a377d0c36ce5bb741266", 0x72}], 0x2}}, {{0x0, 0x0, &(0x7f0000004c80)=[{&(0x7f0000003980)="90329a287ef8370fbeb9db0286fab50e2eb0b2aa70b0b5aff40f7023472ee44fabbf91404b73d6b25c2b0dd0724addb93450bd68ab9e68dce68d8e6a5f321f69a8c26aefd3bb28482447ee44546719bd0ca7436c8b585cb766382c2e1903ed42e6329d72dd8e9d6f2d966084527661f0dd48acaa1a7bd59a158407c1925696c60eae9ba140aa44e5ddd533768dbdd00af71b94d0ce5937bbccfacb2fadc1ab50ef9df96052bdd8d34a786f7dc0bf9f87d382a0b9d0241c10c5a13a7c511ff01960bda300892860b39c2c234a83c2a5b683a0a3106df6be17a954c3bff170a6f5de4b957e249c54b8765b9e", 0xeb}, {&(0x7f0000003a80)="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", 0x1000}, {&(0x7f0000004a80)="4b3a16846e98a90db8b6ec4359504658bdbf1e9c0e4c59efd7ee5aecaf460fe400840579100c1bc130c252c16a0d7d0ceb5ab51c5bf3169ecf46d6cb11629c86a1f703c8b058c32be650597fda24e1947d710c1a612fd50fd584833d44cf61519eb451595e9167dc00fdc7d0bf12b8d570b036453dcbf485bcfac312092fed8e1b8d69275d2907", 0x87}, {&(0x7f0000004b40)="a47b25fe33aa88727bcd96b6e7b7b7109c4e37fdc369751c56d94edd5e5d56591dd83ceacf0cba7c92d145676b665ceb8289e499a45301af68bba71a49dede4787c641001acc0462ffa8f44d22f958345b4c8a7ab93550936b49d4bbc29b4dc64a76604fbac378b454076c487d9c6f67ff3a2a3b522b38", 0x77}, {&(0x7f0000004bc0)="68cb8d43476ca7b8b7c437467fc26227185c32a02ade7c940edd5089c558447c1462f7bfcd15d572c2f82d22e4e94f3ccc0bebded06f972e66da75cf05948cdfaa8d50558469380aeb42eb7ee037d1af49ea85cf9f85731c110b23761f2c9c385f2c6afa27d79f7fed28882a24591660065c424472c382a5833cd2e3424cc0f03d729165689565c520282194ba484946e5c23a", 0x93}], 0x5, &(0x7f0000004d00)=[@dstopts={{0x40, 0x29, 0x37, {0x29, 0x4, '\x00', [@hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @hao={0xc9, 0x10, @loopback}]}}}], 0x40}}, {{&(0x7f0000004d40)={0xa, 0x4e21, 0x101, @empty, 0x20}, 0x1c, &(0x7f0000005080)=[{&(0x7f0000004d80)="a6a74a0388c5c59c60350d42c89231b209a37f60fbfdde82bd78aeaa877d8514e76babb763dd1907f832b6dcce04fbf24a26d3a64962188929c8f99ad8ff0ed210f3e6e09a4e212e586ce1c650ce0fd36f00118de153a9", 0x57}, {&(0x7f0000004e00)="c0881cc480d5e69f8f3883d69b0e553415bd686c73fde26c235816293eb279a63ebbc72ab0c937b9f7bb3f48f3f83d868cc9cd6c5763e0363ec9aa85b81b42e981c34ec6fc0c88ae29d3276c211d7307c485ecb30148bd3df7691be4531161ac3f617627bdafc28cbe11fa9ea8ee217ec0555f5dc008f125eb5afcec436dbbc287b3b6e47627d92733beddae88aaffe800c726f47c6b64008d20b194ff9fc6ac4e9e4086d599fdd9d1c21834090fc908ef11c5b4db63e01922179a3fad7c5470d25b7ac5559a2825fa58aed85b3cd8179687e7724c91ce63fe7cfdca487f63e3b540c168a84ff3fa8e8f4d64", 0xec}, {&(0x7f0000004f00)="714fbfdcd91adad772f28ed5e7711b868dc82e50cb884524026c5b629c15456a043637e86c7f434e9af397a4cc53377dbc3450e7a4be9f36c96bb7c0e2b782fae64df6728b61f748fa1c1ed39c7b94221b0220d7aabde128397bbade0c7d77e857bef48647f31e", 0x67}, {&(0x7f0000004f80)="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", 0xfd}], 0x4, &(0x7f0000007a40)=ANY=[@ANYBLOB="2810000000000000290000003600000000010000000000002c003c3b41ad35039f075f5fc40b3d71aae101515cae4fd485ac73fd824af587b59eb54fdd60fe1a70be4abece626e66e76ba9724499271656b1cd9decf54f75066600e55764d4e14856594dab849da619dc62b035871147be873a7c186bf612581cb650c990b438f4ec86b2421bb42c79b1ccc964e0ad087e99cae778daeeb04b82c50227d62f7698a36dc7e9ca9d76ca885b88b69ba7588e5a93fe6548cd8751cdce9abf7146310ed6ba44f711daa43910bb0117d84223ef4955151da6b7e3fc1140b47df8ea54a0953001004fc9ad764f21bd3e372f1f745b6bfc328a03549abd19c5cfd2529ab45dff105b35e4ddbdaf9ede115161c931321e782ca22f4f9528fa24cc95bf9ae1c947374b6a74b1184f4d9072be69695387ac1dfffbd4a8286bc3b8d456949dcaf837d5f4cb4411a5883b31e3ff7c003b4768089ff69bea21c57826e92df1e60addf8c1bbdd674cdba69958e6444673d4341d821df8d7687d2d869759cb52f6910b404eb7a9655580b401d9c75737a6155a5707e96b39765133da2307f9720f101f783789c40d2d440fbcb6cf4499991ce3063426977a5ef427ac82edbef8b86b4dc43b68b98ff09ff8a83dd03710d3590010e3d339308e83bf07e0ec98a3250a609a56dd9a335cfb768e17fbf2c868cceb13969ee9f9a174fe66f5b848274a2b9c27b5f1e919b8ee2b6dc10211cf63a01cf130d1dd575a59114a22af63e53059f2b59c0a154593b7ed6919f78aae6e599537c89efa64c7088d0d21dcddf3036ca76a4327c406445d41442e991e4a15c3c1799547dff91ec8127e0604e4035d532b2ee635823162472f4da2e14dd7d1c1c3e4149b795e12cd18e2da051b48e67b3394e28d5a6a81497e7ee245a89fd7a20509c398ad301af33503de3ac671a7656018256a58d221e2faa51fbd2f0fc9c0ddbd652cd839139344f5131aa426e1f07630b1b9c43d943b57d8e109ff06b640a6c9dca75fcbe70d554871cd856f04bfe0b253fe8866aa404f896cc09aa122bed5481330cc4b7edfc078b6ee2a68600c39b3fc603c5fc329d0861d915fa0b6a5be9b8cfebf706a85bcc52d324842de3a5a60e941ab82906a151361faf286d57aaf07d242c2f942a4f8a2e611e2de4f048997371767a8da17294b4b580bfc675ed7a49cce2a19a00177061300ecb9fe72c2d1d5ca2bbdb7ce66f08f5865ae349071a45b8865d1c68b41541938a1e8b89a09fa307f0f2a76611aa854996f859b6d275193dd620392ed0c375338d9456ad0dadafe8edcbed6a32e66e7deb6c6adeecd69b81c0542f4e75a218f4cae151aa6b99f7942932515ba2c9ddb586118fb160df84eaa902cbbc1c1ee32ac5bf697c280f481860cb44b9b0f2f10c8052b855f17e89cbf38ffb7de1a73906633aab142370cd1d73df98f8d9b7748fb87c48444136eda93da9b54ebd55274dc89180b0369fa04458daf10632df99564421c9cde4b3d3423723a055072f500fa9e1791351406e56d751ff4b833109dd9da4bab3b171f352011091dd87e1f04947f562804858d9685e7e207cb6f380925d050591a64f2a3b3218617c91888a0f23d960726450eae70cef889b4f55a4ba4e610414dd1d2982ae4d732046f3b84318c72f142d76a7858e4a661d3313bd17182ee082b496f21dd88fb87e921346bcbe1141ad81db49e3a4d68892434fd03dd2480d6dd8bce3af2a0a5f22d9c06a2f7a047932faaef85a91412753940a434db4b33999ccc448c2fb626a8819eee6ad639ac90e5773c52f49159e1b2843a30bf76fd6b8eff9d38a911518cd482ae91ec2269b4fa75c4279ed16fd6acc4b75c73e23f58b1cd46a1631174bd66ac9ec71bd447dc7d909e3bbd891d7a55d9deb69a9bc0d6667e2736b1b9f3feb531eafec7413a57e4ee147f7180d432ed5f9bb0643435fbe79f118b55f65268c3909d6b5267ae8ab37b4d344f35b2f12cdc7a8392791310b72e18507169119d8156dc6c2e823514cbe409e900d3beee5c50bb94902ef3d0c8e77438a37184a8d8da443cbd2b8161cbfd1f3a4d9a3fcaeddab18cd17a16a58c7c783d040c14f4ca784e35a4c5dc1ae0d8bb4d491d17070dd5f19f117c3bb5bb803ecde7aca6ff827093dc0d20b6037377cad269ed8dc9d6e885cc219de79b5e4e3058583685413cd31387dfd490a4242e79dfcccf260cb9725e07f2041d7fc2f3c46fb8ca8c31989af663b86a7902d9a54fccae185d10cc96bd67cc4759a7f3652c5d73bc41fb95c86a45ea444c030e724fff74ab4881992c79e5868bc67f6a53c8a85a0dd5c00840d378397c403965e2a357180507b695bd2602ae6e048dd5f1b071a68a3a036322dc7521aa0a4925bd1486c6905ec9d192f3b546792d702cea1a2afa09f0976d7b544f14e656f856567df9208578501711e46a0c0d849cc5bea0d25cd4b108e3767aa3ca68813deb9a2be90cfd95c9ea25c3f31cb40729ecb271e632214f1c774959232c836d7e8c25f996b28e0d7a31bd41055ffc29e14de398a75a657577eb0b5451ae35b7bfb913ed6aa6c0c0a9763ad6f0ab5fab6d2ff2686b8072c253a9bf1455a83a984c2ab2796d83cb40c6723dcfd2afeb0316ce1d327e83d4c0dfafbb0094a178d73f1f2fb721efcd9ef37fd0f92abbe7afdb02ababf910c6381d0448bd6507f040c1f52f7a6779c9e38184bf9c475a79d5f207ab8307698dc26d63348441d6f64b811e742c6dfac40590dd42d97710e28170c74df4c63fb98f13fabb90bbf781d1125f40698cabcf3cdef7092bb9844ae23e9767e1d3f073ee3ce1b57c37d2bb98381713f2ef080fc5dee55df90d1dde79396c03ea9c531d9a171fc691f17552c9d20ef69c71b9f010ac6d32dee9511f543666015e9c083636e65576f9ff30e05df5de6d1ee6429a2f62519c9826cbc4db433c3150f176bbb58a21c5707ab6877a8c46eb40b2889879cf299a5f26d1e3ef53cd687f61192acbc336061addf365ef778d99f09b6c119e97c8348721318814368e4f880f57750edac69357d8ff4b8bd3097c8b77c936d3f18f6250b06a256f02b4b99e333206fb7c1c7b2354b1d47bae985678311fc79d8f03219b51892f9d3ee64bd2a02a3cbf9a584787c3bc5de590e3174d6972883b293f73a11747be003c6527e9c4998090441ecb816435c58347203bbffad8f72a84f908b72ba6d6486e29c884997943132900c2d21bb827279ef7808ab12db1e76ba9137cd86ba3c3f6bc2920977baa887d27c182f2d0a818aa8de3fa7f2281874ef739e0060db57d22b37f3f7bbbf4a312d9cc40638e4d01c6dd681b5def0c849fb0e5b88c2fbeb1663eb7d272d3d8b5f01983be8caa3f627c79c6ff32ef27a5fc80780c79d91c473d5a26404a00e1888aa21c863557e948cd497cba2fd0181f85159c840238abb9bbc672e70be98b8a7cb1a4b8f8eb02719ab42d2622fe72cc6db9eb4ed240b5ea4acccad4fb06e0a64c4a04b53cca606fbd6e9e6cc16dc92f3f6b517242aa6c39e83b8e115d2faaa63f72fdd9a907877ff66be08f628e7d011504ba12dbdd0ab78af3a34329889b658db87e4a8d21f15866e356367f5e7ed3f06cd939e3fd3998efeceb46c96bbdc4e1263acf74593cb6223626b5cc67b7887f86527b073cb2e7af126fb7ebf310bd68037471b2c1a5ed9435a66f478a80d28870d2da5d4107866dcac8056e7a8923a46641d72ddef990c05ddb288c63e3842223f76d10abfe76c87dd8630768260dfa727a783d5a371226aa790d83e53044da263a4252fa322d85ff9a6e30ea86a2404a85173a8ab337ffa7062470a4635ab41611ca8adcdb563e03348e404dc9350373d4c84137302c77e3bc66410da5776e81d226e7c5de97fd0cf6aec4377ca3f6d2c22a718e36404364c606da94029c35a2c2ae44ce778a34af0a14c16989fa1d91270fc4af59b950e16bd563f0252b69ae54cfd3bdbf2f3fb1b5f660bb1e192b38f39df640e2c97c063955b851a6e60455c85116325a781c4a1fea4e4cf7fca64a08b7b0ccc0fa07ebd2698fe21d94b770ba9f17890914165dba40e98a9daad34a42ed928568a67eee5479322061f5cdb8e31942d1a1ef4de97d72a436eb60ace4a6ea3db9c3a903ac78588688ef740434538085f2d75ac5a5eaf4c87788421da6679dd19ffcf90aed1af75d3d6e255226021147f83b1a76b67978f74959547437d59d74c93e57cf0502667e67f2c6b67c804da15e7f6d879e24076722952f198b08087dd00dace17ac6267edc5601b99357c5631c48f206b54cd2ef651f7f4eda5abb9a4640113e62d62d123335f7b308dff9507a9aa4851ab667dc439672766d64919a332c7c9ddd1e776429ea5d847daa3647627acb050a18978563f7e558022f71599eb250e4fdd98278cc4d0c01615de395bb844bedab2efbf12b48aa4d36ba48c108e270f76c93399e685d8e16ad8426ebcc1d589269351de4f0e5431c078757737f87c426749e49d95cbf6ae7fe5fad26f0a073bc7263634b9746587879a505412be06c906c14327e494a10b3ef80c4ded82669c3d3f28972e661138c94fd30f04189fb7751df06dbdacd7b776ca4e549734007d4a8690acfa474ed3830f4bda8d970a51800aba8ec97676f5654ce5a02b0fe92ab7be8f710047f974c3eaa914f165347990cd9bc7653c0d3965fa5e497759d7e1472f1177adc69386b87d1203180a612884181f77481bb05f448934b5678cb2a89948ce2aee1cde13047a81bc57ea2bd2fcc10f22b88002d871bb0733fd028e700ef119aeb02c66b9d28712193ee74d42c588191ec1757b159a2068d0581382122ad63f4f4bc8189c60a4a7b67cd96995eccbfee6f8bd6ea98e4599e8acdf8a40f465eed96d15966b5efb50f7ae7eaa75f8edcf346682bfec93219bd8f4b3ff7ca4aadfebc1cf31e5bf6dd1349477fa458174d25aad3dc2ecb6fae40029230d7e4f4c4843cc63b795f1d56e29e0d1d43b34d00ef93bf1879228bb179af8033364a02f4742074da8416bdf19ff9ffa9087fc67345347f2ad2bd4e50f28a8b30cafe1285d005d0a7340a6bfd1aaed6cc6c8417d96f7e6da220b5ebd5737eb1ee2db0ad49e81a0ab1d490fc51111c6324aca550bb0abe05e38774870c0c370d70a8727b9f00584a074e08e2d74aba7fe26749d71d23ce21f97a747d22c29c2d93faefe3c05dd4838acd1ebd33a0c132fed5ff4025c71edf1a0607704192dde1989ca47763445266712fecc855b33d3c1edda1e8c8d7b9e4dd5ac712d34bcbfe32d7528d8ace1e8e137934837adac571bb37635d834b661aaa0acbe01cc8e0679f110e8d3432158f17f83652c621bf8957574b833e9de0fc312278becb7cd23e81d9b616b04b86da1790f2c891f2a58fedc4a25f3473bd6a858d749782d07820696cdc7150e62c9692b766ba7f41331486a71bde1960abd34b1fa1af50468eeedda115ed22a813f35adb51a9a87e4cef56072d5c553580817908295e5654c11af6d0288d48cb0f3e9c2fc51f195c228b5509b54b381554181e9dadadc66ebf57fef6da3aee97ff385a6402459d5443423f1c3c70da35df90887e16b20989188d5d886a8b23d4a8ecc04b4eb08b06107f9ec868b5698ecc5294f94b9c3b958365231ecdb283b4d97f4f7b823934663a40d25f30d41f76e6753f6c1b3a11805cfd92dde5c7517808e8a47015155b83967601fedecd7ca4bdeb7ab0dc90f150efb82e669daa71d56f3962e6112ece4564bde6e068920af6b3b2d8e0c30b85213ee587b70e4f5df18fb188e18352aac20400000003c20400007fff00004514cf7f3d05d14dd412d566f15934fb408a78c280acf1e29140905ef80ae3f1afa028316a7dae976dc45cafd809ce780f4e926b20daf4007ac6cefbe4f35a5a155723e7d21251a4c34db7d199c40399950b9f2c6a019eb40f52bc71a0a144ac7e3a551a9f4e0baaa857ee17a590a21b0be95d92db1564a74b8479ff410a48"], 0x1028}}, {{0x0, 0x0, &(0x7f0000006200)=[{&(0x7f0000006100)="64eb6b9cdf625627e64dab3cf792ef54ab3291ee15ddb5672c6d7d67022358ff8025a10921d075a95b068fc61afe50536b2376969cd27d4b3a10597d1611a3e75355531c3a1c3de6fb4d2808abc775458cc4830eb3aa6d05a2580f4fd7b81c05316ff0c98559f53f9064197a68c326ed3d3902d82596e1d98c7334d25bbcc3148128104407b6c2d9d3a09cdb22e7f51465cd6df6ead651d6d3f9c4f8a5fbd094cd3ac142f131f4f970435e2a4fdad3b25ad3921e0a8f705723eface157a739652f12a5754111ce0a2f1b667832432e8d0d95cf", 0xd3}], 0x1, &(0x7f0000006240)=[@dstopts_2292={{0x48, 0x29, 0x4, {0x88, 0x5, '\x00', [@pad1, @pad1, @ra, @ra={0x5, 0x2, 0xad3}, @hao={0xc9, 0x10, @mcast2}, @padn={0x1, 0x1, [0x0]}, @jumbo={0xc2, 0x4, 0x3}]}}}, @rthdr={{0x48, 0x29, 0x39, {0x6, 0x6, 0x0, 0x8, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x42}, @remote]}}}, @tclass={{0x14, 0x29, 0x43, 0x9}}, @rthdr={{0x88, 0x29, 0x39, {0x3b, 0xe, 0x2, 0x7, 0x0, [@empty, @private1, @local, @rand_addr=' \x01\x00', @mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, @remote]}}}], 0x130}}, {{&(0x7f0000006380)={0xa, 0x4e20, 0x0, @remote, 0x5}, 0x1c, &(0x7f0000007540)=[{&(0x7f00000063c0)="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", 0x1000}, {&(0x7f00000073c0)="86126f0fd5e7d7aedc67160b0ce90b3597", 0x11}, {&(0x7f0000007400)="9adcfe46b54ee12f7205e96c0fe623c086c06a207b51ee24a10e7fd8ff5c4e20e59b2fb71852acb1b865252d969bfeeb5836bb", 0x33}, {&(0x7f0000007440)="ef3ca999cadea8409ef79c5624859709328f2f854d9434d4d8ead927c456ffd15196d5871332b5ef33b07bc293084462aa8cbd99a36ffa0291adbb818bfaaa494ca2dc484cc62bfc75fabc60a3d3ed35f99261033e7af6db240949508235ef57e92694f5c4b777db4e39d72b3e398db96636e60e8052814e3f3a04b636075f7c4bfa832092134e0556715ab97b282ff149221d1e9fa2f330f5f37ef638be3d427e9248adb11e4c6b123f8df020c3737a773e4275449cf4287dc6591104de6996127818d113c788ecc99a4b4aad6cc6218a", 0xd1}], 0x4, &(0x7f0000007580)=[@flowinfo={{0x14, 0x29, 0xb, 0x20}}, @rthdrdstopts={{0x100, 0x29, 0x37, {0x32, 0x1c, '\x00', [@generic={0x1f, 0x1, "fc"}, @ra={0x5, 0x2, 0x3}, @ra={0x5, 0x2, 0x1}, @pad1, @calipso={0x7, 0x38, {0x2, 0xc, 0x9, 0x0, [0xffff, 0x7, 0x0, 0x81, 0x8, 0xb55d]}}, @ra={0x5, 0x2, 0x7f}, @generic={0x2, 0x96, "f0c38bda2ef77482f989eea9c98614235bca6fa7fcf19924026b79685b6146f31be315b9aaa9397852a0ff4dd26e5e71cc69cf02c07ba17b88931c1a4c889648ddde8c7581dc080fe11606d29319b1ab279bad4fc70cc3a44a99ad10528d36d13c8bd239576f7793dfe9e7bd5d4ad4e6a9b54ee71c572878dc5338a13b1777dfbd7fdec4f9d9ec3d732e5d55b1c3994d2c4efb05bb34"}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x101}}], 0x130}}], 0xa, 0x0)

[ 2019.898477]  kvmalloc_node+0x119/0x170
[ 2019.899477]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2019.900668]  seq_read_iter+0x81c/0x12b0
[ 2019.901569]  ? _cond_resched+0x10/0x30
[ 2019.902457]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2019.903542]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2019.904722]  proc_reg_read_iter+0x20a/0x2e0
[ 2019.905707]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2019.906872]  io_read+0x2dc/0x11e0
[ 2019.907681]  ? kiocb_done+0xc90/0xc90
[ 2019.908561]  ? mark_lock+0xf5/0x2df0
[ 2019.909428]  ? lock_chain_count+0x20/0x20
[ 2019.910413]  ? lock_acquire+0x197/0x470
[ 2019.911332]  ? __lock_acquire+0xbb1/0x5b00
[ 2019.912321]  io_issue_sqe+0x2e8a/0x77b0
[ 2019.913237]  ? perf_trace_lock+0xac/0x490
[ 2019.914189]  ? SOFTIRQ_verbose+0x10/0x10
[ 2019.915113]  ? lock_chain_count+0x20/0x20
05:02:29 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:29 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c, 0x0, 0x0, 0x0)

05:02:29 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 58)

05:02:29 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[ 2019.916058]  ? io_connect+0x610/0x610
[ 2019.917150]  ? lock_acquire+0x197/0x470
[ 2019.918093]  ? find_held_lock+0x2c/0x110
[ 2019.919036]  ? __fget_files+0x2cf/0x520
[ 2019.919945]  ? lock_downgrade+0x6d0/0x6d0
[ 2019.920908]  __io_queue_sqe+0x90/0x9d0
[ 2019.921798]  ? io_issue_sqe+0x77b0/0x77b0
[ 2019.922744]  ? __fget_files+0x2f8/0x520
[ 2019.923656]  ? io_prep_rw+0x7f5/0x1050
[ 2019.924565]  io_submit_sqes+0x44aa/0x8610
[ 2019.924733] FAULT_INJECTION: forcing a failure.
[ 2019.924733] name failslab, interval 1, probability 0, space 0, times 0
[ 2019.925546]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2019.925574]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2019.930267]  ? find_held_lock+0x2c/0x110
[ 2019.931196]  ? io_submit_sqes+0x8610/0x8610
[ 2019.932194]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2019.933291]  ? wait_for_completion_io+0x270/0x270
[ 2019.934390]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2019.935444]  ? vfs_write+0x354/0xb10
[ 2019.936302]  ? fput_many+0x2f/0x1a0
[ 2019.937133]  ? ksys_write+0x1a9/0x260
[ 2019.938000]  ? __ia32_sys_read+0xb0/0xb0
[ 2019.938936]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2019.940141]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2019.941314]  do_syscall_64+0x33/0x40
[ 2019.942160]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2019.943319] RIP: 0033:0x7fbe4d75bb19
[ 2019.944173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2019.948344] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2019.950081] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2019.951703] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2019.953347] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2019.954974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2019.956605] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2019.958275] CPU: 0 PID: 10791 Comm: syz-executor.0 Not tainted 5.10.238 #1
[ 2019.959865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2019.961786] Call Trace:
[ 2019.962395]  dump_stack+0x107/0x167
[ 2019.963228]  should_fail.cold+0x5/0xa
[ 2019.964097]  ? create_object.isra.0+0x3a/0xa20
[ 2019.965160]  should_failslab+0x5/0x20
[ 2019.966024]  kmem_cache_alloc+0x5b/0x310
[ 2019.966946]  ? mark_held_locks+0x9e/0xe0
[ 2019.967877]  create_object.isra.0+0x3a/0xa20
[ 2019.968877]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2019.970037]  kmem_cache_alloc_bulk+0x168/0x320
[ 2019.971079]  io_submit_sqes+0x6fe6/0x8610
[ 2019.972033]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2019.973180]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2019.974322]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2019.975417]  ? find_held_lock+0x2c/0x110
[ 2019.976351]  ? io_submit_sqes+0x8610/0x8610
[ 2019.977344]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2019.978436]  ? wait_for_completion_io+0x270/0x270
[ 2019.979536]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2019.980599]  ? vfs_write+0x354/0xb10
[ 2019.981445]  ? fput_many+0x2f/0x1a0
[ 2019.982272]  ? ksys_write+0x1a9/0x260
[ 2019.983134]  ? __ia32_sys_read+0xb0/0xb0
[ 2019.984059]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2019.985253]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2019.986430]  do_syscall_64+0x33/0x40
[ 2019.987273]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2019.988443] RIP: 0033:0x7f225ff90b19
[ 2019.989291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2019.993486] RSP: 002b:00007f225d506188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2019.995211] RAX: ffffffffffffffda RBX: 00007f22600a3f60 RCX: 00007f225ff90b19
[ 2019.996835] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2019.998453] RBP: 00007f225d5061d0 R08: 0000000000000000 R09: 0000000000000000
[ 2020.000074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2020.001724] R13: 00007ffc070b7daf R14: 00007f225d506300 R15: 0000000000022000
05:02:29 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:29 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000001c0100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:29 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet6_opts(r2, 0x29, 0x3b, 0x0, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a00)={0x14}, 0x14}}, 0x20000844)

05:02:29 executing program 5:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r1, 0x80089419, &(0x7f0000000000))
r2 = inotify_init1(0x0)
openat(r1, &(0x7f00000000c0)='./file1\x00', 0x44000, 0x0)
inotify_add_watch(r2, &(0x7f0000000040)='.\x00', 0x2000003)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000700)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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", @ANYBLOB], 0x54, 0x3)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0)
ioctl$FITRIM(r3, 0xc0185879, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x802, 0x0)
fremovexattr(r4, &(0x7f0000000180)=@known='com.apple.system.Security\x00')
sendfile(r0, r1, 0x0, 0x100000001)

05:02:29 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65, 0x0, 0x0, 0x0)

05:02:30 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:30 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000200100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:30 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0xe, 0x0, 0x0, 0x0, 0x0)

05:02:44 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:44 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68, 0x0, 0x0, 0x0)

05:02:44 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

05:02:44 executing program 7:
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000004c0), 0x80002, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, 0x0, 0x8, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44081}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0xfffffffffffff723, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000100)="57e5890eeec03da6eaeb1297fdabe457b11134a248072ca4bd91465202afd0fb7e5cad80998509658eb5bedfc2515c2304c2d9df15daeb74ce362d4de873aaff91ce42312654adebd8ce70759df10c4424ee8a816968c54560d95c9fe8dace2731bc7968e13ad9c0a78d9fce82c685d39974a5d5e61a3ed8a67811d58391ee200cccc6e8d5d5a4800fa7a9a4b2938c2939d39810a4352b63251ebaf7b34b67f3885460906d94b3edde00297829bec1d29aab7d2a1c01e7cba6", 0xb9, 0x80000000}, {&(0x7f0000000340)="f88cc94c1766ae2f6741657d22598134676f79bdcc77ead490949bc08c145ca942549d939bd211c8c18e2beed6ba5bd67b985de38fa736389b1cbb172bdd72729ba56e361d3611085c7eb2bd6177ff93b9f0b37a8a5f494bd974cf4948e8e0236a4669aed16d73d5fb2299da237fb98963", 0x71, 0x6}], 0x20000, &(0x7f00000003c0)={[{@shortname_win95}, {@shortname_win95}, {@shortname_win95}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}], [{@hash}]})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, {0x5}}, './file0\x00'})
pipe2(&(0x7f00000000c0), 0x80000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x120, 0x18, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @generic="2ef9b9d79bb827e8b023d973f9a9b317430606a5eb854dcf902b63643a28dfea2b84efeeb6dd5765d40299ce6e50190d9408877186bdf575b0c6c65b685d75e818361d6b1d17e3cf85df0b3de40dc1ec6c27fdc611b63c9c9d1c566dd4d417a0d86a6b907220885899fea9320188a414523d893995ae45cdc0276ce695fd4969066c7fe9dbabe7b9f1185eaa5447775b2f81f9484dc04a388b73b9313d8395bb5588a2d2d59aaee6064f9ea0235eebdd073e56f754222c96782a97", @nested={0x3c, 0x3f, 0x0, 0x1, [@typed={0x8, 0x4f, 0x0, 0x0, @fd=r2}, @generic, @typed={0xb, 0x8, 0x0, 0x0, @str='\x13\x19/&/-\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @typed={0x14, 0x10, 0x0, 0x0, @ipv6=@remote}, @typed={0x8, 0xa, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}, 0x120}}, 0x0)

05:02:44 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000003f0100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:44 executing program 5:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_submit(0x0, 0x1, &(0x7f0000000400)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000540)="4fa961a32c46292c4c203b03c6cfcb7f41a36b2033c451524efa095f3259d324fe60cf5baa606c7c29d5626c6a425a3357a6ef9b122793056fe62dc737af44a1070dcbaede3f1a1a803aeec79b506e019ba9a0faad0ffeddee88e9c7f880a2b88dd7ec8a16c3670691b02178a9efe72a78120600fe8be129a52b1b4d82cc8adf2f88522df22ee2ca034bd40b6be1e2b77c7b9594a599c877", 0x98, 0x0, 0x0, 0x3}])
syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, 0x0)
timer_delete(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000004c0), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0)
clock_gettime(0x0, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000440), &(0x7f0000000700))
close(0xffffffffffffffff)
timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x4, @thr={&(0x7f0000000600)="1a90741b478736dcb3b315064fc9e72c4608370b13bc2cb637529112fc303e1776468566db550164e33a10b0631194d0c525a6de03dea72ca7919d9f8026f6731bde01f3232df675dccf6cfdc168550c74433af885e6c95d44c46a6227103177f847898edf0b69b5bb4ce7cb18c9b532190cab9007de662870fd202b7c55fc84576b9e25c32997e5ebfb4bf56dacbc75625e461c5efcef9c8d5ad29e03c5acb0699a5bf8fca88e223ab1b91bd8b79f91aeddb32d54049112fa", &(0x7f00000006c0)="d268db7656a375b39a1a8696902ef074b8ab"}}, &(0x7f00000001c0))
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000007c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="00ed04000041899b09e5cd54b9d40a39fe4423ce044ef8533de350203693494a20951036907b9a985e32d200"/56])
clock_gettime(0x0, &(0x7f00000000c0))
clock_gettime(0x0, &(0x7f0000000100))
timer_create(0x9, &(0x7f0000000080)={0x0, 0x22, 0x1}, &(0x7f0000000380))
timer_create(0x6, &(0x7f0000000240)={0x0, 0x4, 0x4}, &(0x7f00000002c0)=<r0=>0x0)
timer_gettime(0x0, &(0x7f0000000080))
timer_delete(0x0)
timer_delete(r0)
clone3(&(0x7f0000000740)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2034.709810] loop7: detected capacity change from 0 to 135266304
[ 2034.711910] FAULT_INJECTION: forcing a failure.
[ 2034.711910] name failslab, interval 1, probability 0, space 0, times 0
[ 2034.714961] CPU: 0 PID: 10834 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2034.716607] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2034.718542] Call Trace:
[ 2034.719161]  dump_stack+0x107/0x167
[ 2034.720012]  should_fail.cold+0x5/0xa
[ 2034.720932]  ? create_object.isra.0+0x3a/0xa20
[ 2034.722002]  should_failslab+0x5/0x20
[ 2034.722891]  kmem_cache_alloc+0x5b/0x310
[ 2034.723846]  create_object.isra.0+0x3a/0xa20
[ 2034.724891]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2034.726084]  __kmalloc_node+0x1ae/0x420
[ 2034.727018]  kvmalloc_node+0x119/0x170
[ 2034.727928]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2034.729151]  seq_read_iter+0x81c/0x12b0
[ 2034.730080]  ? _cond_resched+0x10/0x30
[ 2034.730999]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2034.732097]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2034.733326]  proc_reg_read_iter+0x20a/0x2e0
[ 2034.734338]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2034.735535]  io_read+0x2dc/0x11e0
[ 2034.736388]  ? kiocb_done+0xc90/0xc90
[ 2034.737278]  ? mark_lock+0xf5/0x2df0
[ 2034.738156]  ? lock_chain_count+0x20/0x20
[ 2034.739145]  ? lock_acquire+0x197/0x470
[ 2034.740077]  ? __lock_acquire+0xbb1/0x5b00
[ 2034.741092]  io_issue_sqe+0x2e8a/0x77b0
[ 2034.742023]  ? perf_trace_lock+0xac/0x490
[ 2034.742980]  ? SOFTIRQ_verbose+0x10/0x10
[ 2034.743922]  ? lock_chain_count+0x20/0x20
[ 2034.744912]  ? io_connect+0x610/0x610
[ 2034.745807]  ? lock_acquire+0x197/0x470
[ 2034.746729]  ? find_held_lock+0x2c/0x110
[ 2034.747676]  ? __fget_files+0x2cf/0x520
[ 2034.748621]  ? lock_downgrade+0x6d0/0x6d0
[ 2034.749595]  __io_queue_sqe+0x90/0x9d0
[ 2034.750517]  ? io_issue_sqe+0x77b0/0x77b0
[ 2034.751474]  ? __fget_files+0x2f8/0x520
[ 2034.752428]  ? io_prep_rw+0x7f5/0x1050
[ 2034.753336]  io_submit_sqes+0x44aa/0x8610
[ 2034.754334]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2034.755487]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2034.756631]  ? find_held_lock+0x2c/0x110
[ 2034.757580]  ? io_submit_sqes+0x8610/0x8610
[ 2034.758589]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2034.759707]  ? wait_for_completion_io+0x270/0x270
[ 2034.760856]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2034.761931]  ? vfs_write+0x354/0xb10
[ 2034.762796]  ? fput_many+0x2f/0x1a0
[ 2034.763642]  ? ksys_write+0x1a9/0x260
[ 2034.764548]  ? __ia32_sys_read+0xb0/0xb0
[ 2034.765496]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2034.766712]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2034.767913]  do_syscall_64+0x33/0x40
[ 2034.768818]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2034.770007] RIP: 0033:0x7fbe4d75bb19
[ 2034.770869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2034.775168] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2034.776966] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2034.778634] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2034.780316] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2034.781991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2034.783652] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:02:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000650100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2034.829516] loop7: detected capacity change from 0 to 135266304
05:02:44 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:44 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c, 0x0, 0x0, 0x0)

05:02:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000a7c0100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

05:02:44 executing program 7:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x1c1040, 0x139)
statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0)
r1 = fork()
ptrace(0x10, r1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x41002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x6}, 0x0, 0x0, 0x402}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x1a, 0x7f, 0x4)
creat(&(0x7f00000001c0)='./file0\x00', 0x69)
io_setup(0x3, &(0x7f0000000000)=<r2=>0x0)
r3 = inotify_init1(0x0)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f00000000c0)=0x6, 0x4)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
fallocate(r4, 0x0, 0x0, 0x2)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000180))
inotify_add_watch(r3, &(0x7f0000000000)='./file0\x00', 0x43)
r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, '\x00', [{0x0, 0x7fffffff, 0x1, 0x8, 0x82f7, 0x12f}, {0x7, 0xbd, 0x400, 0x2, 0x267bc000, 0x101}], ['\x00', '\x00']})

05:02:45 executing program 5:
r0 = syz_io_uring_setup(0x68d2, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x1008, &(0x7f0000000740), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000000)='wlan1\x00', 0x10)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:45 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:45 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74, 0x0, 0x0, 0x0)

[ 2035.199101] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 2035.201332] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 2035.202858] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 2035.204359] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00
[ 2035.206064] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[ 2035.208922] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2035.210259] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2035.212558] Buffer I/O error on dev sr0, logical block 0, async page read
[ 2035.214336] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2035.215638] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2035.217936] Buffer I/O error on dev sr0, logical block 1, async page read
[ 2035.219713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2035.221786] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2035.224080] Buffer I/O error on dev sr0, logical block 2, async page read
[ 2035.225859] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2035.227178] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2035.229498] Buffer I/O error on dev sr0, logical block 3, async page read
[ 2035.247385] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 2035.249573] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 2035.251085] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 2035.252637] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00
[ 2035.254321] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0
[ 2035.256589] Buffer I/O error on dev sr0, logical block 4, async page read
[ 2035.258147] Buffer I/O error on dev sr0, logical block 5, async page read
[ 2035.259716] Buffer I/O error on dev sr0, logical block 6, async page read
[ 2035.261333] Buffer I/O error on dev sr0, logical block 7, async page read
05:02:59 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

05:02:59 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext, 0x4880, 0x400000000001, 0x16c5, 0x0, 0x40000000002, 0x1000000, 0x8001, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000240)={0x48100300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4000, 0x16)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x8002, 0x2)

05:02:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000004800100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:59 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

05:02:59 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:59 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:59 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a, 0x0, 0x0, 0x0)

05:02:59 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00')
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x80641, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0x9}, 0x580, 0x0, 0x0, 0xb9998546a837ad48, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, r0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
fcntl$setown(r1, 0x8, 0x0)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0xccdc3fb8ea953c39, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f00000002c0)={'batadv_slave_1\x00', {0x2, 0x0, @broadcast}})
setsockopt$sock_timeval(r2, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty, 0x6906}, 0x1c)
setsockopt$inet6_tcp_int(r2, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, 0x0, 0x0, &(0x7f0000000400)=""/104, 0x68}, 0x40000000)
sendmsg$inet6(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000540)}, 0x50000)
getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000280), 0x10)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$getown(r4, 0x9)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
write$P9_RUNLINKAT(r4, &(0x7f0000000040)={0x7}, 0x7)
fallocate(r4, 0x20, 0x0, 0x8000)
pwritev(r0, &(0x7f0000000100)=[{&(0x7f0000000040)='|', 0x1}], 0x1, 0x0, 0x0)

[ 2049.651804] FAULT_INJECTION: forcing a failure.
[ 2049.651804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2049.654771] CPU: 1 PID: 10900 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2049.656510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2049.658580] Call Trace:
[ 2049.659246]  dump_stack+0x107/0x167
[ 2049.660167]  should_fail.cold+0x5/0xa
[ 2049.661133]  _copy_to_iter+0x264/0x12d0
[ 2049.662136]  ? seq_read_iter+0xd4d/0x12b0
[ 2049.663164]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2049.664385]  ? __virt_addr_valid+0x170/0x5d0
[ 2049.665485]  ? __check_object_size+0x319/0x440
[ 2049.666624]  seq_read_iter+0xdcb/0x12b0
[ 2049.667640]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2049.668923]  proc_reg_read_iter+0x20a/0x2e0
[ 2049.669996]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2049.671269]  io_read+0x2dc/0x11e0
[ 2049.672150]  ? kiocb_done+0xc90/0xc90
[ 2049.673103]  ? mark_lock+0xf5/0x2df0
[ 2049.674035]  ? lock_chain_count+0x20/0x20
[ 2049.675094]  ? lock_acquire+0x197/0x470
[ 2049.676090]  ? __lock_acquire+0xbb1/0x5b00
[ 2049.677157]  io_issue_sqe+0x2e8a/0x77b0
[ 2049.678151]  ? perf_trace_lock+0xac/0x490
[ 2049.679186]  ? SOFTIRQ_verbose+0x10/0x10
[ 2049.680188]  ? lock_chain_count+0x20/0x20
[ 2049.681227]  ? io_connect+0x610/0x610
[ 2049.682181]  ? lock_acquire+0x197/0x470
[ 2049.683160]  ? find_held_lock+0x2c/0x110
[ 2049.684166]  ? __fget_files+0x2cf/0x520
[ 2049.685145]  ? lock_downgrade+0x6d0/0x6d0
[ 2049.686162]  __io_queue_sqe+0x90/0x9d0
[ 2049.687121]  ? io_issue_sqe+0x77b0/0x77b0
[ 2049.688129]  ? __fget_files+0x2f8/0x520
[ 2049.689115]  ? io_prep_rw+0x7f5/0x1050
[ 2049.690073]  io_submit_sqes+0x44aa/0x8610
[ 2049.691127]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2049.692341]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2049.693536]  ? find_held_lock+0x2c/0x110
[ 2049.694536]  ? io_submit_sqes+0x8610/0x8610
[ 2049.695599]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2049.696810]  ? wait_for_completion_io+0x270/0x270
[ 2049.697989]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2049.699120]  ? vfs_write+0x354/0xb10
[ 2049.700030]  ? fput_many+0x2f/0x1a0
[ 2049.700937]  ? ksys_write+0x1a9/0x260
[ 2049.701868]  ? __ia32_sys_read+0xb0/0xb0
[ 2049.702884]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2049.704154]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2049.705416]  do_syscall_64+0x33/0x40
[ 2049.706319]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2049.707560] RIP: 0033:0x7fbe4d75bb19
[ 2049.708469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2049.712922] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2049.714765] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2049.716502] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2049.718237] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2049.719958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2049.721694] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:02:59 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:59 executing program 5:
ptrace$peeksig(0x4209, 0x0, &(0x7f0000000000)={0x7, 0x1, 0x4}, &(0x7f0000000300)=[{}, {}, {}, {}])
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000007c0), 0x6e, &(0x7f0000001a40)=[{&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/105, 0x69}, {&(0x7f0000002e00)=""/4106, 0x100a}, {&(0x7f00000018c0)=""/185, 0xb9}, {&(0x7f0000001980)=""/132, 0x84}], 0x5, &(0x7f0000001c00)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT, @ANYRES32=0x0, @ANYRESHEX, @ANYRES32, @ANYBLOB="000000001c000000000000000100010002000000", @ANYRES32=<r0=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x98}, 0x20)
r1 = fork()
ptrace(0x10, r1)
rt_tgsigqueueinfo(r0, r1, 0x2, &(0x7f0000001b80)={0x37, 0xff, 0xfffffffe})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000006c0)=<r2=>0x0)
clone3(&(0x7f0000000740)={0x40000, &(0x7f0000000240), &(0x7f0000000500), &(0x7f0000000540), {0x8}, &(0x7f0000000580)=""/219, 0xdb, &(0x7f0000000680)=""/36, &(0x7f0000000700)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2], 0x5}, 0x58)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x66901, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000007, 0x810, r5, 0x10000000)
timer_gettime(r4, &(0x7f00000002c0))
fstat(r3, &(0x7f00000000c0))
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/machinecheck', 0x6281, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000001c0)={0xc8182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:02:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000f00100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:02:59 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

05:02:59 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5, 0x0, 0x0, 0x0)

05:02:59 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:02:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000003000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:12 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

05:03:12 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

05:03:12 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:12 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000004000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:12 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

05:03:12 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:12 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

05:03:12 executing program 7:
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, r1}}, './file1\x00'})
syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0/file0\x00', 0x7, 0x1, &(0x7f0000001300)=[{&(0x7f0000000300)="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", 0x1000}], 0x1000, &(0x7f0000001340)=ANY=[@ANYBLOB="73697a653d2d322c687567653d6164766973652c6d70fe0f6f6c3d7072656665723a332f33392c687567653d6e65c9843a4afe959dbe", @ANYRESHEX=r1, @ANYBLOB="2c6d706f6c3d64656661756c743d72656c61746976652c687567653d6e657665722c666f776e65723d6d0a5bd59fe0a904f315271257e098b6a62a7c", @ANYRESDEC, @ANYBLOB=',\x00'])
keyctl$chown(0x4, 0x0, r0, r1)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000140)='\n', 0x1}], 0x0, 0x0)

[ 2062.618831] FAULT_INJECTION: forcing a failure.
[ 2062.618831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2062.622454] CPU: 0 PID: 10947 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2062.624373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2062.626689] Call Trace:
[ 2062.627427]  dump_stack+0x107/0x167
[ 2062.628444]  should_fail.cold+0x5/0xa
[ 2062.629496]  _copy_to_iter+0x264/0x12d0
[ 2062.630503]  ? seq_read_iter+0xd4d/0x12b0
[ 2062.631532]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2062.632768]  ? __virt_addr_valid+0x170/0x5d0
[ 2062.633867]  ? __check_object_size+0x319/0x440
[ 2062.635008]  seq_read_iter+0xdcb/0x12b0
[ 2062.636020]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2062.637300]  proc_reg_read_iter+0x20a/0x2e0
[ 2062.638372]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2062.639651]  io_read+0x2dc/0x11e0
[ 2062.640535]  ? kiocb_done+0xc90/0xc90
[ 2062.641490]  ? mark_lock+0xf5/0x2df0
[ 2062.642424]  ? lock_chain_count+0x20/0x20
[ 2062.643474]  ? lock_acquire+0x197/0x470
[ 2062.644474]  ? __lock_acquire+0xbb1/0x5b00
[ 2062.645550]  io_issue_sqe+0x2e8a/0x77b0
[ 2062.646548]  ? perf_trace_lock+0xac/0x490
[ 2062.647584]  ? SOFTIRQ_verbose+0x10/0x10
[ 2062.648600]  ? lock_chain_count+0x20/0x20
[ 2062.649644]  ? io_connect+0x610/0x610
[ 2062.650603]  ? lock_acquire+0x197/0x470
[ 2062.651588]  ? find_held_lock+0x2c/0x110
[ 2062.652619]  ? __fget_files+0x2cf/0x520
[ 2062.653612]  ? lock_downgrade+0x6d0/0x6d0
[ 2062.654654]  __io_queue_sqe+0x90/0x9d0
[ 2062.655636]  ? io_issue_sqe+0x77b0/0x77b0
[ 2062.655810] loop7: detected capacity change from 0 to 4096
[ 2062.656662]  ? __fget_files+0x2f8/0x520
[ 2062.656691]  ? io_prep_rw+0x7f5/0x1050
[ 2062.659281]  io_submit_sqes+0x44aa/0x8610
[ 2062.660355]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2062.661787]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2062.663100]  ? find_held_lock+0x2c/0x110
[ 2062.664320]  ? io_submit_sqes+0x8610/0x8610
[ 2062.665416]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2062.666622]  ? wait_for_completion_io+0x270/0x270
[ 2062.667822]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2062.668982]  ? vfs_write+0x354/0xb10
[ 2062.669904]  ? fput_many+0x2f/0x1a0
[ 2062.670803]  ? ksys_write+0x1a9/0x260
[ 2062.671752]  ? __ia32_sys_read+0xb0/0xb0
[ 2062.672774]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2062.674073]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2062.675361]  do_syscall_64+0x33/0x40
[ 2062.676274]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2062.677556] RIP: 0033:0x7fbe4d75bb19
[ 2062.678475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2062.683025] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2062.684917] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2062.686694] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2062.688468] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2062.690246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2062.692028] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:03:12 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

05:03:12 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000030000000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:12 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:12 executing program 7:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = fork()
ptrace(0x10, r0)
wait4(r0, &(0x7f0000000340), 0x8, 0x0)
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x30, 0xd8, 0x0, 0x5, 0x50000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfffffff8, 0x2, @perf_bp={&(0x7f00000001c0), 0x2}, 0x11, 0x5, 0x4, 0x8, 0x7, 0xe53, 0x5, 0x0, 0x3a0, 0x0, 0x7}, r0, 0xe, 0xffffffffffffffff, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}], 0x20}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_setup(0x3630, &(0x7f0000000140)={0x0, 0x5417, 0x0, 0x2, 0x14a, 0x0, r4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/vtconsole', 0x644800, 0x20)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$EVIOCSABS20(r5, 0x401845e0, &(0x7f0000000300)={0x7f, 0x101, 0x1, 0x3, 0x9, 0x9})
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=ANY=[@ANYBLOB="ac010000170001000000000000000000e00000020000000000000000000000000000000000000000ac1414aa00000000000000000000000000000000000000000000000000000000fc00"/104, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008400050000000000000000000000000000000001000000003300000000000000fe8000000000000000000000000000aa0000000000000000000000000000000000000000ac1414aa000000000000000000000000000000003c0000000000000000000000000000000000000000000000009d5ce700"/263], 0x1ac}}, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)

05:03:12 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2062.807300] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.7'.
05:03:12 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

05:03:12 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

05:03:12 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000040000000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2062.865780] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.7'.
05:03:26 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

05:03:26 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:26 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
sendmsg$nl_generic(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYRES32=r1], 0x24}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x5ce94, 0x1ff, 0x0, 0x7, 0x7, 0x0, 0x7}, 0x0, 0xd, 0xffffffffffffffff, 0x2)
ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0104080100016a3ef2027c39"], 0x6)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000040)=@hopopts={0x0, 0x5, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @padn, @generic={0x3f, 0x27, "bfbaee49142b9384acc194db5e0212fa866035729354d71dcc1fec512f7773e70fb2d4781cc61c"}]}, 0x38)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae701d5ca00"})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0xf4, 0x40, 0xff, 0x1, 0x0, 0x9, 0x100, 0x9, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x3, @perf_bp={&(0x7f0000000400), 0x8}, 0x22002, 0x7, 0x627, 0x6, 0x5, 0x200, 0x3, 0x0, 0x5, 0x0, 0x1f}, 0x0, 0xf, 0xffffffffffffffff, 0x9)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), r2)
sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, r3, 0x8, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x40041)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000200)=0x1f)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

05:03:26 executing program 7:
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = dup2(r2, r1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = dup(r4)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0x1, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYRES64, @ANYRESDEC=r3, @ANYBLOB="000b26bd7000fedbdf25350000000800030060da039499fef607461d71efbd8037b2a588a68ef72dfedb89c4449afc85627a926d7bd692e40572ff9205fe232022f9b5fc5e0c8f589e533ca6561bcff7fab112", @ANYRES32=r6, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x41}, 0x8000)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001440)={{}, 0x0, 0x2, @unused=[0x1, 0x0, 0x0, 0x4], @name="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"})
socket$inet6_udplite(0xa, 0x2, 0x88)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, r7, {0x4}}, './file1\x00'})
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@lazytime}, {@jqfmt_vfsold}]})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0))
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

05:03:26 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000020100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:26 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

05:03:26 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

05:03:26 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

05:03:26 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa00, 0x0, 0x0, 0x0)

[ 2077.006510] FAULT_INJECTION: forcing a failure.
[ 2077.006510] name failslab, interval 1, probability 0, space 0, times 0
[ 2077.009260] CPU: 1 PID: 11010 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2077.010901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2077.012856] Call Trace:
[ 2077.013479]  dump_stack+0x107/0x167
[ 2077.014376]  should_fail.cold+0x5/0xa
[ 2077.015294]  ? create_object.isra.0+0x3a/0xa20
[ 2077.016389]  should_failslab+0x5/0x20
[ 2077.017286]  kmem_cache_alloc+0x5b/0x310
[ 2077.018269]  create_object.isra.0+0x3a/0xa20
[ 2077.019304]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2077.020532]  __kmalloc+0x16e/0x390
[ 2077.021363]  io_setup_async_rw+0x180/0x580
[ 2077.022362]  ? iov_iter_restore+0x195/0x3a0
[ 2077.023382]  io_read+0x775/0x11e0
[ 2077.024211]  ? kiocb_done+0xc90/0xc90
[ 2077.025129]  ? mark_lock+0xf5/0x2df0
[ 2077.026036]  ? lock_chain_count+0x20/0x20
[ 2077.027080]  ? lock_acquire+0x197/0x470
[ 2077.027991]  ? __lock_acquire+0xbb1/0x5b00
[ 2077.029014]  io_issue_sqe+0x2e8a/0x77b0
[ 2077.029987]  ? perf_trace_lock+0xac/0x490
[ 2077.030971]  ? SOFTIRQ_verbose+0x10/0x10
[ 2077.031908]  ? lock_chain_count+0x20/0x20
[ 2077.032885]  ? io_connect+0x610/0x610
[ 2077.033812]  ? lock_acquire+0x197/0x470
[ 2077.034737]  ? find_held_lock+0x2c/0x110
[ 2077.035735]  ? __fget_files+0x2cf/0x520
[ 2077.036676]  ? lock_downgrade+0x6d0/0x6d0
[ 2077.037643]  __io_queue_sqe+0x90/0x9d0
[ 2077.038598]  ? io_issue_sqe+0x77b0/0x77b0
[ 2077.039584]  ? __fget_files+0x2f8/0x520
[ 2077.040545]  ? io_prep_rw+0x7f5/0x1050
[ 2077.041508]  io_submit_sqes+0x44aa/0x8610
[ 2077.042502]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2077.043698]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2077.044825]  ? find_held_lock+0x2c/0x110
[ 2077.045800]  ? io_submit_sqes+0x8610/0x8610
[ 2077.046825]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2077.047913]  ? wait_for_completion_io+0x270/0x270
[ 2077.049069]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2077.050180]  ? vfs_write+0x354/0xb10
05:03:26 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

[ 2077.051018]  ? fput_many+0x2f/0x1a0
[ 2077.052061]  ? ksys_write+0x1a9/0x260
[ 2077.052991]  ? __ia32_sys_read+0xb0/0xb0
[ 2077.053537] loop7: detected capacity change from 0 to 16776704
[ 2077.053989]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2077.054015]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2077.054042]  do_syscall_64+0x33/0x40
[ 2077.058342]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2077.059591] RIP: 0033:0x7fbe4d75bb19
[ 2077.060455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2077.064892] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2077.066639] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2077.068283] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2077.069961] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2077.071636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2077.073318] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2077.077586] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2077.078805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
05:03:26 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000030100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2077.116441] EXT4-fs (loop7): mounted filesystem without journal. Opts: lazytime,jqfmt=vfsold,,errors=continue
05:03:27 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, 0x0, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:27 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:27 executing program 5:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x109782)
writev(0xffffffffffffffff, &(0x7f0000000140), 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pipe2(0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x48e01)
writev(r1, 0x0, 0x0)
readv(r0, &(0x7f0000000340)=[{&(0x7f0000000000)=""/192, 0xc0}], 0x1)

05:03:27 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000040100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="b8000000130041000000000000000000ffffffff000000000000ff02000000000000000000000000000100000000000000000a00403c89000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e7e000"/112], 0xb8}}, 0x0)
syz_io_uring_setup(0x5606, &(0x7f0000000040)={0x0, 0xef33, 0x2, 0x1, 0x256}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000340))
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000240)={&(0x7f0000000380)=""/67, 0x43})
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000280)=@IORING_OP_WRITE={0x17, 0x5, 0x0, @fd, 0x11aa7d53, 0x0, 0x0, 0x0, 0x1}, 0x6)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00))
r2 = syz_open_dev$mouse(&(0x7f0000000100), 0x201, 0xa0000)
getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000180), &(0x7f00000001c0)=0x8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0)

05:03:43 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x40, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x9, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffd, 0x3ab}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000340)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x2, &(0x7f0000000280)={0x0, 0x3938700}}, 0x4)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r2 = socket$inet(0x2, 0xa, 0x1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r3, 0x4, &(0x7f0000000080)='-{\'&#\x00', &(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r2, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25", 0x2d}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000, 0x1}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80101)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40282, 0x80)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x200}, 0x10002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x80)

05:03:43 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:43 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

05:03:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000050100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:43 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000080)='./mnt\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000340)=ANY=[@ANYBLOB="020000000002000000000000f7ff0000", @ANYRES32=0x0, @ANYBLOB="040000000000000010000000000000002000000000000000"], 0x2c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
lgetxattr(&(0x7f0000000000)='mnt/encrypted_dir\x00', &(0x7f0000000040)=@known='system.posix_acl_access\x00', &(0x7f0000000200)=""/128, 0x2a)
lsetxattr$security_selinux(&(0x7f00000000c0)='./mnt\x00', &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:pam_console_exec_t:s0\x00', 0x28, 0x2)

05:03:43 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

05:03:43 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0)

05:03:43 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

[ 2093.949751] FAULT_INJECTION: forcing a failure.
[ 2093.949751] name failslab, interval 1, probability 0, space 0, times 0
[ 2093.951769] CPU: 1 PID: 11055 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2093.952976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2093.954398] Call Trace:
[ 2093.954853]  dump_stack+0x107/0x167
[ 2093.955489]  should_fail.cold+0x5/0xa
[ 2093.956150]  ? __io_queue_sqe+0x666/0x9d0
[ 2093.956861]  should_failslab+0x5/0x20
[ 2093.957529]  kmem_cache_alloc_trace+0x55/0x320
[ 2093.958311]  ? lock_downgrade+0x6d0/0x6d0
[ 2093.959028]  __io_queue_sqe+0x666/0x9d0
[ 2093.959713]  ? io_issue_sqe+0x77b0/0x77b0
[ 2093.960425]  ? __fget_files+0x2f8/0x520
[ 2093.961118]  ? io_prep_rw+0x7f5/0x1050
[ 2093.961789]  io_submit_sqes+0x44aa/0x8610
[ 2093.962535]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2093.963381]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2093.964211]  ? find_held_lock+0x2c/0x110
[ 2093.964919]  ? io_submit_sqes+0x8610/0x8610
[ 2093.965667]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2093.966497]  ? wait_for_completion_io+0x270/0x270
[ 2093.967321]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2093.968119]  ? vfs_write+0x354/0xb10
[ 2093.968759]  ? fput_many+0x2f/0x1a0
[ 2093.969396]  ? ksys_write+0x1a9/0x260
[ 2093.970051]  ? __ia32_sys_read+0xb0/0xb0
[ 2093.970748]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2093.971643]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2093.972524]  do_syscall_64+0x33/0x40
[ 2093.973165]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2093.974042] RIP: 0033:0x7fbe4d75bb19
[ 2093.974681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2093.977837] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2093.979139] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2093.980361] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2093.981598] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2093.982819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2093.984036] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:03:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000060100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:43 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

05:03:43 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:43 executing program 7:
r0 = fork()
ptrace(0x10, r0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x1}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3e}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
getpgrp(0x0)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec494d8000000000000b7382cb035aee7d07675"]})
sendmsg$nl_generic(r1, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="d400000014000268e872002a36e58c2516000000309195bcedd4a355ffd0b57d36c80aa3cd5c00a209ab410588e2acf39f612a058aca019d424c1cfefa9bd84118e7b9a3dc7b648488e3b314280151f16e53c3b34d356001432e0e37dbfac2e264d49dde22ffb05d71782e4588a22964e120c9b3e8ac10a180903c642a26553943488705f8f9389f0dc82f10989f62b3874701ee49da692b47f3a2374ddcf5407ac1d8d6ece93e8156a83bca75748906b35121f4bfbcd532464798ecfcbf0151eccc1703000000e09aefabad56510f51901f721fb776488673f91400"/230], 0xd4}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x82000, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/bus/input/handlers\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_CQM(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)={0x34, r4, 0xc0b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x18, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0xc, 0x1, [0x0, 0x0]}]}]}, 0x34}}, 0x0)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x1)
r7 = signalfd4(r2, &(0x7f0000000180)={[0x9]}, 0x8, 0x80000)
ioctl$TUNATTACHFILTER(r7, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x9, 0x81, 0x0, 0x1ff}]})

05:03:44 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

05:03:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000070100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

05:03:44 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:03:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000080100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:03:44 executing program 5:
rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100))
perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x2, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x4000001}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x2000000}}}, 0x108)
pselect6(0x40, &(0x7f00000013c0)={0x0, 0xfffffffffffffeff, 0x0, 0x9d, 0x5, 0x0, 0x8}, 0x0, &(0x7f0000001440)={0xe5, 0x80000000a, 0x0, 0x2000000000000005, 0x1, 0x401, 0x81, 0x104c0cd1}, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)={[0x7]}, 0x8})
fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1)
quotactl(0x0, &(0x7f0000001340)='./file0\x00', 0x0, &(0x7f0000000180)="637b5d08aede0e6ded4f1e4ea75480cf7f06d1e53798a2acdb3a4a8f435a2900")
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000200)={0x1, 0x0, {0xa, 0x19, 0x12, 0xd, 0x9, 0xb54, 0x3, 0x142, 0xffffffffffffffff}})
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)
syz_io_uring_setup(0x6ee5, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0xb8}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
fallocate(0xffffffffffffffff, 0x4, 0x0, 0x68cb)
socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000280)=0x20e)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000040)=ANY=[], 0x150}, 0x1, 0x0, 0x0, 0x4000000}, 0x48800)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000008c0), 0xc)
signalfd(0xffffffffffffffff, &(0x7f0000000800)={[0xfffffffffffffffb]}, 0x8)
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000240)=0xffffffffffffffff)
unshare(0x48020200)

05:04:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:04:00 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

05:04:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000180100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2110.299475] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:04:00 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

05:04:00 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

05:04:00 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

05:04:00 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac950755951deec4790aad73f2a0d0ea95e61d823c36e791793"], 0x24}}, 0x0)
r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80))
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x220004, &(0x7f0000000600)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@privport}, {@noextend}, {@access_client}, {@cache_loose}, {@version_L}], [{@obj_type={'obj_type', 0x3d, '-\\'}}]}})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYBLOB="300000001e00210c00a900"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
r3 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)=ANY=[@ANYBLOB=')\x00\x00 ', @ANYRES16, @ANYBLOB="0000008c9b05cd4102", @ANYRES16=r0, @ANYRES32=0x0], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
[ 2110.310652] FAULT_INJECTION: forcing a failure.
[ 2110.310652] name failslab, interval 1, probability 0, space 0, times 0
[ 2110.312327] CPU: 1 PID: 11124 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2110.313420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000003080)={{r2}, "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"})
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
io_uring_setup(0x1db9, &(0x7f0000000580)={0x0, 0x138f, 0x10, 0x3, 0x176})

05:04:00 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect$cdc_ecm(0x6, 0x0, 0x0, 0x0)
timer_delete(0x0)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_gettime(r0, &(0x7f00000002c0))
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
dup(r1)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x9]}, 0x8, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@private2}, 0x0, @in=@broadcast}}, &(0x7f0000000080)=0xe8)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000000c0)={0xaa5, 0x9, 0x9, 0xfffffffd, 0x11b2})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000140)={@private0, r3}, 0x14)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/machinecheck', 0x6281, 0x19)
timer_delete(r0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0)
clone3(&(0x7f0000000880)={0x100, &(0x7f0000000640), &(0x7f0000000440), &(0x7f0000000600), {0x80041}, &(0x7f0000001e00)=""/102400, 0x19000, &(0x7f0000000980)=""/231, &(0x7f0000000840)}, 0x58)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100))
socket$inet6_udplite(0xa, 0x2, 0x88)
clone3(&(0x7f00000001c0)={0xc8182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2110.314577] Call Trace:
[ 2110.315111]  dump_stack+0x107/0x167
[ 2110.315672]  should_fail.cold+0x5/0xa
[ 2110.316214]  ? __io_queue_sqe+0x666/0x9d0
[ 2110.316799]  should_failslab+0x5/0x20
[ 2110.317351]  kmem_cache_alloc_trace+0x55/0x320
[ 2110.317989]  ? lock_downgrade+0x6d0/0x6d0
[ 2110.318589]  __io_queue_sqe+0x666/0x9d0
[ 2110.319150]  ? io_issue_sqe+0x77b0/0x77b0
[ 2110.319727]  ? __fget_files+0x2f8/0x520
[ 2110.320287]  ? io_prep_rw+0x7f5/0x1050
[ 2110.320841]  io_submit_sqes+0x44aa/0x8610
[ 2110.321455]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2110.322149]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2110.322828]  ? find_held_lock+0x2c/0x110
[ 2110.323402]  ? io_submit_sqes+0x8610/0x8610
[ 2110.324013]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2110.324689]  ? wait_for_completion_io+0x270/0x270
[ 2110.325383]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2110.326033]  ? vfs_write+0x354/0xb10
[ 2110.326572]  ? fput_many+0x2f/0x1a0
[ 2110.327083]  ? ksys_write+0x1a9/0x260
[ 2110.327631]  ? __ia32_sys_read+0xb0/0xb0
[ 2110.328199]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2110.328942]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2110.329686]  do_syscall_64+0x33/0x40
[ 2110.330209]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2110.330922] RIP: 0033:0x7fbe4d75bb19
[ 2110.331442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2110.334044] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2110.335111] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2110.336112] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2110.337111] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2110.338119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2110.339117] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2110.371415] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2110.372822] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2110.374052] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:04:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000001c0100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2110.383604] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2110.396710] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2110.398071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2110.399213] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:04:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:04:00 executing program 5:
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x10)
ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, &(0x7f0000000340))
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={0x0, <r1=>0x0})
r2 = syz_open_procfs(r1, &(0x7f0000000480)='gid_map\x00')
readv(0xffffffffffffffff, &(0x7f0000001640)=[{&(0x7f0000001780)=""/251, 0xfb}, {&(0x7f0000001880)=""/102, 0x66}, {&(0x7f0000001900)=""/130, 0x82}, {&(0x7f0000001500)=""/109, 0x6d}, {&(0x7f0000001580)=""/82, 0x52}], 0x5)
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4095, 0xfff}], 0x17)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00')
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000001e00)=ANY=[@ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB="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"/683])
getdents(r4, &(0x7f0000000380)=""/215, 0xd7)
fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000180)={'U-', 0x7fffffff}, 0x16, 0x2)
r5 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000080)='./file0/file1\x00', 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
fsetxattr$security_selinux(r6, &(0x7f0000000240), &(0x7f00000002c0)='system_u:object_r:dlm_control_device_t:s0\x00', 0x2a, 0x6a4e5309ea842515)
write$P9_RXATTRCREATE(r3, &(0x7f0000000200)={0x7, 0x21, 0x1}, 0x7)
openat$bsg(0xffffffffffffff9c, &(0x7f00000014c0), 0x103, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000001a40))
unshare(0x48020200)

05:04:00 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

05:04:00 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

05:04:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000650100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000300000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:00 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

05:04:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000500000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:00 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:04:00 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r0=>0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
syz_80211_inject_frame(&(0x7f0000000100), &(0x7f0000000200)=@mgmt_frame=@auth={@with_ht={{{0x0, 0x0, 0xb, 0x0, 0x0, 0x1}, {0x3}, @device_a, @device_a, @initial, {0x5, 0x4}}, @ver_80211n={0x0, 0x40ac, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1}}, 0x0, 0x3, 0x40, @val={0x10, 0x1, 0xde}, [{0xdd, 0x60, "578d2187e622e49b54e92fd854a71439ab8afe451e27de34911f27459acfc292b8d78524ac6887d6573d2f72f30a55a0f2b90f9d09e26223a975c25db22c2572b1fa65b2556ce7e833948cbeb8695f4f7cf2bf19ea0d2930d9621b0fd1662ff3"}]}, 0x87)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r3 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000)
syz_io_uring_submit(r6, r5, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
syz_io_uring_submit(r0, r5, &(0x7f0000000180)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x5, 0x7, 0x0, 0x5, 0x4, 0x1}, 0x1)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000140)=ANY=[@ANYBLOB="500000000802110800010802111639390907523f00000008021100000000000000000000000000640001000006020202020202010882848b960c121824"], 0x36)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100)

05:04:00 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

[ 2110.769742] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2110.784466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2110.812378] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2111.123529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2111.127518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2111.129737] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
05:04:13 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

05:04:13 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:13 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

05:04:13 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

05:04:13 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:04:13 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0/file0\x00', 0x8)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[])
mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0)
mount$bind(&(0x7f0000000540)='./file0/../file0\x00', &(0x7f0000000580)='./file0\x00', 0x0, 0x2001010, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1000, 0x0)
mount$bind(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000002640)='./file0/file0\x00', 0x0, 0x217811, 0x0)
mount$bind(&(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000002680)='./file0/../file0\x00', 0x0, 0x800468, 0x0)
umount2(&(0x7f0000001dc0)='./file0/../file0\x00', 0x2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000500)='./file0/file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x4000)
syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f00000002c0)='./file0/../file0\x00', 0xffff, 0x3, &(0x7f0000000480)=[{&(0x7f0000000340)="29e0d3ef80e0a89d8035f116cf2dfe68ab4fcb588985d93babdc6f35a2166cac7876d77cd61b15236089b48838b6f632b3ee16249bbeae519cedaa31dcad2f3628c3846d44d4a14f356cdeb658304859c87276e784ed5d4a95445597e63d5a775f95", 0x62, 0x7fffffff}, {&(0x7f00000003c0)="e35927608d09630871278892cba9d6a8965e7ca17981bcbaa5fb8d43b4aeb4d38d220c544a07caeafb28b3741bcdacd99cfba15c4c51e466942c713baf2643c20970c5be6e75", 0x46, 0x7ff}, {&(0x7f0000000440), 0x0, 0x3}], 0x800000, &(0x7f0000000680)={[{'@$'}], [{@smackfsroot={'smackfsroot', 0x3d, 'tmpfs\x00'}}, {@dont_hash}, {@fowner_eq={'fowner', 0x3d, r0}}, {@fsname={'fsname', 0x3d, '-{-'}}, {@smackfshat={'smackfshat', 0x3d, '/\\&-@/,{/:\'^@!'}}]})

05:04:13 executing program 7:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

05:04:13 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

05:04:13 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2123.853415] FAULT_INJECTION: forcing a failure.
[ 2123.853415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2123.856131] CPU: 1 PID: 11187 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2123.857707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2123.859566] Call Trace:
[ 2123.860167]  dump_stack+0x107/0x167
[ 2123.860991]  should_fail.cold+0x5/0xa
[ 2123.861875]  _copy_from_user+0x2e/0x1b0
[ 2123.862784]  iovec_from_user+0x141/0x400
[ 2123.863710]  __import_iovec+0x67/0x590
[ 2123.864585]  ? kfree+0xd7/0x340
[ 2123.865354]  io_import_iovec+0x581/0x1120
[ 2123.866286]  ? io_put_sq_data+0x80/0x250
[ 2123.867215]  ? io_complete_rw+0x230/0x230
[ 2123.868150]  ? io_clean_op+0x30c/0x870
[ 2123.869035]  ? kiocb_done+0x16b/0xc90
[ 2123.869913]  io_read+0xe14/0x11e0
[ 2123.870699]  ? __is_insn_slot_addr+0x14c/0x290
[ 2123.871747]  ? kernel_text_address+0xf2/0x120
[ 2123.872763]  ? unwind_get_return_address+0x55/0xa0
[ 2123.873888]  ? create_prof_cpu_mask+0x20/0x20
[ 2123.874900]  ? kiocb_done+0xc90/0xc90
[ 2123.875761]  ? mark_lock+0xf5/0x2df0
[ 2123.876622]  ? lock_chain_count+0x20/0x20
[ 2123.877565]  ? __lock_acquire+0xbb1/0x5b00
[ 2123.878543]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2123.879723]  ? SOFTIRQ_verbose+0x10/0x10
[ 2123.880629]  ? kasan_save_stack+0x1b/0x40
[ 2123.881568]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2123.882704]  ? __io_queue_sqe+0x666/0x9d0
[ 2123.883656]  ? __lock_acquire+0xbb1/0x5b00
[ 2123.884616]  io_issue_sqe+0x2e8a/0x77b0
[ 2123.885533]  ? perf_trace_lock+0xac/0x490
[ 2123.886468]  ? SOFTIRQ_verbose+0x10/0x10
[ 2123.887390]  ? io_connect+0x610/0x610
[ 2123.888264]  ? lock_acquire+0x197/0x470
[ 2123.889157]  ? find_held_lock+0x2c/0x110
[ 2123.890091]  ? __fget_files+0x2cf/0x520
[ 2123.890991]  ? lock_downgrade+0x6d0/0x6d0
[ 2123.891935]  __io_queue_sqe+0x90/0x9d0
[ 2123.892828]  ? io_issue_sqe+0x77b0/0x77b0
[ 2123.893773]  ? __fget_files+0x2f8/0x520
[ 2123.894678]  ? io_prep_rw+0x7f5/0x1050
[ 2123.895574]  io_submit_sqes+0x44aa/0x8610
[ 2123.896553]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2123.897681]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2123.898769]  ? find_held_lock+0x2c/0x110
[ 2123.899691]  ? io_submit_sqes+0x8610/0x8610
[ 2123.900678]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2123.901775]  ? wait_for_completion_io+0x270/0x270
[ 2123.902868]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2123.903913]  ? vfs_write+0x354/0xb10
[ 2123.904758]  ? fput_many+0x2f/0x1a0
[ 2123.905591]  ? ksys_write+0x1a9/0x260
[ 2123.906446]  ? __ia32_sys_read+0xb0/0xb0
[ 2123.907371]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2123.908551]  ? syscall_enter_from_user_mode+0x1d/0x50
05:04:13 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

[ 2123.909724]  do_syscall_64+0x33/0x40
[ 2123.910770]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2123.911922] RIP: 0033:0x7fbe4d75bb19
[ 2123.912764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2123.916901] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2123.918644] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2123.920256] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2123.921863] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2123.923459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2123.925064] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:04:13 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2123.956124] loop5: detected capacity change from 0 to 135266304
[ 2123.957564] nfs4: Unknown parameter '@$'
05:04:13 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2123.991662] EXT4-fs (sda): re-mounted. Opts: (null)
[ 2124.003801] EXT4-fs (sda): re-mounted. Opts: (null)
05:04:13 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

05:04:28 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:04:28 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x79, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000080)={0x358, 0x19, 0x1, 0x70bd26, 0x25dfdbfe, {0xe}, [@typed={0x8, 0x6, 0x0, 0x0, @fd=r0}, @generic="dc28e48b27f85fcf7f1133448121b0fb729943137f4253f9a6df798f5944fa6381cd1f296e5eb768cd72845f8ab9a5ccc22a21681ea9b3a072d784ca3f057d", @nested={0x4, 0x9}, @generic="23792ae72fde4615ea87c38df8b7dae9d4ad88d1", @typed={0x8, 0x1b, 0x0, 0x0, @u32=0x151}, @nested={0x298, 0x52, 0x0, 0x1, [@generic="e5e634", @generic="1a64539fd7d0efdf7ae580a07aabd412c398176f31f68a69f37be0bd34ccac5f5796a057a493510eb8b409c039c4c51e6a3bc3e66052c618691254cf40cabb9769c2c5b2b35b0a03cf78f450ccb34544caae808153d1b42653120b2bae33f32d7d50ef2953962808f5e5e851167a9d98fb70eb92e7e1bd03c78fb2c8117ad81a6b7d068b206eb6c21e8c00d9d202046186ba1e348a2190ae34b9674cda3b2ff566e23d5eee1e88d98a09814f5c94128dea9e1ee296d614b668cc88c3773e6ed5bffc937400afa7d132195e7e12", @generic="1e76c753cbdff65f651ebb5d752edb63e22b94d92ae9747befe2038b9f3e39a549bb3b773f088b13581ea18ff434c21f63e66b1c0e6cf40c374696254d3f8b01ab275961677a1e0a89802d6a432bb7a7110284c790a43bb64de76eba39cb12b2067fb77d9efaecc75a8c8d15e3a3a1eccd63ac5d368e64f2e754f0da0f44d249cb8f5a32390bb9daf38a4e1ae298c7494cd75a708b7a72eccfb44525c1108b7dadd58edf2d7dd44d1a134d316b0063b3eada796505166f1c26165b657b845eac5d914462aeb4b4705f58e0b2c2da6b452759f905c3311ebe04b656a956a18e9b410f5b3b7186dd5fc3df46", @generic="ce57d4a9546e28ca00f4c94ae4324ffad8f5840a5db643e1bdc3100e", @generic="39f8abba9e87fb974d", @generic="d7b8fe70f5712e5c880b0d69832e6fdf71af22b40e9df00d162ebfd6c9c230df1a49c2f712dd76bfd5beefe64d7172362869d1a20230b4d0093d1e867b9d973570b00bb159153f6b9efa3ba27a78e93e1fe14a68d462fa7948f4", @generic="e2605b7c275242e65e6c27875dc719d74000f6cd3a2591c711ecad1e2e310328ea33bf732bc9c6b7aa8ae263468b6615e46667af7279f16d6fe3144e2c32737e8b8c0123d486f6301fceefaec1dab7cb2ed9", @typed={0x8, 0x65, 0x0, 0x0, @pid=0xffffffffffffffff}]}, @nested={0x3c, 0x1e, 0x0, 0x1, [@generic, @generic="aed19a8ed345ac315ca3f6b5cac8bf3c3b4fe5cec8837b12f5ac271543728a957e25faa4db4f11e814450e9a7f66d9d2111d28fb3560c123"]}, @typed={0x8, 0x40, 0x0, 0x0, @ipv4=@multicast2}]}, 0x358}}, 0x20000800)
accept(0xffffffffffffffff, 0x0, 0x0)
r1 = fork()
ptrace(0x10, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
perf_event_open(&(0x7f0000000480)={0x3, 0x80, 0x7, 0x1, 0x20, 0x6d, 0x0, 0x40, 0x21, 0x9, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x400, 0x2, @perf_config_ext={0x20, 0x6}, 0x80, 0x9, 0x0, 0x1, 0xfff, 0x1, 0x3ff, 0x0, 0xfffff000, 0x0, 0x6}, r1, 0x0, r2, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000006c0)={0x53, 0xffffffffffffffff, 0x2e, 0x80, @buffer={0x0, 0xff, &(0x7f0000000500)=""/255}, &(0x7f0000000600)="0e49426dba9fc029248bdabe2f9e2578231f118f95cbcc245c16754755c6985e3f3339f893794aa2c7381d98ad2a", &(0x7f0000000640)=""/19, 0x4, 0x4, 0x0, &(0x7f0000000680)})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r3, 0x0, 0x0, 0x1000002)

05:04:28 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

05:04:28 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

05:04:28 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000f00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:28 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:04:28 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

05:04:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0/file0\x00', 0x8)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[])
mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0)
mount$bind(&(0x7f0000000540)='./file0/../file0\x00', &(0x7f0000000580)='./file0\x00', 0x0, 0x2001010, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1000, 0x0)
mount$bind(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000002640)='./file0/file0\x00', 0x0, 0x217811, 0x0)
mount$bind(&(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000002680)='./file0/../file0\x00', 0x0, 0x800468, 0x0)
umount2(&(0x7f0000001dc0)='./file0/../file0\x00', 0x2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000500)='./file0/file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x4000)
syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f00000002c0)='./file0/../file0\x00', 0xffff, 0x3, &(0x7f0000000480)=[{&(0x7f0000000340)="29e0d3ef80e0a89d8035f116cf2dfe68ab4fcb588985d93babdc6f35a2166cac7876d77cd61b15236089b48838b6f632b3ee16249bbeae519cedaa31dcad2f3628c3846d44d4a14f356cdeb658304859c87276e784ed5d4a95445597e63d5a775f95", 0x62, 0x7fffffff}, {&(0x7f00000003c0)="e35927608d09630871278892cba9d6a8965e7ca17981bcbaa5fb8d43b4aeb4d38d220c544a07caeafb28b3741bcdacd99cfba15c4c51e466942c713baf2643c20970c5be6e75", 0x46, 0x7ff}, {&(0x7f0000000440), 0x0, 0x3}], 0x800000, &(0x7f0000000680)={[{'@$'}], [{@smackfsroot={'smackfsroot', 0x3d, 'tmpfs\x00'}}, {@dont_hash}, {@fowner_eq={'fowner', 0x3d, r0}}, {@fsname={'fsname', 0x3d, '-{-'}}, {@smackfshat={'smackfshat', 0x3d, '/\\&-@/,{/:\'^@!'}}]})

05:04:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000001b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2139.165615] EXT4-fs (sda): re-mounted. Opts: (null)
05:04:29 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2139.175964] FAULT_INJECTION: forcing a failure.
[ 2139.175964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2139.179456] CPU: 0 PID: 11231 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2139.181170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.183237] Call Trace:
[ 2139.183892]  dump_stack+0x107/0x167
[ 2139.184787]  should_fail.cold+0x5/0xa
[ 2139.185741]  _copy_to_iter+0x264/0x12d0
[ 2139.186732]  ? seq_read_iter+0xd4d/0x12b0
[ 2139.187752]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2139.188960]  ? __virt_addr_valid+0x170/0x5d0
[ 2139.190050]  ? __check_object_size+0x319/0x440
[ 2139.191183]  seq_read_iter+0xdcb/0x12b0
[ 2139.192197]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2139.193483]  proc_reg_read_iter+0x20a/0x2e0
[ 2139.194542]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2139.195804]  io_read+0x2dc/0x11e0
[ 2139.196654]  ? __is_insn_slot_addr+0x14c/0x290
[ 2139.197787]  ? kernel_text_address+0xf2/0x120
[ 2139.198893]  ? unwind_get_return_address+0x55/0xa0
[ 2139.200093]  ? create_prof_cpu_mask+0x20/0x20
[ 2139.201190]  ? kiocb_done+0xc90/0xc90
[ 2139.202134]  ? mark_lock+0xf5/0x2df0
[ 2139.203060]  ? lock_chain_count+0x20/0x20
[ 2139.204080]  ? __lock_acquire+0xbb1/0x5b00
[ 2139.205140]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2139.206427]  ? SOFTIRQ_verbose+0x10/0x10
[ 2139.207415]  ? kasan_save_stack+0x1b/0x40
[ 2139.208427]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.209674]  ? __io_queue_sqe+0x666/0x9d0
[ 2139.210694]  ? __lock_acquire+0xbb1/0x5b00
[ 2139.211740]  io_issue_sqe+0x2e8a/0x77b0
[ 2139.212724]  ? perf_trace_lock+0xac/0x490
[ 2139.213743]  ? SOFTIRQ_verbose+0x10/0x10
[ 2139.214748]  ? io_connect+0x610/0x610
[ 2139.215702]  ? lock_acquire+0x197/0x470
[ 2139.216687]  ? find_held_lock+0x2c/0x110
[ 2139.217701]  ? __fget_files+0x2cf/0x520
[ 2139.218688]  ? lock_downgrade+0x6d0/0x6d0
[ 2139.219719]  __io_queue_sqe+0x90/0x9d0
[ 2139.220684]  ? io_issue_sqe+0x77b0/0x77b0
[ 2139.221702]  ? __fget_files+0x2f8/0x520
[ 2139.222683]  ? io_prep_rw+0x7f5/0x1050
[ 2139.223646]  io_submit_sqes+0x44aa/0x8610
[ 2139.224713]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2139.225970]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2139.227178]  ? io_submit_sqes+0x8610/0x8610
[ 2139.228241]  ? recalibrate_cpu_khz+0x10/0x10
[ 2139.229313]  ? ktime_get+0x158/0x1f0
[ 2139.230242]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 2139.231298]  ? clockevents_program_event+0x131/0x360
[ 2139.232547]  ? tick_program_event+0xa8/0x140
[ 2139.233631]  ? hrtimer_interrupt+0x771/0x9b0
[ 2139.234731]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.236021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.237296]  do_syscall_64+0x33/0x40
[ 2139.238214]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.239468] RIP: 0033:0x7fbe4d75bb19
[ 2139.240387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.244921] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2139.246808] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2139.248570] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2139.250330] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.252080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2139.253857] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:04:29 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000002700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2139.288879] loop5: detected capacity change from 0 to 135266304
[ 2139.291236] nfs4: Unknown parameter '@$'
05:04:43 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
syz_io_uring_setup(0x263d, 0x0, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x7, @fd_index=0x6, 0x3f, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/116, 0x74}, {&(0x7f0000000340)=""/212, 0xd4}, {&(0x7f0000000440)=""/173, 0xad}, {&(0x7f0000000500)=""/174, 0xae}, {&(0x7f0000000140)=""/43, 0x2b}, {&(0x7f0000000240)=""/23, 0x17}, {&(0x7f00000005c0)=""/140, 0x8c}], 0x7}, 0x2)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x88)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x404)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x1000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
io_uring_enter(0xffffffffffffffff, 0x2a26, 0xd368, 0x0, &(0x7f0000000180)={[0x7]}, 0x8)
r4 = creat(&(0x7f0000000080)='./file0\x00', 0x120)
sendfile(r3, r2, 0x0, 0x404)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r5 = openat(r1, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
clock_nanosleep(0x8, 0x1, &(0x7f0000000300), 0x0)
sendfile(r0, r5, 0x0, 0x100000001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x40010, 0xffffffffffffffff, 0x8000000)

05:04:43 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

05:04:43 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

05:04:43 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

05:04:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000004000000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:43 executing program 7:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x1e0}], 0x0, &(0x7f0000000040)={[{@numtail}]})
r1 = fsmount(0xffffffffffffffff, 0x0, 0x80)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000004, 0x100010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x4003, @fd=r0, 0x10001, 0x0, 0x0, 0x8, 0x1, {0x1}}, 0x3e0)

05:04:43 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

[ 2153.705835] loop7: detected capacity change from 0 to 512
[ 2153.714109] FAT-fs (loop7): Directory bread(block 3) failed
[ 2153.714830] FAT-fs (loop7): Directory bread(block 4) failed
[ 2153.715551] FAT-fs (loop7): Directory bread(block 5) failed
[ 2153.716423] FAT-fs (loop7): Directory bread(block 6) failed
[ 2153.717168] FAT-fs (loop7): Directory bread(block 7) failed
[ 2153.718033] FAT-fs (loop7): Directory bread(block 8) failed
[ 2153.718769] FAT-fs (loop7): Directory bread(block 9) failed
05:04:43 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

[ 2153.762710] FAULT_INJECTION: forcing a failure.
[ 2153.762710] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.764221] CPU: 1 PID: 11266 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2153.765080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2153.766074] Call Trace:
[ 2153.766402]  dump_stack+0x107/0x167
[ 2153.766849]  should_fail.cold+0x5/0xa
[ 2153.767324]  ? io_setup_async_rw+0x180/0x580
[ 2153.767847]  should_failslab+0x5/0x20
[ 2153.768310]  __kmalloc+0x72/0x390
[ 2153.768723]  io_setup_async_rw+0x180/0x580
[ 2153.769230]  ? iov_iter_restore+0x195/0x3a0
[ 2153.769742]  io_read+0x775/0x11e0
[ 2153.770161]  ? __is_insn_slot_addr+0x14c/0x290
[ 2153.770715]  ? kernel_text_address+0xf2/0x120
[ 2153.771256]  ? unwind_get_return_address+0x55/0xa0
[ 2153.771844]  ? create_prof_cpu_mask+0x20/0x20
[ 2153.772379]  ? kiocb_done+0xc90/0xc90
[ 2153.772821]  ? mark_lock+0xf5/0x2df0
[ 2153.773273]  ? lock_chain_count+0x20/0x20
[ 2153.773781]  ? __lock_acquire+0xbb1/0x5b00
[ 2153.774296]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2153.774928]  ? SOFTIRQ_verbose+0x10/0x10
[ 2153.775405]  ? kasan_save_stack+0x1b/0x40
[ 2153.775900]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2153.776488]  ? __io_queue_sqe+0x666/0x9d0
[ 2153.776991]  ? __lock_acquire+0xbb1/0x5b00
[ 2153.777491]  io_issue_sqe+0x2e8a/0x77b0
[ 2153.777985]  ? perf_trace_lock+0xac/0x490
[ 2153.778481]  ? SOFTIRQ_verbose+0x10/0x10
[ 2153.778956]  ? io_connect+0x610/0x610
[ 2153.779418]  ? lock_acquire+0x197/0x470
[ 2153.779878]  ? find_held_lock+0x2c/0x110
[ 2153.780367]  ? __fget_files+0x2cf/0x520
[ 2153.780842]  ? lock_downgrade+0x6d0/0x6d0
[ 2153.781340]  __io_queue_sqe+0x90/0x9d0
[ 2153.781816]  ? io_issue_sqe+0x77b0/0x77b0
[ 2153.782311]  ? __fget_files+0x2f8/0x520
[ 2153.782790]  ? io_prep_rw+0x7f5/0x1050
[ 2153.783260]  io_submit_sqes+0x44aa/0x8610
[ 2153.783777]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2153.784371]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2153.784951]  ? find_held_lock+0x2c/0x110
[ 2153.785453]  ? io_submit_sqes+0x8610/0x8610
[ 2153.785983]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2153.786558]  ? wait_for_completion_io+0x270/0x270
[ 2153.787138]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2153.787693]  ? vfs_write+0x354/0xb10
[ 2153.788142]  ? fput_many+0x2f/0x1a0
[ 2153.788579]  ? ksys_write+0x1a9/0x260
[ 2153.789038]  ? __ia32_sys_read+0xb0/0xb0
[ 2153.789532]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.790163]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2153.790780]  do_syscall_64+0x33/0x40
[ 2153.791232]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2153.791838] RIP: 0033:0x7fbe4d75bb19
[ 2153.792286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2153.794479] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2153.795387] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2153.796234] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2153.797083] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2153.797938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2153.798788] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2153.799960] FAULT_INJECTION: forcing a failure.
[ 2153.799960] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.802706] CPU: 0 PID: 11271 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2153.804331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2153.806284] Call Trace:
[ 2153.806909]  dump_stack+0x107/0x167
[ 2153.807767]  should_fail.cold+0x5/0xa
[ 2153.808671]  should_failslab+0x5/0x20
[ 2153.809565]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2153.810630]  io_submit_sqes+0x6fe6/0x8610
[ 2153.811609]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2153.812774]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2153.813945]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2153.815074]  ? find_held_lock+0x2c/0x110
[ 2153.816034]  ? io_submit_sqes+0x8610/0x8610
[ 2153.817048]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2153.818181]  ? wait_for_completion_io+0x270/0x270
[ 2153.819311]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2153.820393]  ? vfs_write+0x354/0xb10
[ 2153.821263]  ? fput_many+0x2f/0x1a0
[ 2153.822126]  ? ksys_write+0x1a9/0x260
[ 2153.823015]  ? __ia32_sys_read+0xb0/0xb0
[ 2153.823967]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2153.825190]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2153.826408]  do_syscall_64+0x33/0x40
[ 2153.827272]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2153.828464] RIP: 0033:0x7fd05c70ab19
[ 2153.829335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2153.833644] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2153.835418] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2153.837083] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2153.838750] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2153.840413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2153.842084] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:04:43 executing program 7:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0xfffd, @dev={0xac, 0x14, 0x14, 0x3}}, {0x2, 0x20, @dev={0xac, 0x14, 0x14, 0xff}}, {0x2, 0x200, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xffff})
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000000)=0x2, 0x4)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000000c0)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)

05:04:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000005100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:43 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

05:04:43 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

05:04:43 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

05:04:43 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000200000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:43 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

[ 2154.107404] FAULT_INJECTION: forcing a failure.
[ 2154.107404] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.108745] CPU: 1 PID: 11288 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2154.109565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2154.110555] Call Trace:
[ 2154.110873]  dump_stack+0x107/0x167
[ 2154.111315]  should_fail.cold+0x5/0xa
[ 2154.111770]  ? create_object.isra.0+0x3a/0xa20
[ 2154.112319]  should_failslab+0x5/0x20
[ 2154.112774]  kmem_cache_alloc+0x5b/0x310
[ 2154.113268]  create_object.isra.0+0x3a/0xa20
[ 2154.113809]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.114416]  kmem_cache_alloc_bulk+0x168/0x320
[ 2154.114967]  io_submit_sqes+0x6fe6/0x8610
[ 2154.115464]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2154.116056]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2154.116642]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2154.117214]  ? find_held_lock+0x2c/0x110
[ 2154.117711]  ? io_submit_sqes+0x8610/0x8610
[ 2154.118227]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2154.118798]  ? wait_for_completion_io+0x270/0x270
[ 2154.119373]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2154.119925]  ? vfs_write+0x354/0xb10
[ 2154.120364]  ? fput_many+0x2f/0x1a0
[ 2154.120795]  ? ksys_write+0x1a9/0x260
[ 2154.121246]  ? __ia32_sys_read+0xb0/0xb0
[ 2154.121733]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2154.122354]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2154.122965]  do_syscall_64+0x33/0x40
[ 2154.123404]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.124011] RIP: 0033:0x7fd05c70ab19
[ 2154.124453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2154.126624] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2154.127527] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2154.128372] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2154.129221] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2154.130080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2154.130907] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2154.144639] FAULT_INJECTION: forcing a failure.
[ 2154.144639] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.147378] CPU: 0 PID: 11287 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2154.148955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2154.150851] Call Trace:
[ 2154.151458]  dump_stack+0x107/0x167
[ 2154.152290]  should_fail.cold+0x5/0xa
[ 2154.153162]  ? create_object.isra.0+0x3a/0xa20
[ 2154.154212]  should_failslab+0x5/0x20
[ 2154.155068]  kmem_cache_alloc+0x5b/0x310
[ 2154.155972]  create_object.isra.0+0x3a/0xa20
[ 2154.156935]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.158073]  __kmalloc+0x16e/0x390
[ 2154.158864]  io_setup_async_rw+0x180/0x580
[ 2154.159800]  ? iov_iter_restore+0x195/0x3a0
[ 2154.160760]  io_read+0x775/0x11e0
[ 2154.161530]  ? __is_insn_slot_addr+0x14c/0x290
[ 2154.162553]  ? kernel_text_address+0xf2/0x120
[ 2154.163539]  ? unwind_get_return_address+0x55/0xa0
[ 2154.164615]  ? create_prof_cpu_mask+0x20/0x20
[ 2154.165589]  ? kiocb_done+0xc90/0xc90
[ 2154.166453]  ? mark_lock+0xf5/0x2df0
[ 2154.167273]  ? lock_chain_count+0x20/0x20
[ 2154.168181]  ? __lock_acquire+0xbb1/0x5b00
[ 2154.169122]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2154.170275]  ? SOFTIRQ_verbose+0x10/0x10
[ 2154.171161]  ? kasan_save_stack+0x1b/0x40
[ 2154.172065]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.173166]  ? __io_queue_sqe+0x666/0x9d0
[ 2154.174082]  ? __lock_acquire+0xbb1/0x5b00
[ 2154.175011]  io_issue_sqe+0x2e8a/0x77b0
[ 2154.175888]  ? perf_trace_lock+0xac/0x490
[ 2154.176793]  ? SOFTIRQ_verbose+0x10/0x10
[ 2154.177693]  ? io_connect+0x610/0x610
[ 2154.178529]  ? lock_acquire+0x197/0x470
[ 2154.179396]  ? find_held_lock+0x2c/0x110
[ 2154.180288]  ? __fget_files+0x2cf/0x520
[ 2154.181144]  ? lock_downgrade+0x6d0/0x6d0
[ 2154.182072]  __io_queue_sqe+0x90/0x9d0
[ 2154.182938]  ? io_issue_sqe+0x77b0/0x77b0
[ 2154.183839]  ? __fget_files+0x2f8/0x520
[ 2154.184713]  ? io_prep_rw+0x7f5/0x1050
[ 2154.185572]  io_submit_sqes+0x44aa/0x8610
[ 2154.186526]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2154.186728] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2154.187618]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2154.187642]  ? find_held_lock+0x2c/0x110
[ 2154.187669]  ? io_submit_sqes+0x8610/0x8610
[ 2154.191506]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2154.192549]  ? wait_for_completion_io+0x270/0x270
[ 2154.193595]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2154.194609]  ? vfs_write+0x354/0xb10
[ 2154.195413]  ? fput_many+0x2f/0x1a0
[ 2154.196205]  ? ksys_write+0x1a9/0x260
[ 2154.197033]  ? __ia32_sys_read+0xb0/0xb0
[ 2154.197926]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2154.199066]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2154.200188]  do_syscall_64+0x33/0x40
[ 2154.201005]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.202125] RIP: 0033:0x7fbe4d75bb19
[ 2154.202931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2154.206889] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2154.208534] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2154.210093] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2154.211634] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2154.213186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2154.214736] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2154.216259] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'.
05:04:44 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r2=>r0, 0x2, 0x2, 0x7})
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="a0000000260001010093000000000000000000008a006300a0eab51f24f4074cfbfbbb07324cc62f701d9f2905855dd18b1f0d5ce7f3493090af5beef11c281fbcc10f4675223ffc29811a6d82c0c17acd7a40480a51d57b2b3cc217bf3558b4d61924aa0922349a895d495ac12b16cb2b0cb00a0c3d1fb5b695cfebd4ad94d1a5642d3ec010c0792e9f8a9bff9bc38d6a5d4c42eb9238b7bc3a2be2cefb0000"], 0xa0}, 0x1, 0x0, 0x0, 0xb0}, 0x8044)
ptrace$setopts(0x4206, 0x0, 0x10001, 0x10002d)
ptrace(0x10, 0x0)
r4 = getpid()
ptrace(0x10, r4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ptrace$cont(0x7, 0x0, 0x8, 0x0)

05:04:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43, 0x0, 0x0, 0x0)

05:04:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000300000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:44 executing program 5:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000001400)=""/53, 0x35)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001440)={{r0}, 0x0, 0x0, @unused=[0x1, 0x7ff, 0x9, 0x4], @name="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"})
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="7472616e733d66642cff0f00006f", @ANYRESHEX, @ANYRESHEX, @ANYBLOB])
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
tee(r2, r0, 0x4, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)=0x80, &(0x7f0000000180)=@ieee802154}, 0x80)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000003, 0x40010, 0xffffffffffffffff, 0x0)
fgetxattr(r3, &(0x7f0000000000)=@random={'btrfs.', '\',{[[(\x00'}, &(0x7f0000000380)=""/234, 0xea)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x28, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@local}, @typed={0x4}, @typed={0x8, 0x2e, 0x0, 0x0, @fd}]}, 0x28}}, 0x0)

05:04:44 executing program 7:
r0 = syz_io_uring_setup(0x13cb, &(0x7f0000000180)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x10, r0, 0x8000000)
r4 = syz_io_uring_complete(r3)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000480)={0x10001, 0x1, 0x80000000, 0xffff, 0x4})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
io_uring_enter(r4, 0x490a, 0xa816, 0x0, &(0x7f00000002c0)={[0x4]}, 0x8)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x20010, r0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_WRITE={0x17, 0x0, 0x2004, @fd=r5, 0x9, &(0x7f0000000240)="bffee04380267d9a825bab91d541762507770ac0b4d9715348bf974f63e23ed7ef6e", 0x22, 0x12}, 0x1ff)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r8, &(0x7f0000000000)=""/41, 0x29, 0x3)
io_uring_enter(r8, 0x1aff, 0x94ea, 0x1, &(0x7f0000000300)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, 0xffffffffffffffff, 0x0}, 0x48001)
io_uring_enter(r6, 0x58ab, 0x0, 0x1, 0x0, 0x0)

05:04:44 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

05:04:44 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0)

05:04:44 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000400000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:44 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48, 0x0, 0x0, 0x0)

[ 2154.452480] 9pnet: Insufficient options for proto=fd
[ 2154.484758] 9pnet: Insufficient options for proto=fd
05:04:58 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

05:04:58 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

05:04:58 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

05:04:58 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x130208, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x2}, 0x4)
ioctl$int_in(r1, 0x5452, &(0x7f00000000c0)=0x87)
socket$inet6_icmp(0xa, 0x2, 0x3a)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="2321202e2f66696c653020200020282e262d2f7b2c282a20002020000a6a4bc99eece64c0be2dbcbb0bb7137ee05bd130d7e053261cc1f20bf3b7ae523d1cb4a251016cd456e29de7b0819d190614fcd91c5ceeedeca02a4322f709148977dc36a8c683d8503c58c1e4660d08a2d72d0ce08691586d6423ba9db51f3f3b17af248f2a73c0a000000000000000000"], 0x8e)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)

05:04:58 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000500000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:04:58 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4300, 0x0, 0x0, 0x0)

05:04:58 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b, 0x0, 0x0, 0x0)

05:04:58 executing program 7:
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x18}, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r4, 0x0, &(0x7f0000000240), 0x0, 0x0, 0x0, {0x0, r3}}, 0x8)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x300)

[ 2168.708906] FAULT_INJECTION: forcing a failure.
[ 2168.708906] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.711904] CPU: 0 PID: 11337 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2168.713617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.715673] Call Trace:
[ 2168.716331]  dump_stack+0x107/0x167
[ 2168.717233]  should_fail.cold+0x5/0xa
[ 2168.718188]  ? create_object.isra.0+0x3a/0xa20
[ 2168.719320]  should_failslab+0x5/0x20
[ 2168.720258]  kmem_cache_alloc+0x5b/0x310
[ 2168.721260]  ? mark_held_locks+0x9e/0xe0
[ 2168.722275]  create_object.isra.0+0x3a/0xa20
[ 2168.723361]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2168.724620]  kmem_cache_alloc_bulk+0x168/0x320
[ 2168.725760]  io_submit_sqes+0x6fe6/0x8610
[ 2168.726807]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2168.728040]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2168.729267]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2168.730474]  ? find_held_lock+0x2c/0x110
[ 2168.731486]  ? io_submit_sqes+0x8610/0x8610
[ 2168.732564]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2168.733757]  ? wait_for_completion_io+0x270/0x270
[ 2168.734961]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2168.736108]  ? vfs_write+0x354/0xb10
[ 2168.737029]  ? fput_many+0x2f/0x1a0
[ 2168.737935]  ? ksys_write+0x1a9/0x260
[ 2168.738876]  ? __ia32_sys_read+0xb0/0xb0
[ 2168.739884]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2168.741181]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2168.742474]  do_syscall_64+0x33/0x40
[ 2168.743394]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2168.744662] RIP: 0033:0x7fd05c70ab19
[ 2168.745581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2168.750139] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2168.752024] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2168.753790] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2168.755554] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.757317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2168.759089] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2168.806635] FAULT_INJECTION: forcing a failure.
[ 2168.806635] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.809647] CPU: 0 PID: 11353 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2168.811372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.813421] Call Trace:
[ 2168.814084]  dump_stack+0x107/0x167
[ 2168.814990]  should_fail.cold+0x5/0xa
[ 2168.815935]  ? __io_queue_sqe+0x666/0x9d0
[ 2168.816961]  should_failslab+0x5/0x20
[ 2168.817912]  kmem_cache_alloc_trace+0x55/0x320
[ 2168.819042]  ? lock_downgrade+0x6d0/0x6d0
[ 2168.820076]  __io_queue_sqe+0x666/0x9d0
[ 2168.821070]  ? io_issue_sqe+0x77b0/0x77b0
[ 2168.822104]  ? __fget_files+0x2f8/0x520
[ 2168.823095]  ? io_prep_rw+0x7f5/0x1050
[ 2168.824066]  io_submit_sqes+0x44aa/0x8610
[ 2168.825130]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2168.826373]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2168.827568]  ? find_held_lock+0x2c/0x110
[ 2168.828579]  ? io_submit_sqes+0x8610/0x8610
[ 2168.829656]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2168.830859]  ? wait_for_completion_io+0x270/0x270
[ 2168.832055]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2168.833202]  ? vfs_write+0x354/0xb10
[ 2168.834134]  ? fput_many+0x2f/0x1a0
[ 2168.835034]  ? ksys_write+0x1a9/0x260
[ 2168.835976]  ? __ia32_sys_read+0xb0/0xb0
[ 2168.836987]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2168.838291]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2168.839566]  do_syscall_64+0x33/0x40
[ 2168.840483]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2168.841748] RIP: 0033:0x7fbe4d75bb19
[ 2168.842672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2168.847215] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2168.849092] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2168.850861] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2168.852623] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.854389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2168.856150] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:05:14 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

05:05:14 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[ 2184.510244] FAULT_INJECTION: forcing a failure.
[ 2184.510244] name failslab, interval 1, probability 0, space 0, times 0
[ 2184.512873] CPU: 0 PID: 11365 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2184.514496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2184.516485] Call Trace:
[ 2184.517140]  dump_stack+0x107/0x167
[ 2184.518006]  should_fail.cold+0x5/0xa
[ 2184.518939]  ? create_object.isra.0+0x3a/0xa20
[ 2184.520038]  should_failslab+0x5/0x20
[ 2184.520960]  kmem_cache_alloc+0x5b/0x310
[ 2184.521930]  ? mark_held_locks+0x9e/0xe0
[ 2184.522892]  create_object.isra.0+0x3a/0xa20
[ 2184.523950]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2184.525175]  kmem_cache_alloc_bulk+0x168/0x320
[ 2184.526279]  io_submit_sqes+0x6fe6/0x8610
[ 2184.527268]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2184.528433]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2184.529600]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2184.530727]  ? find_held_lock+0x2c/0x110
[ 2184.531875]  ? io_submit_sqes+0x8610/0x8610
[ 2184.532917]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2184.534027]  ? wait_for_completion_io+0x270/0x270
[ 2184.535175]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2184.536242]  ? vfs_write+0x354/0xb10
[ 2184.536895] FAULT_INJECTION: forcing a failure.
[ 2184.536895] name failslab, interval 1, probability 0, space 0, times 0
[ 2184.537066]  ? fput_many+0x2f/0x1a0
[ 2184.537091]  ? ksys_write+0x1a9/0x260
[ 2184.540266]  ? __ia32_sys_read+0xb0/0xb0
[ 2184.541184]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2184.542364]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2184.543526]  do_syscall_64+0x33/0x40
[ 2184.544368]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.545514] RIP: 0033:0x7fd05c70ab19
[ 2184.546365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2184.550463] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2184.552157] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2184.553749] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2184.555369] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2184.556961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2184.558606] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2184.560277] CPU: 1 PID: 11372 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2184.561338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2184.562722] Call Trace:
[ 2184.563158]  dump_stack+0x107/0x167
[ 2184.563745]  should_fail.cold+0x5/0xa
[ 2184.564352]  ? create_object.isra.0+0x3a/0xa20
[ 2184.565162]  should_failslab+0x5/0x20
[ 2184.565709]  kmem_cache_alloc+0x5b/0x310
05:05:14 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c, 0x0, 0x0, 0x0)

05:05:14 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)="af", 0x1}, {&(0x7f00000004c0)="1296ca6b2afc3278755b7cdfd45d8a59295daccda003be4aa322e04b03eb93b79518fc6ddc4a2c882d4cd9e332e158e7c6b37c", 0x33}, {&(0x7f0000000340)}, {&(0x7f0000000540)="021d4747028b47c14b5e1b661173253d1f3becb69e674943f82f6f535f425b165476b035d2ce9eda801c14d4e45721d17f56c5934bfd13dc76901ebed1a1183e507adbd279b8c00f7dbef739702be0c4b7b4ce2622cfef50026b5127918d1ddc96db6944d2d13e2ba79b13afba4d575fd8593e7c195343e3d3661a6adbe66f54310e81", 0x83}], 0x4)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(0xffffffffffffffff, 0x43, 0x6a08, 0x8)
r3 = accept$inet6(r2, &(0x7f0000000980)={0xa, 0x0, 0x0, @private1}, &(0x7f00000009c0)=0x1c)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054a80)={0x100, [], 0x0, "043ba9ba70070b"})
lseek(r3, 0x6, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/stat\x00')
openat$incfs(r4, &(0x7f0000000fc0)='.pending_reads\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$gtp(&(0x7f0000000380), r0)
sendmsg$GTP_CMD_DELPDP(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c9b65ae5b5d5dee79000000000068df49fc6e020000000000000076349098e434da50980700", @ANYRES16=r5, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x400c421}, 0x4002)
fallocate(r2, 0x0, 0x0, 0x8000)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x38, 0x0, 0x800, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004}, 0x1)
ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x4000, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7, 0x7}}, './file1\x00'})

05:05:14 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4800, 0x0, 0x0, 0x0)

05:05:14 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:14 executing program 7:
fallocate(0xffffffffffffffff, 0x2, 0x9, 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x4, 0xc1, 0xb4700000, 0x3ff, 0x73cf})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_setup(0x3a74, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x4000, 0x284}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000001c0))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={<r2=>0x0, <r3=>0x0, "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", "7374bf600a2dbb0a10a4446998c60bc654676f080ecee8672b9b990319e9f34b4c45be9b1cbb8fbe1f4541599e2a8deeedad6067575d671432b4ba4028542704ab850b2cd326bd5a16431e3e06cbefba068d34f999e863befaed31fe2f898bdfe4043148f4d1cc27af274cc202dd9cd92b1891ba85c4048baa5cf0aa7a3d5dbef19adb89a7123a5c5cf1f42650df4c63aa25c0c5f606a072b8c1910206999409a39439cacd824f129adb4177e14f533050e77cfd6b9e760c12899b047feb4c8e5b746e5570db48fc8fafeccf98bad6d99a585091b403666ded97ce43cdf6dd1791052bc149861ea2585dfb28b538cc9fe6ffc5e07182615951fd668085ed124af574a07e3495491f19b1aa2a3b69028ccacd78524d988b224ab17ed905da0b840b4a9939e2af6efdf4221126075a8964d904883db014031e0924681a4ef3795071b256b75002a7df298c87c565b1d8a331e7d0c1000e1d707100917dfe107f87ebea9dca1b708b01cacf1c9f348c0d0fd64aa64193637c7169264d06f613c41be60f39b0cc9d813ae5fca2222832f86f2ae87e883efd48df36d16e6c1ca5c378f6ff0fbace91eb3099d744b16171fcc1ab7d5456392f0878ecf27e8caad7386663de490c3044eed7e7cb83e675716eda0cc09f219aadddd814c88048a7c6cefe69a79f2f7a234cfffbf19ac7a9f6ef59faf2776ac3d636904ec1bda09b1c9d8caeafa918983215d866f5cb6f1088e7e99a43425913d258a3dc8550fcbca3e0bec47503e24d709dd1fd1bb3cd92837d10387a0eebb98aab27950a2a66dc0b9bad3e4ef6393036d64949931ffe6479073790b3b885ac8563d4018e9227d644864c17f048daefbb192d15b56a2a440ad6d4ef5af2ac9904d8b69c64d2368928d7595594e6c3fd23229cb6aa80ec308301b1c94777900d34b1b3eea03dca765036a3f5351551affb585f22541074380b60ca062bf8a8a2324fe61ecad5733aec51e0c5ddc648280556b8a038b5816947b1637ef598cfd134cf9833d875fd23d22f5f74e74a4634d50a3ac908eed128f4297924296d95361b9504c08df4a0603eff93ee34bd45ed12e8d06b8f399fefef4ced732aad15b70f3e276101fa4b5a5c17435d0999b3345ccfe853c955e8b7927c7a171506b8e5b4de8a68cb5e80c3709a0e15643b5772d82d04859133e09fa8ab81ac042e67bc918f2847af14a4eb77c3fcac3132ec1af5a57d85acb9ce91d9d15019904396737ade63df938e6f054f8ee21e8994d45b0801ccd8ae8bda90128cb05eddd297d800412bc01fc5cfdfa9d473641fffc793b513da3f7565a27c4ff3678ac6f71560cc6cc95fb4d20f85b7934cb4a4f614182d331ab53b6a09ff47fc272b6c1f5aaca477bfdfed3fac942d639773b7a5656c526eb595d6fa9d301c425947f37088447cb4400c37750b76eb6c1f7933e43b27224c2fdc053e55125d00ab11428af674f58bd5c3ea1ce4762856afccbd37dd59a5e726f2e5e770bcc8372304fc2a33611234e3b0d411fcae8691e621b64581dc32b3d97c02920877b2c995018dcfff2da8687bc64332cffc3d355931561dc799d169f61d121f242dd3605e3fef8a46bf73998202d6a87671719896c61d729006104bdb7e926020f28260c75c2c754e5f073097d7031567e62cbfcbff541702cdaf498bbfe01e2948e6e164271ca4ab4df68a1569d29d3ce7029c0b58d2a1e6d179fa817ec9df17195c8b83a7a7508f18f0e3d07e8871f331d7a151bc11301c7dce402e6a5fda6f3096df2ddfeb48b3991e055c55d2a071ed66bf378e5c451f849cdbd7951cacad16d6b5734b71db866e77086bfab1797942633ec688d78bb2fccaae2b0e796b852b278bd4a4648d0811293e1bfe68e30b42eb27ac0a4e435e086b4cfeeb9fa539f0d800b6108e4c7b9d7237746770a3f3477646b7c9bfd2bc111679d40bffe221be492ba984df6cd4d7d8f9cbf7185e79804416be68d8a2bfa28e5bec4b57bf5f08eeecafabccd55744e49bb4a7dd1324908d91762b9884e7268d0bb6290be3b51091ae6ccf2ebbd4945dd7913bd38509a00ce38d955909bfa1f3740fc123a12e15b853b59b9b691460afdcda150d39e566a83eaa0c3b7bac9819bdbc7e0a620206be87ff2f8ea8091dbffa014d2f2eb919040a434cdeb3db68adf845d2ba751dc0e1ce4afd8672a5ecf0653b8c672c3265aa236a174185f4b4a291bda664bb79c13f8b6932a831385773898d194d2500b38fbfff8c4acafa5a80dfd3f1f906132885446f9f7ad787dbbdab593661ab1c255df879eaf4ca739deaa11379a5c6b650472257fa54b646b29ceb3dbe27e3584914f9f766bbbcc67abeffebb0df881a42b8671bba930b04d1d7710cc15d546ee69ad40e66f04eb28af8bd17b739e68ad75a239303fb97b18f8f08d2f95bdae0f245ebdfc3ecf555a6fd53f5a35af8b2dd016b227d209fc8323a7576e66a9913a0ad4f19d30d2b6f25ac8b5b6c762e2c68c76f9bd7818adbb3c9b194c09471482ec6898754469076b8674ab9e26b5977a0fa693160f18a01d2f2c362186ff75c205cec261d9e6c431ee672e4056b7e458ef02dca1167d09de5977210461758ed506290477a63c5af0698a1f4edf3bc569692bc9febd5fd641860dd34a6926af47ae7bdd3cce59a5b24b6944075e30ec2f2dbd043ebc57a39eaa5559bc4f21f08198e0daa2e8506b21160c8f9b629ad0e80d5e99e5cf4c4ceefb8d9fe5493ebcb066a647269fef2146f1ed55dac66974446e650e49db26ceb24c16c24885a2d2d011d11ec52d5b7a9c8096314d1dc7c992a1dee70be2fc0cc2d9fc94b0d02d479f6f4bfd3fa20df42568e27c0cea6caa1028d5dfbe6a9657053c06132387f9abfbaf93d9b335b69b168bf7fdaa0a44981dadc3358b50f1b24d390f8858d6775fa838388ff8a69b02bf446028485ba9e0c15731288c186b3cdf2fbc088f13f50e5eecc9b3a058d1369b7a254f11aa81a5fabd862bfd5226ce26e0199ef241badd55ba0d6087e9eb1661111a6afef1caf2bd54832bb5a3e8b864c8af220a8a115746c1646e78471ba2edb7c63fcff7f6be047a5f740525fbe5e259beee146dc2a609d3fd576e826ee1e4fce8ccbf75aa713514bda04ed4086cdd11a770cbe5782bca23f5f3ad8682609d5c5d4e5ca4e117d7423740b41081c6945b446223bb435c6ae2314552b7bf53a8b2c8a7a2a961d17315e0f7a660624b119c89ae81d2214b03cd79bc3eb355bf06811d7186b1f0a7219dd8d4096cb0df940719279357b853bc7c5bcf645aa65c12227859ce0851953fcefa6051f2a31e3666abde9ef1ece3eba658de696edf5d87a7d562dfe1f6bb9ac5e6773bc9069c732683715868cf14825345fb60665982549b9bb7c5b7d934ed0c4d136fa089f8459d473bf1ee678cf88c26f4f5ac681aa6dbe6ef78c26e7a3649ae0574f550f9fc64e8caa14586cbc43d8ec72a3170fc4f6c78fdbd40332c1f35adfc04be68a067f2c03325d624e21fa0e1fa6ea879caa84665bedefcd19759872824a0053a110af2b6099d8ea572b0c81cea39147bb2dca0eaefd4be8c3b59b98c27049f04ae5f3652ade0e1561238296d17979581b93d0ee26464fb5675b968cbc397558207fb1d5365f73994c0c8f2bcae0164e74d602a4856355b214af58b6357b2505779260ec73929eb4fe1047bbc2a125ff6c88718d2b8b8fb9c0d1cb1760748ffc5e4998dbaf8fad99df26b2eaf99bce2541d287b243d7b9cf0ecb25588d14c6228a6cb5413f48e3d07817d258c45ca0ab3494ca5b59f87abdf38e439b4a31d60d9474a52e465f36dd0cd56f00d4e5e563bfc6421b40a7522eb71894a698c19510fa7dc690b6b3f782d88e61ca635d5efd4c9c1725dbf24e0c8e246a2dc979e4750de8347687038f0441858bdf5a06bcba827d8d1327601943ca9fd004c121034fa6e1c8b9eff5da764961f5700eab97380e99b37f302239b528b36f5c9bbebaff25edae48fbe59dd272099af5c695a19b62f64485ba01ae8416c02f04360be933b8ba8a49c6c1188a78c3d36d0c61f61b4002bfeb669e29bbcb306f573528a749b085500c7649aea469fca867da4ca9eaecc75a70f41baeb80bf803402a9066dc1e8243192b78533e0ad590e14fd2bf2ce3ac943ade1fcefd247406785ee387d18e9afe8845481748fbadf4d081e01ecce50ef1fc5b457fa296b833d77390764e2af12f7930c6334476dc4cf45d9f272e364336810c11318bd0a95233005d66fe81a5708ae5fad8c7db17e6d97d2340651f7aa7a36e132a77a7a6206b36a95ccb5a48cb19bd3bb886ff0e77bc76653912149ca85895c4f80c373cbbd4305a91213e8ec5b7b18d8587d723c18f02854556aaaa540935eab2b7470a7c1c40c7e843ac1221a51e92eb05af2342fea7c853a46182c8384612aadb40145b95de565140003468eaca74b38bdf4dc640d0af80c3dd81747652c5fe15ffff8965a150a4ca6a9d9c91d067b4fac49b23cd2041dfdab22126c97d812b67ed638cc65d75d836bf439807cd7cd3cd0e6b30c81983e3f45a00282a14d401d81ac7c5544510dc7d157eeaa18b09df5ec949a22d7342b5b720b2a47251e995410f9b35d90824c1b19beb8575c9efe2aaa2a2011790a1099a924c01ca835fb7cc561eb2310a5331d4d9c4a9ee03a5f1364c17a7f4511c0c1b929c630cc110696f9e94b4107d0b75338fda2c5e0b8d46d19b98071e328f57debd56b4a0a9009913ac41518a08e6fa533edf20db0dc5eff43cd3ead623fc826ac03925490537d6b6a47f27031faa17f9852a3cb72d2088f33d35846a40758e60dab4b3980d032adc3e4faa61ff8aaea6b08bc9705cf097701e9af550fa43ec06c0ae2257927eebcbbbf4a05ad8097597943d6aed8a950ba32bc0d19827539019397e2fffa5f7379ffd7ec266f0c1cd947aab0c9e73c2796bd4c32fa0a0effbc84570efdebd3ac1eb57cc89cdbed91ed43a64cccfeba427a017a07d84acc850a45e2f26639598ed061ea81b60fb1873983591d446129ba8b27a4aef3311292017e3cbc00533824888ef80ef1a85c86a370dc11694d2f455e04ceb8811afa53aac77c65b38703d18167aedcc077c988dd9832ee1999a82c8752b921bceae484c19cee6828eef373c979b5c3f208080c8dcb38c53e384bebed6c41c3b9d6958bd2b952d82d17b262dbf30f90ab5c5d197ccee9f6b6525928b0100ffdeace644e159500495ff5a0ea7df7b9ab63617e3879818e25341e97d839beefdf248222cadd61a5d76b1ff34704bb78656afef7994904da269f973598217edc3be93157185aa15ef225f6471d7786a5e28d0f145b96566e101bf46723486867b9aa90f9eb4d1f5612d4950160c1504a367daf984"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r4=>0x0}, {}, {0x0, <r5=>0x0}, {}, {}, {}, {}, {}, {<r6=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {0x0, <r7=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r8=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {<r9=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r10=>0x0, r2}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x4, "9755154351ac9a"})
[ 2184.566354]  create_object.isra.0+0x3a/0xa20
[ 2184.567212]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2184.567953]  kmem_cache_alloc_trace+0x151/0x320
[ 2184.568741]  ? lock_downgrade+0x6d0/0x6d0
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000000500)={<r12=>r7, r6, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004d940)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {0x0, r5}, {r4}], 0x4, "711addf3f468ee"})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000007780)={0x0, 0x0, 0x0}, 0x20000000)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x8000)

05:05:14 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

[ 2184.569433]  __io_queue_sqe+0x666/0x9d0
[ 2184.570180]  ? io_issue_sqe+0x77b0/0x77b0
[ 2184.570804]  ? __fget_files+0x2f8/0x520
[ 2184.571385]  ? io_prep_rw+0x7f5/0x1050
[ 2184.571959]  io_submit_sqes+0x44aa/0x8610
[ 2184.572594]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2184.573321]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2184.574035]  ? find_held_lock+0x2c/0x110
[ 2184.574631]  ? io_submit_sqes+0x8610/0x8610
[ 2184.575268]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2184.575979]  ? wait_for_completion_io+0x270/0x270
[ 2184.576686]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2184.577364]  ? vfs_write+0x354/0xb10
[ 2184.577909]  ? fput_many+0x2f/0x1a0
[ 2184.578448]  ? ksys_write+0x1a9/0x260
[ 2184.579002]  ? __ia32_sys_read+0xb0/0xb0
[ 2184.579595]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2184.580362]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2184.581079]  do_syscall_64+0x33/0x40
[ 2184.581629]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.582350] RIP: 0033:0x7fbe4d75bb19
[ 2184.582902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2184.585582] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2184.586689] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2184.587725] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2184.588761] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2184.589801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2184.590846] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:05:14 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:14 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000f00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:14 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b00, 0x0, 0x0, 0x0)

05:05:14 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65, 0x0, 0x0, 0x0)

05:05:14 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000001b00000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:14 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

05:05:14 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c00, 0x0, 0x0, 0x0)

05:05:14 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68, 0x0, 0x0, 0x0)

05:05:32 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

05:05:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6500, 0x0, 0x0, 0x0)

05:05:32 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

05:05:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000002700000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:32 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
r3 = dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
sendmsg$nl_generic(r1, &(0x7f00000015c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001580)={&(0x7f0000003e40)={0x124c, 0x2b, 0x1, 0x70bd27, 0x25dfdbfe, {0x18}, [@generic="e68d8a0e6a0b327422d69ddc396664c7b16aab244c328f7ceba823bf37ab27611b8791361af8e63fc9d817aaf78825996c0c9541d4ba43783e4b91f7ee5a2f19996488119e31f8aafed0ae35e8517d9c1b1701635493061757fb0905f484623bdcc0cd93d1e76877918e1fb512e614645af36045df82e5ddc1d935ae19d819d8e956f8fa548d6cde5ea24e08a2e80ff2aaf65daf218545b2f813f976e9dc502e7586d89a8802c83d48bef4f94e11343c913cb44cfffc8a7780f70c", @generic="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", @nested={0xe4, 0x2d, 0x0, 0x1, [@typed={0xc, 0x64, 0x0, 0x0, @str='[-[}!{!\x00'}, @generic, @generic="3d0eba7579949898d5653536b0863da8c6655c299164414e45580ceed757a46848ab168595ee4a1bc646245de958181d76fa3210b963c6d51fb78c254e9990e725238cd2afd0833fed5e33fb6d26d43afe7850a4c76c878dea4d215c36fe4dc79d98aeafd8c507f0cd35d19ba934b23242caee5da91f669cf06dbf928bbf6afd0f8c3aa56fa7ebcbfafe53005cf0929c2a09d4356afbbe75bff6fd6de963e5c5cf8e204d2daeab8b7e63818e43920c1117a3553761578d2503018bd987904e9e1223da615e1a932a9a8f266b9ac8d5ed8b2ad3de"]}, @generic="8adbb18e994428a9a7d321b92c6f43d15753a8ce54b876d31ba6a3b5aa79", @nested={0x69, 0x26, 0x0, 0x1, [@typed={0x8, 0x58, 0x0, 0x0, @u32=0x1f}, @generic="45276829379a1efd757bfdb03eccbbb32d83afa429ce7f6064b6120dfeef2d051cb40a443f581026f8b866b27a7af96ace875902a558336a8fae2fb392a7a88bce51a98eef174eccd0c44b548f338718fac6c59a51", @typed={0x8, 0x7c, 0x0, 0x0, @fd}]}, @typed={0xc, 0x83, 0x0, 0x0, @u64=0xffffffff}]}, 0x124c}, 0x1, 0x0, 0x0, 0x844}, 0x8098)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001600)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x1144a0, &(0x7f0000001480)=ANY=[@ANYBLOB="74727560ab50e5f19acc94706f9a363ba9f27dd77af67fffcecc9b898f73697861636c2c61414293ccd480aa361183b90e285c609b48d0b6bfe47ad96669643d3078666666666666666666666666663830312c667363616368652c736d61636bc16f6f743d1287b76b94bf87819a08ae69883c2a2c66736465663de93a8f69e18e253f589e4ceafdfaf93121f4ae499870431738b37ac1d0c887b8d08c97ae9483e8915157b19b09c1ee60ba22ad49dc573b5a257d977be3bd3edf220c22f495f3094797753e02aa4763403853d72e948bed29a7b0d6490d72880000", @ANYRESDEC=r4, @ANYBLOB=',seclabel,\x00'])
r5 = syz_io_uring_setup(0x1433, &(0x7f0000000080)={0x0, 0x4772, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f00000011c0))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0x0, r6, 0x0)
mount$9p_unix(&(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='./file0\x00', &(0x7f0000001340), 0x20810, &(0x7f0000001380)=ANY=[@ANYBLOB="7472616e733d756e69782c63616368653d6c6f6f73652c76657273696f6e3d3970323030302e751e76657273696f6e3d3970323030302e752c63616368653d6c6f6f73652c64666c747569643d", @ANYRESHEX=r4, @ANYBLOB=',dont_hash,fscontext=user_u,subj_user=afid,euid<', @ANYRESDEC=r6, @ANYBLOB="2c726f6f74636f6ef46578743d73797361646d5f752c00"])
r7 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000000)={'syz', 0x0}, 0x0, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0xc, 0x0, 0xfffffffffffffffe, r7, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/4084, 0xff4}, {&(0x7f0000002e00)=""/4104, 0x1008}], 0x2)

05:05:32 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

05:05:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c, 0x0, 0x0, 0x0)

05:05:32 executing program 5:
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x40000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000002d7642874c6dfbce3f00", @ANYRES16=0x0, @ANYBLOB="000826bd7000fddbdf256b0000000a001a0008021100000100000a000600ffffffffffff00000a001a0008021100000000000a001a00ffffffffffff00000a001a00ffffffffffff0000"], 0x50}, 0x1, 0x0, 0x0, 0x4048800}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f00000000c0)={0x0, r2, 0x3d6152b1, 0x20, 0x681a, 0x2})
listen(r2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ppoll(&(0x7f0000000240)=[{r2, 0x19520}, {r3, 0x82}, {0xffffffffffffffff, 0xa109}, {0xffffffffffffffff, 0x4}], 0x4, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8)
statfs(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)=""/187)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000140), 0x3)
lseek(r1, 0x0, 0x0)
statfs(&(0x7f0000000080)='./file1\x00', &(0x7f0000000500)=""/83)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r4, 0xf501, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
fstat(r1, 0x0)
sendfile(r1, r5, 0x0, 0x100000001)

[ 2202.293249] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=11415 comm=syz-executor.7
[ 2202.304498] FAULT_INJECTION: forcing a failure.
[ 2202.304498] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.307099] CPU: 0 PID: 11427 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2202.308603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2202.310371] Call Trace:
[ 2202.310937]  dump_stack+0x107/0x167
[ 2202.311715]  should_fail.cold+0x5/0xa
[ 2202.312529]  ? create_object.isra.0+0x3a/0xa20
[ 2202.313508]  should_failslab+0x5/0x20
[ 2202.314340]  kmem_cache_alloc+0x5b/0x310
[ 2202.315206]  ? mark_held_locks+0x9e/0xe0
[ 2202.316089]  create_object.isra.0+0x3a/0xa20
[ 2202.317036]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2202.318125]  kmem_cache_alloc_bulk+0x168/0x320
[ 2202.319120]  io_submit_sqes+0x6fe6/0x8610
[ 2202.320015]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2202.321076]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.322158]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.323199]  ? find_held_lock+0x2c/0x110
[ 2202.324083]  ? io_submit_sqes+0x8610/0x8610
[ 2202.325006]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2202.326030]  ? wait_for_completion_io+0x270/0x270
[ 2202.327069]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2202.328060]  ? vfs_write+0x354/0xb10
[ 2202.328857]  ? fput_many+0x2f/0x1a0
[ 2202.329651]  ? ksys_write+0x1a9/0x260
[ 2202.330471]  ? __ia32_sys_read+0xb0/0xb0
[ 2202.331346]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2202.332460]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.333562]  do_syscall_64+0x33/0x40
[ 2202.334427]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.335785] RIP: 0033:0x7fd05c70ab19
[ 2202.336575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.337326] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=11431 comm=syz-executor.7
[ 2202.340466] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2202.340489] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2202.340501] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2202.340522] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.349104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2202.350631] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2202.359300] FAULT_INJECTION: forcing a failure.
[ 2202.359300] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2202.362399] CPU: 0 PID: 11426 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2202.363989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2202.365754] Call Trace:
[ 2202.366324]  dump_stack+0x107/0x167
[ 2202.367100]  should_fail.cold+0x5/0xa
[ 2202.367917]  _copy_from_user+0x2e/0x1b0
[ 2202.368765]  iovec_from_user+0x141/0x400
[ 2202.369641]  __import_iovec+0x67/0x590
[ 2202.370482]  ? kfree+0xd7/0x340
[ 2202.371194]  io_import_iovec+0x581/0x1120
[ 2202.372068]  ? io_put_sq_data+0x80/0x250
[ 2202.372953]  ? io_complete_rw+0x230/0x230
[ 2202.373837]  ? io_clean_op+0x30c/0x870
[ 2202.374672]  ? kiocb_done+0x16b/0xc90
[ 2202.375496]  io_read+0xe14/0x11e0
[ 2202.376244]  ? __is_insn_slot_addr+0x14c/0x290
[ 2202.377213]  ? kernel_text_address+0xf2/0x120
[ 2202.378131]  ? unwind_get_return_address+0x55/0xa0
[ 2202.379038]  ? create_prof_cpu_mask+0x20/0x20
[ 2202.379853]  ? kiocb_done+0xc90/0xc90
[ 2202.380548]  ? mark_lock+0xf5/0x2df0
[ 2202.381237]  ? lock_chain_count+0x20/0x20
[ 2202.382001]  ? __lock_acquire+0xbb1/0x5b00
[ 2202.382802]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2202.383763]  ? SOFTIRQ_verbose+0x10/0x10
[ 2202.384503]  ? kasan_save_stack+0x1b/0x40
[ 2202.385263]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2202.386208]  ? __io_queue_sqe+0x666/0x9d0
[ 2202.386967]  ? __lock_acquire+0xbb1/0x5b00
[ 2202.387749]  io_issue_sqe+0x2e8a/0x77b0
[ 2202.388504]  ? perf_trace_lock+0xac/0x490
[ 2202.389267]  ? SOFTIRQ_verbose+0x10/0x10
[ 2202.390020]  ? io_connect+0x610/0x610
[ 2202.390736]  ? lock_acquire+0x197/0x470
[ 2202.391468]  ? find_held_lock+0x2c/0x110
[ 2202.392240]  ? __fget_files+0x2cf/0x520
[ 2202.392979]  ? lock_downgrade+0x6d0/0x6d0
[ 2202.393739]  __io_queue_sqe+0x90/0x9d0
[ 2202.394466]  ? io_issue_sqe+0x77b0/0x77b0
[ 2202.395218]  ? __fget_files+0x2f8/0x520
[ 2202.395956]  ? io_prep_rw+0x7f5/0x1050
[ 2202.396683]  io_submit_sqes+0x44aa/0x8610
[ 2202.397475]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.398405]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.399293]  ? find_held_lock+0x2c/0x110
[ 2202.400037]  ? io_submit_sqes+0x8610/0x8610
[ 2202.400830]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2202.401712]  ? wait_for_completion_io+0x270/0x270
[ 2202.402606]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2202.403454]  ? vfs_write+0x354/0xb10
[ 2202.404163]  ? fput_many+0x2f/0x1a0
[ 2202.404848]  ? ksys_write+0x1a9/0x260
[ 2202.405548]  ? __ia32_sys_read+0xb0/0xb0
[ 2202.406302]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2202.407273]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.408215]  do_syscall_64+0x33/0x40
[ 2202.408903]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.409851] RIP: 0033:0x7fbe4d75bb19
[ 2202.410544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.413935] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2202.415350] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2202.416660] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2202.417973] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.419288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2202.420602] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:05:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000005100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74, 0x0, 0x0, 0x0)

05:05:32 executing program 7:
r0 = syz_io_uring_setup(0x132, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
connect$unix(r3, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x100, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000340)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xa001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:05:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6800, 0x0, 0x0, 0x0)

05:05:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000003000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a, 0x0, 0x0, 0x0)

05:05:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000102000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:32 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

[ 2202.845410] FAULT_INJECTION: forcing a failure.
[ 2202.845410] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.847908] CPU: 1 PID: 11453 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2202.849383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2202.851149] Call Trace:
[ 2202.851726]  dump_stack+0x107/0x167
[ 2202.852517]  should_fail.cold+0x5/0xa
[ 2202.853339]  ? create_object.isra.0+0x3a/0xa20
[ 2202.854332]  should_failslab+0x5/0x20
[ 2202.855159]  kmem_cache_alloc+0x5b/0x310
[ 2202.856032]  ? mark_held_locks+0x9e/0xe0
[ 2202.856914]  create_object.isra.0+0x3a/0xa20
[ 2202.857861]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2202.858973]  kmem_cache_alloc_bulk+0x168/0x320
[ 2202.859968]  io_submit_sqes+0x6fe6/0x8610
[ 2202.860883]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2202.861958]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.863040]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2202.864078]  ? find_held_lock+0x2c/0x110
[ 2202.864963]  ? io_submit_sqes+0x8610/0x8610
[ 2202.865903]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2202.866953]  ? wait_for_completion_io+0x270/0x270
[ 2202.867997]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2202.869002]  ? vfs_write+0x354/0xb10
[ 2202.869804]  ? fput_many+0x2f/0x1a0
[ 2202.870616]  ? ksys_write+0x1a9/0x260
[ 2202.871467]  ? __ia32_sys_read+0xb0/0xb0
[ 2202.872377]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2202.873539]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.874696]  do_syscall_64+0x33/0x40
[ 2202.875525]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.876659] RIP: 0033:0x7fd05c70ab19
[ 2202.877493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.881532] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2202.883220] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2202.884790] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2202.886369] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.887941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2202.889515] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:05:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c00, 0x0, 0x0, 0x0)

05:05:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000103000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:47 executing program 5:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000200)={<r1=>r0, 0x7, 0xbb0, 0x4})
perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x6, 0x3f, 0x4, 0x0, 0x0, 0x6, 0x820, 0xd, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000180), 0x1}, 0x1000, 0x1b, 0x4, 0x2, 0xc088, 0x3, 0x100, 0x0, 0x5, 0x0, 0x2e6}, 0xffffffffffffffff, 0x3, r1, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x54, &(0x7f00000003c0)={@random="b0b092e498d2", @random="e5b4121e72b8", @val={@val={0x9100, 0x4, 0x0, 0x1}, {0x8100, 0x0, 0x0, 0x2}}, {@generic={0x16, "50ff76d188623cc47425bf53760d832f86814ac682cc42fbff6cbd3945bd0d9585d06e5b322cb69f5fc96c9481b6f30a5b3fc9d74ecb1f0e6c3c1fe363c2"}}}, &(0x7f0000000080)={0x1, 0x3, [0x2e0, 0x721, 0xf2f, 0x430]})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c76657273696f6e3d391481d51ccb818e6d819a6347e8006766ce67b363f3d3767defd8202b7e6cec644d072fe7466beceed0a7cdf4caba7f7918efb36ab4ede57f0d8de44bcfac016c21283a227a4b08ec7a5723865ee53cb67a4841ad881937a81b14c6d05dae54"])
setresuid(0x0, 0x0, 0x0)
mount$9p_tcp(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', &(0x7f00000001c0), 0xa00800, &(0x7f0000000340)={'trans=tcp,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@access_uid}, {@posixacl}], [{@appraise}]}})
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x301080, 0x102)

05:05:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5, 0x0, 0x0, 0x0)

05:05:47 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

05:05:47 executing program 7:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38)
statx(r0, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r5=>r4, {r1}}, './file1\x00'})
fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x122902, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/msr', 0x0, 0x22)
writev(r6, &(0x7f00000006c0)=[{&(0x7f0000000180)="647732419e007299a0527d51dc496437e692665510d40d35b770fd8d702d121d997dc90d08763cc1ed88ba0f538cb17d600a", 0x32}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r2}}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid}, {@version_9p2000}], [{@fowner_eq}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/41, 0x29, 0x3)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)

[ 2218.117988] SELinux:  duplicate or incompatible mount options
05:05:48 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

05:05:48 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

[ 2218.177327] FAULT_INJECTION: forcing a failure.
[ 2218.177327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2218.179282] CPU: 0 PID: 11478 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2218.180377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2218.181697] Call Trace:
[ 2218.182124]  dump_stack+0x107/0x167
[ 2218.182500] FAULT_INJECTION: forcing a failure.
[ 2218.182500] name failslab, interval 1, probability 0, space 0, times 0
[ 2218.182719]  should_fail.cold+0x5/0xa
[ 2218.185724]  _copy_to_iter+0x264/0x12d0
[ 2218.186372]  ? seq_read_iter+0xd4d/0x12b0
[ 2218.187025]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2218.187803]  ? __virt_addr_valid+0x170/0x5d0
[ 2218.188496]  ? __check_object_size+0x319/0x440
[ 2218.189214]  seq_read_iter+0xdcb/0x12b0
[ 2218.189851]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2218.190663]  proc_reg_read_iter+0x20a/0x2e0
[ 2218.191345]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2218.192158]  io_read+0x2dc/0x11e0
[ 2218.192702]  ? __is_insn_slot_addr+0x14c/0x290
[ 2218.193419]  ? kernel_text_address+0xf2/0x120
[ 2218.194121]  ? unwind_get_return_address+0x55/0xa0
[ 2218.194898]  ? create_prof_cpu_mask+0x20/0x20
[ 2218.195598]  ? kiocb_done+0xc90/0xc90
[ 2218.196190]  ? mark_lock+0xf5/0x2df0
[ 2218.196777]  ? lock_chain_count+0x20/0x20
[ 2218.197425]  ? __lock_acquire+0xbb1/0x5b00
[ 2218.198107]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2218.198943]  ? SOFTIRQ_verbose+0x10/0x10
[ 2218.199579]  ? kasan_save_stack+0x1b/0x40
[ 2218.200224]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2218.201018]  ? __io_queue_sqe+0x666/0x9d0
[ 2218.201664]  ? __lock_acquire+0xbb1/0x5b00
[ 2218.202347]  io_issue_sqe+0x2e8a/0x77b0
[ 2218.202979]  ? perf_trace_lock+0xac/0x490
[ 2218.203627]  ? SOFTIRQ_verbose+0x10/0x10
[ 2218.204265]  ? io_connect+0x610/0x610
[ 2218.204866]  ? lock_acquire+0x197/0x470
[ 2218.205485]  ? find_held_lock+0x2c/0x110
[ 2218.206125]  ? __fget_files+0x2cf/0x520
[ 2218.206763]  ? lock_downgrade+0x6d0/0x6d0
[ 2218.207437]  __io_queue_sqe+0x90/0x9d0
[ 2218.208075]  ? io_issue_sqe+0x77b0/0x77b0
[ 2218.208736]  ? __fget_files+0x2f8/0x520
[ 2218.209382]  ? io_prep_rw+0x7f5/0x1050
[ 2218.210012]  io_submit_sqes+0x44aa/0x8610
[ 2218.210706]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2218.211500]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2218.212274]  ? find_held_lock+0x2c/0x110
[ 2218.212932]  ? io_submit_sqes+0x8610/0x8610
[ 2218.213630]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2218.214408]  ? wait_for_completion_io+0x270/0x270
[ 2218.215182]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2218.215920]  ? vfs_write+0x354/0xb10
[ 2218.216514]  ? fput_many+0x2f/0x1a0
[ 2218.217103]  ? ksys_write+0x1a9/0x260
[ 2218.217719]  ? __ia32_sys_read+0xb0/0xb0
[ 2218.218382]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2218.219221]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2218.220057]  do_syscall_64+0x33/0x40
[ 2218.220652]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2218.221469] RIP: 0033:0x7fbe4d75bb19
[ 2218.222069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2218.225016] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2218.226160] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2218.227299] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2218.228401] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2218.229499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2218.230601] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2218.231734] CPU: 1 PID: 11480 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2218.233245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2218.235010] Call Trace:
[ 2218.235580]  dump_stack+0x107/0x167
[ 2218.236361]  should_fail.cold+0x5/0xa
[ 2218.237176]  ? create_object.isra.0+0x3a/0xa20
[ 2218.238150]  should_failslab+0x5/0x20
[ 2218.238972]  kmem_cache_alloc+0x5b/0x310
[ 2218.239837]  ? mark_held_locks+0x9e/0xe0
[ 2218.240705]  create_object.isra.0+0x3a/0xa20
[ 2218.241632]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2218.242735]  kmem_cache_alloc_bulk+0x168/0x320
[ 2218.243706]  io_submit_sqes+0x6fe6/0x8610
[ 2218.244600]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2218.245665]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2218.246723]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2218.247746]  ? find_held_lock+0x2c/0x110
[ 2218.248611]  ? io_submit_sqes+0x8610/0x8610
[ 2218.249530]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2218.250559]  ? wait_for_completion_io+0x270/0x270
[ 2218.251583]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2218.252562]  ? vfs_write+0x354/0xb10
[ 2218.253352]  ? fput_many+0x2f/0x1a0
[ 2218.254126]  ? ksys_write+0x1a9/0x260
[ 2218.254935]  ? __ia32_sys_read+0xb0/0xb0
[ 2218.255796]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2218.256897]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2218.257992]  do_syscall_64+0x33/0x40
[ 2218.258791]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2218.259870] RIP: 0033:0x7fd05c70ab19
[ 2218.260657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2218.264552] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2218.266185] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2218.267714] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2218.269234] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2218.270757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2218.272268] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:05:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000104000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2218.289730] SELinux:  duplicate or incompatible mount options
05:05:48 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

05:05:48 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000080))
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
syz_open_pts(0xffffffffffffffff, 0x200)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/key-users\x00', 0x0, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$GIO_CMAP(r2, 0x4b70, &(0x7f0000000040))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)

05:05:48 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7400, 0x0, 0x0, 0x0)

05:05:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000105000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2218.398710] debugfs: Directory '€˜
§°ÇÛ ”uòQÇC	!' with parent 'ieee80211' already present!
05:05:48 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

05:05:48 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a00, 0x0, 0x0, 0x0)

05:05:48 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = creat(&(0x7f0000000200)='./file0\x00', 0x0)
listen(r1, 0xffffffff)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f00000004c0)={"ff4d9648d558e7ae7fa137d84e102af6", 0x0, 0x0, {0x401, 0xfff}, {0x444, 0x5204}, 0x9, [0x5, 0x1000000000000000, 0xfffffffffffffffa, 0x0, 0x7, 0x9, 0x3, 0x1ff, 0x79f, 0xffffffffffffff21, 0x8001, 0x3, 0x7fff, 0x8, 0x3, 0x6c57]})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000040)={'ip6_vti0\x00', <r2=>0x0, 0x2f, 0x81, 0x20, 0x67, 0x4, @loopback, @private0, 0x80, 0x40, 0xd5c2, 0x6}})
setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000140)=0x7f, 0x4)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300), 0x1390044, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@loose}, {@access_any}], [{@obj_user={'obj_user', 0x3d, ','}}]}})
setsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000240)={r2, @empty, @broadcast}, 0xc)
mount(&(0x7f00000005c0)=ANY=[@ANYBLOB="2f7865762f73723000dbe82e1d8edfe5e024d219597a0cf8641db091e550f540913b5d"], &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='securityfs\x00', 0x40, &(0x7f0000000480)='\x00')
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x3, @loopback, 0x402}, 0x1c)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000000))
sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x8004)
r4 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$inet6(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

05:05:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000106000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:05:48 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

05:06:03 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

05:06:03 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xeffd, 0x0, 0x0, 0x0)

05:06:03 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

05:06:03 executing program 7:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x0)
munlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
mlock(&(0x7f0000fef000/0x2000)=nil, 0x2000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r1 = pkey_alloc(0x0, 0x1)
pkey_free(r1)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff)
pkey_free(0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000006, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, r0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xdf, 0x3, 0x0, 0x0, 0x0, 0x2, 0x54210, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x800000, 0x2, @perf_config_ext={0x9e, 0x8}, 0x11a4, 0x1, 0x6, 0x9, 0xc1dd, 0xa30, 0x8, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8800000)

05:06:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000107000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:03 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

05:06:03 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

05:06:03 executing program 5:
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x40000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/netstat\x00')
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x3c)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000015c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000001680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x1c, r2, 0x200, 0x70bd2d, 0x0, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x10)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r2, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x6}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0x400, 0x70bd2a, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x80)
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x7, 0x1, 0x6, 0x89, 0x0, 0x7, 0x51121, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={&(0x7f0000000280), 0xc}, 0xa2, 0x2006351, 0x7, 0x9, 0x8001, 0x0, 0x2, 0x0, 0xbe5, 0x0, 0x9}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x1)
pread64(r0, &(0x7f00000001c0)=""/122, 0x7a, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c00fc09884b002d83f677311cd61dd031b90dc130c5869dc17ade6dacf5d815304686b05fdb2d6fa8171c9a089b52c0a9cdacdf7fc22d3ff7e5a107002e6d6ad50bc50ca53523af9f624c2b0c30f6597a40abf5ca1e3af5"], 0x1c}}, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0x5, &(0x7f0000000140)=0x40, 0x4)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x3c)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000015c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_STATS(r5, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x1c, r6, 0x200, 0x70bd2d, 0x0, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000010)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r6, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x6}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
copy_file_range(r5, &(0x7f0000000380)=0x1ff, r4, &(0x7f00000003c0)=0x164920000000, 0x80000001, 0x0)
socket(0x10, 0x5, 0xff)

05:06:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000108000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2233.946187] FAULT_INJECTION: forcing a failure.
[ 2233.946187] name failslab, interval 1, probability 0, space 0, times 0
[ 2233.947970] CPU: 1 PID: 11540 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2233.949013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2233.950268] Call Trace:
[ 2233.950686]  dump_stack+0x107/0x167
[ 2233.951240]  should_fail.cold+0x5/0xa
[ 2233.951771] FAULT_INJECTION: forcing a failure.
[ 2233.951771] name failslab, interval 1, probability 0, space 0, times 0
[ 2233.951821]  ? create_object.isra.0+0x3a/0xa20
[ 2233.955113]  should_failslab+0x5/0x20
[ 2233.955686]  kmem_cache_alloc+0x5b/0x310
[ 2233.956298]  ? mark_held_locks+0x9e/0xe0
[ 2233.956904]  create_object.isra.0+0x3a/0xa20
[ 2233.957541]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2233.958306]  kmem_cache_alloc_bulk+0x168/0x320
[ 2233.959008]  io_submit_sqes+0x6fe6/0x8610
[ 2233.959637]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2233.960391]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2233.961134]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2233.961831]  ? find_held_lock+0x2c/0x110
[ 2233.962429]  ? io_submit_sqes+0x8610/0x8610
[ 2233.963121]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2233.963814]  ? wait_for_completion_io+0x270/0x270
[ 2233.964507]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2233.965171]  ? vfs_write+0x354/0xb10
[ 2233.965709]  ? fput_many+0x2f/0x1a0
[ 2233.966228]  ? ksys_write+0x1a9/0x260
[ 2233.966778]  ? __ia32_sys_read+0xb0/0xb0
[ 2233.967361]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2233.968142]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2233.968873]  do_syscall_64+0x33/0x40
[ 2233.969423]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2233.970147] RIP: 0033:0x7fd05c70ab19
[ 2233.970692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2233.973287] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2233.974365] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2233.975385] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2233.976397] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2233.977406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2233.978414] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2233.979466] CPU: 0 PID: 11542 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2233.981064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2233.982963] Call Trace:
[ 2233.983574]  dump_stack+0x107/0x167
[ 2233.984405]  should_fail.cold+0x5/0xa
[ 2233.985272]  ? io_setup_async_rw+0x180/0x580
[ 2233.986308]  should_failslab+0x5/0x20
[ 2233.987193]  __kmalloc+0x72/0x390
[ 2233.988001]  io_setup_async_rw+0x180/0x580
[ 2233.988960]  ? iov_iter_restore+0x195/0x3a0
[ 2233.989948]  io_read+0x775/0x11e0
[ 2233.990750]  ? __is_insn_slot_addr+0x14c/0x290
[ 2233.991803]  ? kernel_text_address+0xf2/0x120
[ 2233.992827]  ? unwind_get_return_address+0x55/0xa0
[ 2233.993948]  ? create_prof_cpu_mask+0x20/0x20
[ 2233.994974]  ? kiocb_done+0xc90/0xc90
[ 2233.995848]  ? mark_lock+0xf5/0x2df0
[ 2233.996702]  ? lock_chain_count+0x20/0x20
[ 2233.997639]  ? __lock_acquire+0xbb1/0x5b00
[ 2233.998646]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2233.999830]  ? SOFTIRQ_verbose+0x10/0x10
[ 2234.000746]  ? kasan_save_stack+0x1b/0x40
[ 2234.001685]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2234.002847]  ? __io_queue_sqe+0x666/0x9d0
[ 2234.003796]  ? __lock_acquire+0xbb1/0x5b00
[ 2234.004764]  io_issue_sqe+0x2e8a/0x77b0
[ 2234.005689]  ? perf_trace_lock+0xac/0x490
[ 2234.006644]  ? SOFTIRQ_verbose+0x10/0x10
[ 2234.007579]  ? io_connect+0x610/0x610
[ 2234.008458]  ? lock_acquire+0x197/0x470
[ 2234.009361]  ? find_held_lock+0x2c/0x110
[ 2234.010287]  ? __fget_files+0x2cf/0x520
[ 2234.011211]  ? lock_downgrade+0x6d0/0x6d0
[ 2234.012163]  __io_queue_sqe+0x90/0x9d0
[ 2234.013063]  ? io_issue_sqe+0x77b0/0x77b0
[ 2234.014004]  ? __fget_files+0x2f8/0x520
[ 2234.014929]  ? io_prep_rw+0x7f5/0x1050
[ 2234.015832]  io_submit_sqes+0x44aa/0x8610
[ 2234.016818]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2234.017958]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2234.019079]  ? find_held_lock+0x2c/0x110
[ 2234.020018]  ? io_submit_sqes+0x8610/0x8610
[ 2234.021011]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2234.022118]  ? wait_for_completion_io+0x270/0x270
[ 2234.023227]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2234.024279]  ? vfs_write+0x354/0xb10
[ 2234.025135]  ? fput_many+0x2f/0x1a0
[ 2234.025967]  ? ksys_write+0x1a9/0x260
[ 2234.026850]  ? __ia32_sys_read+0xb0/0xb0
[ 2234.027783]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2234.028981]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2234.030144]  do_syscall_64+0x33/0x40
[ 2234.030999]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2234.032145] RIP: 0033:0x7fbe4d75bb19
[ 2234.032989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2234.037176] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2234.038917] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2234.040529] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2234.042150] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2234.043774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2234.045389] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2234.046349] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11546 comm=syz-executor.5
05:06:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000118000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000011c000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa00, 0x0, 0x0, 0x0)

05:06:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ff, 0x0, 0x0, 0x0)

[ 2234.177796] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11546 comm=syz-executor.5
05:06:04 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xc00, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0xc00, 0x1)
unlink(&(0x7f0000000200)='./file0\x00')
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
unlink(&(0x7f0000000140)='./file0\x00')
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
futimesat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={{0x0, 0x2710}, {0x77359400}})

05:06:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000165000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:04 executing program 5:
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000001180)=0x1)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
syz_genetlink_get_family_id$batadv(0x0, r2)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200000c0}, 0x14050884)
r3 = syz_io_uring_setup(0x1433, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x113}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000001300))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000002e00)=""/4109, 0x100d}], 0x2)
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000140))
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)

05:06:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000001f0000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:04 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
dup2(r0, r0)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000000)={{0x16547eb8, 0xffffffe0}, 0x100, './file0\x00'})
syz_io_uring_setup(0x7734, &(0x7f0000002000)={0x0, 0x0, 0x8, 0x3, 0x8000075}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000002080), &(0x7f00000020c0))

05:06:18 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfdef, 0x0, 0x0, 0x0)

05:06:18 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

05:06:18 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

05:06:18 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

05:06:18 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

05:06:18 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000001c0)='\x00', 0x0, r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe2(&(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
io_uring_setup(0x6a32, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000080)=<r2=>0x0)
r3 = epoll_create1(0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x4000201f})
r4 = epoll_create(0x3ff)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000200)={0x20000001})
dup2(r5, r3)
waitid(0x0, r2, 0x0, 0x8, 0x0)
r6 = creat(&(0x7f0000000000)='./file2\x00', 0x1c)
fcntl$setlease(r6, 0x400, 0x1)
syz_io_uring_setup(0x3618, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
dup3(r1, 0xffffffffffffffff, 0x0)
sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x40, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0x7)

05:06:18 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100030c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:18 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x97, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x49d9, &(0x7f0000000100)={0x0, 0x97d9, 0x4, 0x0, 0x388}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
fstatfs(r0, &(0x7f0000000000)=""/220)
syz_io_uring_setup(0x606a, &(0x7f0000000200)={0x0, 0x8817, 0x1, 0x2, 0xe6}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000280)=<r1=>0x0, &(0x7f00000002c0))
syz_io_uring_setup(0x6045, &(0x7f0000000300)={0x0, 0xb141, 0x20, 0x0, 0x91}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0xfffffffffffffffd, &(0x7f0000000380)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd_index=0x4, 0x3ff, 0x0, 0x0, 0x11, 0x1, {0x1, r3}}, 0xff)
syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r3}}, 0x6549dbf)

[ 2248.586768] FAULT_INJECTION: forcing a failure.
[ 2248.586768] name failslab, interval 1, probability 0, space 0, times 0
[ 2248.589254] CPU: 0 PID: 11593 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2248.590616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2248.592270] Call Trace:
[ 2248.592793]  dump_stack+0x107/0x167
[ 2248.593508]  should_fail.cold+0x5/0xa
[ 2248.594261]  ? create_object.isra.0+0x3a/0xa20
[ 2248.595174]  should_failslab+0x5/0x20
[ 2248.595923]  kmem_cache_alloc+0x5b/0x310
[ 2248.596727]  create_object.isra.0+0x3a/0xa20
[ 2248.597583]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2248.598580]  __kmalloc+0x16e/0x390
[ 2248.599295]  io_setup_async_rw+0x180/0x580
[ 2248.600120]  ? iov_iter_restore+0x195/0x3a0
[ 2248.600965]  io_read+0x775/0x11e0
[ 2248.601645]  ? __is_insn_slot_addr+0x14c/0x290
[ 2248.602552]  ? kernel_text_address+0xf2/0x120
[ 2248.603453]  ? unwind_get_return_address+0x55/0xa0
[ 2248.604418]  ? create_prof_cpu_mask+0x20/0x20
[ 2248.605301]  ? kiocb_done+0xc90/0xc90
[ 2248.606052]  ? mark_lock+0xf5/0x2df0
[ 2248.606803]  ? lock_chain_count+0x20/0x20
[ 2248.607627]  ? __lock_acquire+0xbb1/0x5b00
[ 2248.608487]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2248.609520]  ? SOFTIRQ_verbose+0x10/0x10
[ 2248.610322]  ? kasan_save_stack+0x1b/0x40
[ 2248.611152]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2248.612148]  ? __io_queue_sqe+0x666/0x9d0
[ 2248.612977]  ? __lock_acquire+0xbb1/0x5b00
[ 2248.613817]  io_issue_sqe+0x2e8a/0x77b0
[ 2248.614608]  ? perf_trace_lock+0xac/0x490
[ 2248.615433]  ? SOFTIRQ_verbose+0x10/0x10
[ 2248.616228]  ? io_connect+0x610/0x610
[ 2248.616971]  ? lock_acquire+0x197/0x470
[ 2248.617743]  ? find_held_lock+0x2c/0x110
[ 2248.618529]  ? __fget_files+0x2cf/0x520
[ 2248.619312]  ? lock_downgrade+0x6d0/0x6d0
[ 2248.620121]  __io_queue_sqe+0x90/0x9d0
[ 2248.620888]  ? io_issue_sqe+0x77b0/0x77b0
[ 2248.621682]  ? __fget_files+0x2f8/0x520
[ 2248.622462]  ? io_prep_rw+0x7f5/0x1050
[ 2248.623230]  io_submit_sqes+0x44aa/0x8610
[ 2248.624066]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2248.625024]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2248.625969]  ? find_held_lock+0x2c/0x110
[ 2248.626771]  ? io_submit_sqes+0x8610/0x8610
[ 2248.627615]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2248.628540]  ? wait_for_completion_io+0x270/0x270
[ 2248.629468]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2248.630372]  ? vfs_write+0x354/0xb10
[ 2248.631106]  ? fput_many+0x2f/0x1a0
[ 2248.631812]  ? ksys_write+0x1a9/0x260
[ 2248.632556]  ? __ia32_sys_read+0xb0/0xb0
[ 2248.633346]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2248.634362]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2248.635379]  do_syscall_64+0x33/0x40
[ 2248.636100]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2248.637089] RIP: 0033:0x7fbe4d75bb19
[ 2248.637832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2248.641432] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2248.642921] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2248.644312] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2248.645703] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2248.647103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2248.648500] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:06:18 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000180040c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2248.677818] FAULT_INJECTION: forcing a failure.
[ 2248.677818] name failslab, interval 1, probability 0, space 0, times 0
[ 2248.679190] CPU: 1 PID: 11603 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2248.679981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2248.680938] Call Trace:
[ 2248.681245]  dump_stack+0x107/0x167
[ 2248.681661]  should_fail.cold+0x5/0xa
[ 2248.682102]  ? create_object.isra.0+0x3a/0xa20
[ 2248.682624]  should_failslab+0x5/0x20
[ 2248.683076]  kmem_cache_alloc+0x5b/0x310
[ 2248.683540]  ? mark_held_locks+0x9e/0xe0
[ 2248.684009]  create_object.isra.0+0x3a/0xa20
[ 2248.684510]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2248.685103]  kmem_cache_alloc_bulk+0x168/0x320
[ 2248.685638]  io_submit_sqes+0x6fe6/0x8610
[ 2248.686116]  ? __io_uring_add_tctx_node+0xe6/0x520
[ 2248.686694]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2248.687270]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2248.687822]  ? find_held_lock+0x2c/0x110
[ 2248.688296]  ? io_submit_sqes+0x8610/0x8610
[ 2248.688795]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2248.689346]  ? wait_for_completion_io+0x270/0x270
[ 2248.689893]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2248.690420]  ? vfs_write+0x354/0xb10
[ 2248.690863]  ? fput_many+0x2f/0x1a0
[ 2248.691283]  ? ksys_write+0x1a9/0x260
[ 2248.691724]  ? __ia32_sys_read+0xb0/0xb0
[ 2248.692200]  do_syscall_64+0x33/0x40
[ 2248.692623]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2248.693204] RIP: 0033:0x7fd05c70ab19
[ 2248.693630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2248.695767] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2248.696638] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2248.697465] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2248.698282] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2248.699112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2248.699931] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:06:18 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100050c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:18 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

05:06:18 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfff5, 0x0, 0x0, 0x0)

05:06:18 executing program 5:
rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100))
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x2000000}}}, 0x108)
pselect6(0x40, &(0x7f00000013c0)={0x0, 0xfffffffffffffeff, 0x0, 0x9d, 0x5, 0x0, 0x8}, 0x0, &(0x7f0000001440)={0xe5, 0x80000000a, 0x0, 0x2000000000000005, 0x1, 0x401, 0x81, 0x104c0cd1}, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)={[0x7]}, 0x8})
fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1)
r2 = signalfd4(r1, &(0x7f0000000180)={[0x4]}, 0x8, 0x800)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000200)={0x1, 0x0, {0xa, 0x19, 0x12, 0xd, 0x9, 0xb54, 0x3, 0x142, 0xffffffffffffffff}})
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f00000001c0)=0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
unshare(0x48020200)

05:06:18 executing program 7:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
io_setup(0x3, &(0x7f0000000000)=<r2=>0x0)
r3 = inotify_init1(0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
inotify_add_watch(r3, &(0x7f0000000000)='./file0\x00', 0x43)
dup3(r4, r3, 0x0)
io_pgetevents(0x0, 0x10001, 0x7, &(0x7f00000004c0)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f00000002c0)={0x77359400}, &(0x7f00000003c0)={&(0x7f0000000340)={[0x4]}, 0x8})
io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r3, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x5}, &(0x7f0000000180))
r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xa, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
socket$inet6_udp(0xa, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000800)=ANY=[@ANYBLOB="ffff00001d00210c00000000160000000400020008000c0000000000551b8381b0903d95e62f8c86215956039a0409d05dc40466fd2a85c96d80f86fdeb89bf6b040eb9867aad208ac1c092066bae103e6d26d55f1a175ac2e49f237b99f38089b9927e7dbfff9a048ed810a18ae8bf954e5feafae3bf141c00bdc3dc0bdd034a2ae6dd7acb2863a239f90e21c6d405662bf08efb72b5daccdff203ba484dda84e7e0fc092717c115b1a6a6614afd7447d5262f5e173e5d47c02130f83f4f4703beedf98fe1268a515fb104e1bd4d89140e2642520f0658c273eb4b5e222be83d4330833dc89108237ea255ab2417a70799468568276fb120f32533b12631b73c8a75d0199901f49889fb253eb6918b062584fa89006f400000000006bd4de377c2f191162005aaa37b4466d6ad90dcafc18cd865ac4878c13499dcdf0fce995f8e6cb96e11fac420b551084ef4b6add1801b3670d599a08b5f3a8d90fc7206e553d0300000000000000000000000012420cf82d27860b632dccec77851e14b6281fcce123c97f"], 0x1c}}, 0x0)

05:06:18 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100060c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:18 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)

05:06:32 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x3a7b, &(0x7f0000000480)={0x0, 0x55d3, 0x0, 0x800003, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, 0x0, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {0xffff}}, './file0\x00'})
io_uring_enter(r6, 0x647c, 0xad9f, 0x2, &(0x7f0000000240)={[0x5]}, 0x8)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000001c0)={'syz_tun\x00', &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/12]})
dup3(r5, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1000015, 0x12, 0xffffffffffffffff, 0x876de000)
setsockopt$inet6_int(r5, 0x29, 0x3a, &(0x7f0000000080)=0x3ff, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x800, 0x0, 0x0, 0x10, 0x0, {0x1}}, 0xffff)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)

05:06:32 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

05:06:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)

05:06:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100070c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:32 executing program 7:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x1e0}], 0x0, &(0x7f0000000040)={[{@utf8no}]})
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
signalfd(r0, &(0x7f00000001c0)={[0x4]}, 0x8)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000240), 0x18402, 0x0)
sendmsg$AUDIT_GET(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x3e8, 0x200, 0x70bd27, 0x25dfdbff, "", [""]}, 0x2f}, 0x1, 0x0, 0x0, 0x4040005}, 0x80)

05:06:32 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

05:06:32 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

05:06:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

[ 2262.352696] FAULT_INJECTION: forcing a failure.
[ 2262.352696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2262.354146] CPU: 1 PID: 11652 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2262.354955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2262.355911] Call Trace:
[ 2262.356218]  dump_stack+0x107/0x167
[ 2262.356636]  should_fail.cold+0x5/0xa
[ 2262.357083]  _copy_from_user+0x2e/0x1b0
[ 2262.357551]  iovec_from_user+0x141/0x400
[ 2262.358019]  __import_iovec+0x67/0x590
[ 2262.358464]  ? perf_trace_lock+0xac/0x490
[ 2262.358960]  io_import_iovec+0x581/0x1120
[ 2262.359440]  ? io_complete_rw+0x230/0x230
[ 2262.359918]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.360400]  ? unwind_next_frame+0x13ef/0x1a90
[ 2262.360934]  io_read+0xe14/0x11e0
[ 2262.361341]  ? kiocb_done+0xc90/0xc90
[ 2262.361780]  ? mark_lock+0xf5/0x2df0
[ 2262.362214]  ? lock_chain_count+0x20/0x20
[ 2262.362698]  ? lock_chain_count+0x20/0x20
[ 2262.363188]  ? stack_trace_save+0x8c/0xc0
[ 2262.363669]  ? __lockdep_reset_lock+0x180/0x180
[ 2262.364212]  ? lock_acquire+0x197/0x470
[ 2262.364675]  ? __lock_acquire+0xbb1/0x5b00
[ 2262.365167]  io_issue_sqe+0x2e8a/0x77b0
[ 2262.365625]  ? perf_trace_lock+0xac/0x490
[ 2262.366098]  ? SOFTIRQ_verbose+0x10/0x10
[ 2262.366572]  ? lock_chain_count+0x20/0x20
[ 2262.367052]  ? io_connect+0x610/0x610
[ 2262.367494]  ? lock_acquire+0x197/0x470
[ 2262.367949]  ? find_held_lock+0x2c/0x110
[ 2262.368420]  ? __fget_files+0x2cf/0x520
[ 2262.368875]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.369355]  __io_queue_sqe+0x90/0x9d0
[ 2262.369808]  ? io_issue_sqe+0x77b0/0x77b0
[ 2262.370282]  ? __fget_files+0x2f8/0x520
[ 2262.370739]  ? io_prep_rw+0x7f5/0x1050
[ 2262.371201]  io_submit_sqes+0x44aa/0x8610
[ 2262.371700]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2262.372271]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2262.372830]  ? find_held_lock+0x2c/0x110
[ 2262.372877] FAULT_INJECTION: forcing a failure.
[ 2262.372877] name failslab, interval 1, probability 0, space 0, times 0
[ 2262.373297]  ? io_submit_sqes+0x8610/0x8610
[ 2262.373314]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2262.373326]  ? wait_for_completion_io+0x270/0x270
[ 2262.373339]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2262.373350]  ? vfs_write+0x354/0xb10
[ 2262.373361]  ? fput_many+0x2f/0x1a0
[ 2262.373387]  ? ksys_write+0x1a9/0x260
[ 2262.379412]  ? __ia32_sys_read+0xb0/0xb0
[ 2262.379881]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2262.380482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.381079]  do_syscall_64+0x33/0x40
[ 2262.381513]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2262.382102] RIP: 0033:0x7fd05c70ab19
[ 2262.382530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.384652] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2262.385527] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2262.386342] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2262.387168] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.387985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2262.388807] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2262.389657] CPU: 0 PID: 11655 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2262.390832] loop7: detected capacity change from 0 to 512
[ 2262.391360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2262.391371] Call Trace:
[ 2262.394639]  dump_stack+0x107/0x167
[ 2262.395540]  should_fail.cold+0x5/0xa
[ 2262.396480]  ? __io_queue_sqe+0x666/0x9d0
[ 2262.397502]  should_failslab+0x5/0x20
[ 2262.398437]  kmem_cache_alloc_trace+0x55/0x320
[ 2262.399588]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.400649]  __io_queue_sqe+0x666/0x9d0
[ 2262.401654]  ? io_issue_sqe+0x77b0/0x77b0
[ 2262.402674]  ? __fget_files+0x2f8/0x520
[ 2262.403665]  ? io_prep_rw+0x7f5/0x1050
[ 2262.404669]  io_submit_sqes+0x44aa/0x8610
[ 2262.405725]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2262.406959]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2262.408151]  ? find_held_lock+0x2c/0x110
[ 2262.409217]  ? io_submit_sqes+0x8610/0x8610
[ 2262.410273]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2262.411451]  ? wait_for_completion_io+0x270/0x270
[ 2262.412655]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2262.413835]  ? vfs_write+0x354/0xb10
[ 2262.414744]  ? fput_many+0x2f/0x1a0
[ 2262.415640]  ? ksys_write+0x1a9/0x260
[ 2262.416582]  ? __ia32_sys_read+0xb0/0xb0
[ 2262.417576]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2262.418876]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.420181]  do_syscall_64+0x33/0x40
[ 2262.421096]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2262.422344] RIP: 0033:0x7fbe4d75bb19
[ 2262.423256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.427848] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2262.429745] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2262.431540] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2262.433300] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.435060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2262.436852] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2262.441486] FAT-fs (loop7): Directory bread(block 3) failed
05:06:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000017c0a0c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2262.442236] FAT-fs (loop7): Directory bread(block 4) failed
[ 2262.443176] FAT-fs (loop7): Directory bread(block 5) failed
[ 2262.454636] FAT-fs (loop7): Directory bread(block 6) failed
[ 2262.455350] FAT-fs (loop7): Directory bread(block 7) failed
[ 2262.456280] FAT-fs (loop7): Directory bread(block 8) failed
[ 2262.456979] FAT-fs (loop7): Directory bread(block 9) failed
05:06:32 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x200000, 0x0, 0x0, 0x0)

05:06:32 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

05:06:32 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000240)={0x0, @adiantum, 0x0, @desc1})
sendmsg$NL80211_CMD_LEAVE_OCB(r3, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r1, 0x4, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008010}, 0xc004)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)={0x38, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT={0x8}, @NL80211_MESHCONF_AWAKE_WINDOW={0x6}, @NL80211_MESHCONF_HOLDING_TIMEOUT={0x6, 0x3, 0x10}]}]}, 0x38}}, 0x0)

05:06:32 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
pwrite64(r1, &(0x7f0000000000)="f505017aced8cfc788793021190b77924c6e473256603f93b3922a6b1f352a3cc5525bd91a00aa692eaf8eb7955fae77572a473d6b000f9176b824c03cbbdf46877a696c7f2ab625249845b1e427c52a39a564ce4d0d83d027ab43460a20b032d0e53405661815a5ac828705596ba21192f44abd07ee67537526ad0c3dda5378ee613308efb1afa850e74b29f565f853d8ebf70b091878570c98b146b2b96124cb257384ae14e1ec69fd8cae021f1f43f3fc251c4a8ee8e1cd0dee6bec1c40acab05e8c481e427e8b4bf65371cdb6ece28cc8e6bba1588c1d8d8eabceacc629f79ded214", 0xe4, 0x4)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f00000006c0), r0)

05:06:32 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100180c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:32 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac950755951deec4790aad73f2a0d0ea95e61d823c36e791793"], 0x24}}, 0x0)
r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80))
mount$9p_fd(0x0, 0x0, &(0x7f0000000240), 0x220004, &(0x7f0000000600)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@privport}, {@noextend}, {@access_client}, {@cache_loose}, {@version_L}], [{@obj_type={'obj_type', 0x3d, '-\\'}}]}})
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SG_SET_TIMEOUT(0xffffffffffffffff, 0x2201, &(0x7f0000000100)=0x10000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYBLOB="300000001e0041ee472b00"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2dbcdf1903fb052565c23c23d861899509fb26a1f672416325f004d2fdd903c5fa86b4bf1e39074929e71f3a466d345a8e660cd8d401a4772051ab211e24ede74314ef8b7a2c04c8a87b4e5603f7592bc89521d454d3528dce3959d8613c413eafce02151dc1f76a1ace92831610ea0894d9f59407f66cbe556e636be5a3d01253ec1c755495e5196efdf7f155cba102e17e2cfa917e79a2a35bb2b6dbca97391"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
r4 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(r4, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB=')\x00\x00 ', @ANYRES16, @ANYBLOB="280026bd704a826946", @ANYRES32=r3, @ANYRES16], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
getresgid(&(0x7f0000000340), &(0x7f0000000400), &(0x7f00000006c0))

[ 2262.709551] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2262.728584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2262.729548] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2262.730431] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2262.737115] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2262.745629] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2262.746487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2262.747371] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:06:47 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
llistxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = fork()
listxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)=""/125, 0x7d)
ptrace(0x10, r0)
r1 = fork()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$nl_generic(r2, &(0x7f0000000300)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000001700)={0x216c, 0x35, 0x10, 0x70bd2b, 0x25dfdbff, {0x14}, [@generic="ea0fa06c8a5c434b91528842eacac3616c9e297bf3f783bf4f5100d04a3b268381530ceb465234f96bb246a33084a208780d7f824bc3a9996e3e1334b84a9eee3c8a1bd787b4950820ee2daa876d4c8efdf5361ba10cbfe177e9bec9a16ce1d6e489b8c671bfd911d5b1e0fe88d2c3aa4c5ea394b060055d910ec6c73964f1cf669b370a0e58f93cb1f98b6a19528b1e18c8be8e76ad7aa906e50e49144c2aff", @nested={0x4, 0x40}, @generic="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", @typed={0x1004, 0x4e, 0x0, 0x0, @binary="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"}, @generic="4e76221f128b29fa4386f8c88662be04580e9e7960", @nested={0x95, 0x79, 0x0, 0x1, [@generic="bcf129eb2e73612f5ef4eb13bd8e4fd1bc6d11465b8ccb5d50c8c8b0ccf2d130c6c6294963210b1258ca866f5652cef1cde99de47c35c002d315283cf981d96abb9e04be75e5e981dffed86c8e7cde8b1a378d02870469b6f4907adf9391e4ece6b30e01b98e88b88ac0eef626ec3ba23a52d60ef477722f6096db8637d6d94a71459c93bdc255c191e5c41fd579", @generic="c5e979"]}]}, 0x216c}, 0x1, 0x0, 0x0, 0x40840}, 0x85)
ptrace(0x10, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={<r3=>0x0}, &(0x7f0000000240)=0xc)
tkill(r3, 0x2b)
capset(&(0x7f0000000180)={0x19980330, r1}, &(0x7f00000001c0)={0x7a4, 0x7f, 0x1b99, 0x81, 0x3ff, 0x200000})
ptrace$getsig(0x4202, r0, 0x8, &(0x7f0000000080))

05:06:47 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

05:06:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

05:06:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

05:06:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

05:06:47 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x50102, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000540)='net/rpc\x00')
io_setup(0x3, &(0x7f0000000000))
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000780)=ANY=[], 0x46000)
ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x127c, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, 0x0, 0x1, 0x70bd2c, 0x25dfdbfe, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x881)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x50, 0xffffffffffffffff, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000000180))
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f00000001c0)=0x20)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
sendmmsg(r0, &(0x7f0000001040), 0x3fffffffffffdca, 0x40)

05:06:47 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:06:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000001001c0c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2277.501419] FAULT_INJECTION: forcing a failure.
[ 2277.501419] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.504326] CPU: 0 PID: 11704 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2277.504722] FAULT_INJECTION: forcing a failure.
[ 2277.504722] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.505950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.505958] Call Trace:
[ 2277.505984]  dump_stack+0x107/0x167
[ 2277.506008]  should_fail.cold+0x5/0xa
[ 2277.506030]  ? __io_queue_sqe+0x666/0x9d0
[ 2277.506060]  should_failslab+0x5/0x20
[ 2277.514680]  kmem_cache_alloc_trace+0x55/0x320
[ 2277.515752]  ? lock_downgrade+0x6d0/0x6d0
[ 2277.516731]  __io_queue_sqe+0x666/0x9d0
[ 2277.517667]  ? io_issue_sqe+0x77b0/0x77b0
[ 2277.518622]  ? __fget_files+0x2f8/0x520
[ 2277.519570]  ? io_prep_rw+0x7f5/0x1050
[ 2277.520490]  io_submit_sqes+0x44aa/0x8610
[ 2277.521495]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.522674]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.523817]  ? find_held_lock+0x2c/0x110
[ 2277.524782]  ? io_submit_sqes+0x8610/0x8610
[ 2277.525807]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2277.526946]  ? wait_for_completion_io+0x270/0x270
[ 2277.528093]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.529190]  ? vfs_write+0x354/0xb10
[ 2277.530072]  ? fput_many+0x2f/0x1a0
[ 2277.530930]  ? ksys_write+0x1a9/0x260
[ 2277.531830]  ? __ia32_sys_read+0xb0/0xb0
[ 2277.532790]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.534022]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.535254]  do_syscall_64+0x33/0x40
[ 2277.536129]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.537336] RIP: 0033:0x7fbe4d75bb19
[ 2277.538211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.542558] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2277.544370] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2277.546053] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2277.547749] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.549436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2277.551112] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2277.552839] CPU: 1 PID: 11702 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2277.554438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.556364] Call Trace:
[ 2277.556987]  dump_stack+0x107/0x167
[ 2277.557837]  should_fail.cold+0x5/0xa
[ 2277.558717]  ? kvmalloc_node+0x119/0x170
[ 2277.559676]  should_failslab+0x5/0x20
[ 2277.560566]  __kmalloc_node+0x76/0x420
[ 2277.561492]  kvmalloc_node+0x119/0x170
[ 2277.562387]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2277.563606]  seq_read_iter+0x81c/0x12b0
[ 2277.564535]  ? _cond_resched+0x10/0x30
[ 2277.565457]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2277.566556]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2277.567775]  proc_reg_read_iter+0x20a/0x2e0
[ 2277.568792]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2277.569998]  io_read+0x2dc/0x11e0
[ 2277.570835]  ? kiocb_done+0xc90/0xc90
[ 2277.571708]  ? mark_lock+0xf5/0x2df0
[ 2277.572588]  ? lock_chain_count+0x20/0x20
[ 2277.573564]  ? lock_acquire+0x197/0x470
[ 2277.574493]  ? __lock_acquire+0xbb1/0x5b00
[ 2277.575465]  io_issue_sqe+0x2e8a/0x77b0
[ 2277.576395]  ? perf_trace_lock+0xac/0x490
[ 2277.577359]  ? SOFTIRQ_verbose+0x10/0x10
[ 2277.578279]  ? lock_chain_count+0x20/0x20
[ 2277.579244]  ? io_connect+0x610/0x610
[ 2277.580142]  ? lock_acquire+0x197/0x470
[ 2277.581058]  ? find_held_lock+0x2c/0x110
[ 2277.582008]  ? __fget_files+0x2cf/0x520
[ 2277.582925]  ? lock_downgrade+0x6d0/0x6d0
[ 2277.583878]  __io_queue_sqe+0x90/0x9d0
[ 2277.584793]  ? io_issue_sqe+0x77b0/0x77b0
[ 2277.585753]  ? __fget_files+0x2f8/0x520
[ 2277.586679]  ? io_prep_rw+0x7f5/0x1050
[ 2277.587602]  io_submit_sqes+0x44aa/0x8610
[ 2277.588615]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.589777]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.590904]  ? find_held_lock+0x2c/0x110
[ 2277.591868]  ? io_submit_sqes+0x8610/0x8610
[ 2277.592885]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2277.594012]  ? wait_for_completion_io+0x270/0x270
[ 2277.595149]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.596236]  ? vfs_write+0x354/0xb10
[ 2277.597104]  ? fput_many+0x2f/0x1a0
[ 2277.597956]  ? ksys_write+0x1a9/0x260
[ 2277.598843]  ? __ia32_sys_read+0xb0/0xb0
[ 2277.599804]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.601025]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.602233]  do_syscall_64+0x33/0x40
[ 2277.603104]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.604289] RIP: 0033:0x7fd05c70ab19
[ 2277.605146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.609348] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2277.611094] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2277.612756] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2277.614418] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.616069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2277.617741] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:06:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100200c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:06:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

05:06:47 executing program 7:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000008b80)=[{0x0, 0x0, 0xffffffff}], 0x4, 0x0)

05:06:47 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

05:06:47 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000001003f0c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2277.804827] loop7: detected capacity change from 0 to 135266304
[ 2277.838383] loop7: detected capacity change from 0 to 135266304
05:06:47 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

05:06:47 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

05:06:47 executing program 7:
r0 = socket$inet(0xa, 0x6, 0x80)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x1897, 0x4)
sendto(r0, &(0x7f0000000000)="d4f8dfaa394996add3afd1da13fac83014b8e5c45afa1a1f3ed44d2f6eaf6b5f9203bf69ab683862", 0x28, 0x0, &(0x7f0000000140)=@nl=@unspec={0x0, 0xff00, 0x0, 0xf5ffffff}, 0x80)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x8008f511, &(0x7f0000000040))

[ 2277.989840] FAULT_INJECTION: forcing a failure.
[ 2277.989840] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.992443] CPU: 0 PID: 11741 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2277.994021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.995953] Call Trace:
[ 2277.996560]  dump_stack+0x107/0x167
[ 2277.997405]  should_fail.cold+0x5/0xa
[ 2277.998299]  ? create_object.isra.0+0x3a/0xa20
[ 2277.999365]  should_failslab+0x5/0x20
[ 2278.000232]  kmem_cache_alloc+0x5b/0x310
[ 2278.001173]  create_object.isra.0+0x3a/0xa20
[ 2278.002190]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2278.003364]  __kmalloc_node+0x1ae/0x420
[ 2278.004278]  kvmalloc_node+0x119/0x170
[ 2278.005162]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2278.006359]  seq_read_iter+0x81c/0x12b0
[ 2278.007273]  ? _cond_resched+0x10/0x30
[ 2278.008171]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2278.009260]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2278.010437]  proc_reg_read_iter+0x20a/0x2e0
[ 2278.011428]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2278.012593]  io_read+0x2dc/0x11e0
[ 2278.013397]  ? kiocb_done+0xc90/0xc90
[ 2278.014258]  ? mark_lock+0xf5/0x2df0
[ 2278.015129]  ? lock_chain_count+0x20/0x20
[ 2278.016098]  ? lock_acquire+0x197/0x470
[ 2278.017035]  ? __lock_acquire+0xbb1/0x5b00
[ 2278.017995]  io_issue_sqe+0x2e8a/0x77b0
[ 2278.018908]  ? perf_trace_lock+0xac/0x490
[ 2278.019851]  ? SOFTIRQ_verbose+0x10/0x10
[ 2278.020775]  ? lock_chain_count+0x20/0x20
[ 2278.021714]  ? io_connect+0x610/0x610
[ 2278.022586]  ? lock_acquire+0x197/0x470
[ 2278.023500]  ? find_held_lock+0x2c/0x110
[ 2278.024423]  ? __fget_files+0x2cf/0x520
[ 2278.025322]  ? lock_downgrade+0x6d0/0x6d0
[ 2278.026274]  __io_queue_sqe+0x90/0x9d0
[ 2278.027177]  ? io_issue_sqe+0x77b0/0x77b0
[ 2278.028121]  ? __fget_files+0x2f8/0x520
[ 2278.029025]  ? io_prep_rw+0x7f5/0x1050
[ 2278.029924]  io_submit_sqes+0x44aa/0x8610
[ 2278.030905]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2278.032058]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2278.033189]  ? find_held_lock+0x2c/0x110
[ 2278.034120]  ? io_submit_sqes+0x8610/0x8610
[ 2278.035117]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2278.036223]  ? wait_for_completion_io+0x270/0x270
[ 2278.037329]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2278.038416]  ? vfs_write+0x354/0xb10
[ 2278.039285]  ? fput_many+0x2f/0x1a0
[ 2278.040140]  ? ksys_write+0x1a9/0x260
[ 2278.041025]  ? __ia32_sys_read+0xb0/0xb0
[ 2278.041959]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2278.043186]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2278.044399]  do_syscall_64+0x33/0x40
[ 2278.045270]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2278.046463] RIP: 0033:0x7fd05c70ab19
[ 2278.047336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2278.051542] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2278.053321] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2278.054970] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2278.056604] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2278.058220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2278.059890] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:07:03 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:07:03 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

05:07:03 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000b00)=ANY=[@ANYBLOB="1c2ccb7f38969d4c51000000000038d83cd12edecb0c1095b2eb69b62082daba1aa07aee0a0378d32f4111250d45e7bc53e6151c0bf9cc0748237984dc2baabd00000000903e7aecc2828154ed986c1ff404bddf489a51b5adcb60", @ANYRES16, @ANYRES32, @ANYBLOB="000000002e2f66696c6531002e959e48b7e88a714e4188a90b4306a940929f5dcad4fce4f0bbe12fdc5012c7136aa99abe381e6049d47f0a0000fd40feac543bf9963f3ac4000000000000c2970186a7cf62adaf1f26aa4515d8414d821c4b8dcd0195a2069ea081d4472bb9990a0a25b23df8170673b4d632bcd82fac38f33424f9003f2bffe918371cb22912e288e2c3807ee2cec1de6642e64ce800000080310000ea44b718fc1f3a617379ae7df8d15157ed91de3b22000000000000000049f20b05cb9fdeb2ecea80253ae18ee0267820fa012e65552300000000000000"])
statx(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x2000, 0x2, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0, <r1=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', 0x0)
r2 = syz_open_dev$vcsn(0x0, 0x2, 0x121041)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x20840, 0x2)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)
fchownat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', r0, r1, 0x1000)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0)
r3 = syz_open_dev$vcsa(&(0x7f0000000040), 0x5, 0x4001c0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000380)={'vxcan1\x00'})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000000, 0x12, 0xffffffffffffffff, 0x8000000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8204, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7, 0x2, 0x9, 0x20000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0)
ioctl$CDROMREADAUDIO(r4, 0x530e, &(0x7f0000000ac0)={@msf, 0x1, 0x1, &(0x7f0000000a80)=""/1})
dup3(0xffffffffffffffff, r4, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x880}, 0x0)

05:07:03 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

05:07:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100650c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:03 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

05:07:03 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

05:07:03 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

[ 2293.570243] FAULT_INJECTION: forcing a failure.
[ 2293.570243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2293.572797] CPU: 1 PID: 11767 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2293.574456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.576441] Call Trace:
[ 2293.577016]  dump_stack+0x107/0x167
[ 2293.577809]  should_fail.cold+0x5/0xa
[ 2293.578628]  _copy_to_iter+0x264/0x12d0
[ 2293.579668]  ? seq_read_iter+0xd4d/0x12b0
[ 2293.580631]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2293.581515] FAULT_INJECTION: forcing a failure.
[ 2293.581515] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2293.581893]  ? __virt_addr_valid+0x170/0x5d0
[ 2293.585732]  ? __check_object_size+0x319/0x440
[ 2293.586748]  seq_read_iter+0xdcb/0x12b0
[ 2293.587651]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2293.588804]  proc_reg_read_iter+0x20a/0x2e0
[ 2293.589789]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2293.590905]  io_read+0x2dc/0x11e0
[ 2293.591826]  ? kiocb_done+0xc90/0xc90
[ 2293.592621]  ? mark_lock+0xf5/0x2df0
[ 2293.593570]  ? lock_chain_count+0x20/0x20
[ 2293.594440]  ? mark_lock+0xf5/0x2df0
[ 2293.595253]  ? lock_chain_count+0x20/0x20
[ 2293.596126]  ? lock_acquire+0x197/0x470
[ 2293.597015]  ? __lock_acquire+0xbb1/0x5b00
[ 2293.597922]  io_issue_sqe+0x2e8a/0x77b0
[ 2293.598770]  ? perf_trace_lock+0xac/0x490
[ 2293.599652]  ? SOFTIRQ_verbose+0x10/0x10
[ 2293.600667]  ? lock_chain_count+0x20/0x20
[ 2293.601756]  ? io_connect+0x610/0x610
[ 2293.602605]  ? lock_acquire+0x197/0x470
[ 2293.603450]  ? find_held_lock+0x2c/0x110
[ 2293.604319]  ? __fget_files+0x2cf/0x520
[ 2293.605161]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.606038]  __io_queue_sqe+0x90/0x9d0
[ 2293.606878]  ? io_issue_sqe+0x77b0/0x77b0
[ 2293.607774]  ? __fget_files+0x2f8/0x520
[ 2293.608738]  ? io_prep_rw+0x7f5/0x1050
[ 2293.609721]  io_submit_sqes+0x44aa/0x8610
[ 2293.610803]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.612047]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.613217]  ? find_held_lock+0x2c/0x110
[ 2293.614281]  ? io_submit_sqes+0x8610/0x8610
[ 2293.615313]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2293.616310]  ? wait_for_completion_io+0x270/0x270
[ 2293.617325]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2293.618277]  ? vfs_write+0x354/0xb10
[ 2293.619048]  ? fput_many+0x2f/0x1a0
[ 2293.619818]  ? ksys_write+0x1a9/0x260
[ 2293.620626]  ? __ia32_sys_read+0xb0/0xb0
[ 2293.621663]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.622949]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2293.624170]  do_syscall_64+0x33/0x40
[ 2293.625128]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2293.626220] RIP: 0033:0x7fd05c70ab19
[ 2293.627019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.631300] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2293.632895] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2293.634540] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2293.636252] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.637846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.639459] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2293.641172] CPU: 0 PID: 11775 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2293.642958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.644998] Call Trace:
[ 2293.645672]  dump_stack+0x107/0x167
[ 2293.646598]  should_fail.cold+0x5/0xa
[ 2293.647577]  _copy_from_user+0x2e/0x1b0
[ 2293.648588]  iovec_from_user+0x141/0x400
[ 2293.649618]  __import_iovec+0x67/0x590
[ 2293.650595]  ? kfree+0xd7/0x340
[ 2293.651421]  io_import_iovec+0x581/0x1120
[ 2293.652466]  ? io_put_sq_data+0x80/0x250
[ 2293.653496]  ? io_complete_rw+0x230/0x230
[ 2293.654540]  ? io_clean_op+0x30c/0x870
[ 2293.655530]  ? kiocb_done+0x16b/0xc90
[ 2293.656501]  io_read+0xe14/0x11e0
[ 2293.657380]  ? __is_insn_slot_addr+0x14c/0x290
[ 2293.658498]  ? kernel_text_address+0xf2/0x120
[ 2293.659627]  ? unwind_get_return_address+0x55/0xa0
[ 2293.660833]  ? create_prof_cpu_mask+0x20/0x20
[ 2293.661960]  ? kiocb_done+0xc90/0xc90
[ 2293.662897]  ? mark_lock+0xf5/0x2df0
[ 2293.663840]  ? lock_chain_count+0x20/0x20
[ 2293.664871]  ? __lock_acquire+0xbb1/0x5b00
[ 2293.665981]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.667287]  ? SOFTIRQ_verbose+0x10/0x10
[ 2293.668294]  ? kasan_save_stack+0x1b/0x40
[ 2293.669312]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2293.670580]  ? __io_queue_sqe+0x666/0x9d0
[ 2293.671607]  ? __lock_acquire+0xbb1/0x5b00
[ 2293.672661]  io_issue_sqe+0x2e8a/0x77b0
[ 2293.673674]  ? perf_trace_lock+0xac/0x490
[ 2293.674709]  ? SOFTIRQ_verbose+0x10/0x10
[ 2293.675724]  ? io_connect+0x610/0x610
[ 2293.676666]  ? lock_acquire+0x197/0x470
[ 2293.677651]  ? find_held_lock+0x2c/0x110
[ 2293.678699]  ? __fget_files+0x2cf/0x520
[ 2293.679722]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.680772]  __io_queue_sqe+0x90/0x9d0
[ 2293.681738]  ? io_issue_sqe+0x77b0/0x77b0
[ 2293.682772]  ? __fget_files+0x2f8/0x520
[ 2293.683807]  ? io_prep_rw+0x7f5/0x1050
[ 2293.684765]  io_submit_sqes+0x44aa/0x8610
[ 2293.685837]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.687082]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.688308]  ? find_held_lock+0x2c/0x110
[ 2293.689309]  ? io_submit_sqes+0x8610/0x8610
[ 2293.690365]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2293.691578]  ? wait_for_completion_io+0x270/0x270
[ 2293.692758]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2293.693894]  ? vfs_write+0x354/0xb10
[ 2293.694813]  ? fput_many+0x2f/0x1a0
[ 2293.695717]  ? ksys_write+0x1a9/0x260
[ 2293.696653]  ? __ia32_sys_read+0xb0/0xb0
[ 2293.697658]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.698935]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2293.700212]  do_syscall_64+0x33/0x40
[ 2293.701150]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2293.702384] RIP: 0033:0x7fbe4d75bb19
[ 2293.703305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.708023] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2293.709896] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2293.711646] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2293.713423] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.715183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.716935] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:07:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000010a7c0c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000104800c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:03 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)

05:07:03 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

05:07:03 executing program 7:
sendto$packet(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0, 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000d80), 0x80104, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x400, 0x2)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="200000080000fbdbdf25020000001c000180080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800030003000000"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x800)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
dup2(r2, r3)
r4 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r1, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000003c0)={'macsec0\x00'})
syz_io_uring_submit(r7, r6, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
syz_io_uring_submit(0x0, r6, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4)
r8 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x4, 0x240)
openat(r3, &(0x7f0000000400)='./file0/../file0\x00', 0x40203, 0x2a)
copy_file_range(r0, &(0x7f0000000080)=0x4, r8, &(0x7f0000000200)=0x7, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)

05:07:03 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100f00c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2310.736366] FAULT_INJECTION: forcing a failure.
[ 2310.736366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2310.738463] CPU: 1 PID: 11816 Comm: syz-executor.6 Not tainted 5.10.238 #1
05:07:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)

05:07:20 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

05:07:20 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

05:07:20 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

05:07:20 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x4)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x4000, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x63, 0x80, 0x5, 0x55, 0x0, 0x8, 0x10000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0xfffffffffffffff8, 0x1}, 0x4, 0x6, 0x10000, 0x5, 0x3, 0x20, 0xa4e, 0x0, 0x10a, 0x0, 0x3}, 0x0, 0xa, r0, 0x8)
syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000280), 0x0, 0x8080, 0x1}, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000340)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r0, 0x0, &(0x7f0000000280)='./file0\x00', 0x89, 0x2000, 0x12345}, 0x8001)
r4 = syz_io_uring_complete(r2)
clock_gettime(0x4cb2bebf400ec18d, &(0x7f0000000400))
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x2)
setsockopt$inet6_int(r5, 0x29, 0x7, &(0x7f0000000880), 0x4)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r5, 0x0, &(0x7f0000000440)="8ee2309c47995455ec7dced68eb160c46014b839663252e10fdc61f5e2e2fd88054934d706470c49e1ecb5911b279caf9597c38f7138e265a9c0895eb5c08249a2c2fffbb7cf7c5a067a39e016d7a7be11e2a0359da88dd80144d1175f50989065d52c715c0fec711859e0ef0d7a51407b3c7d181c7a613c92ee0fb23ccfcc9ad88560cba56f1d1efc1e673619d9a31f9815bd4010524cce05589faff0ede4bcae4f0a79b2c7bf7721c3abcb4c37089fe8606a8293f7106711070be0505b1fa4c390dd60589e10d91df26fd0e49770", 0xcf, 0x2001, 0x0, {0x0, r6}}, 0x2)
getdents(r4, &(0x7f00000001c0)=""/52, 0x34)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2)
creat(&(0x7f0000000100)='./file0\x00', 0x32)

05:07:20 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

05:07:20 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:07:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100020c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2310.739670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2310.741349] Call Trace:
[ 2310.741806]  dump_stack+0x107/0x167
[ 2310.742434]  should_fail.cold+0x5/0xa
[ 2310.743089]  _copy_to_iter+0x264/0x12d0
[ 2310.743790]  ? seq_read_iter+0xd4d/0x12b0
[ 2310.744515]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2310.745358]  ? __virt_addr_valid+0x170/0x5d0
[ 2310.746117]  ? __check_object_size+0x319/0x440
[ 2310.746903]  seq_read_iter+0xdcb/0x12b0
[ 2310.747613]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2310.748476]  proc_reg_read_iter+0x20a/0x2e0
[ 2310.749207]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2310.750083]  io_read+0x2dc/0x11e0
[ 2310.750695]  ? kiocb_done+0xc90/0xc90
[ 2310.751347]  ? mark_lock+0xf5/0x2df0
[ 2310.751988]  ? lock_chain_count+0x20/0x20
[ 2310.752723]  ? lock_acquire+0x197/0x470
[ 2310.753411]  ? __lock_acquire+0xbb1/0x5b00
[ 2310.754131]  io_issue_sqe+0x2e8a/0x77b0
[ 2310.754810]  ? perf_trace_lock+0xac/0x490
[ 2310.755518]  ? SOFTIRQ_verbose+0x10/0x10
[ 2310.756209]  ? lock_chain_count+0x20/0x20
[ 2310.756934]  ? io_connect+0x610/0x610
[ 2310.757595]  ? lock_acquire+0x197/0x470
[ 2310.758268]  ? find_held_lock+0x2c/0x110
[ 2310.758961]  ? __fget_files+0x2cf/0x520
[ 2310.759658]  ? lock_downgrade+0x6d0/0x6d0
[ 2310.760369]  __io_queue_sqe+0x90/0x9d0
[ 2310.761042]  ? io_issue_sqe+0x77b0/0x77b0
[ 2310.761734]  ? __fget_files+0x2f8/0x520
[ 2310.762417]  ? io_prep_rw+0x7f5/0x1050
[ 2310.763087]  io_submit_sqes+0x44aa/0x8610
[ 2310.763837]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2310.764700]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2310.765523]  ? find_held_lock+0x2c/0x110
[ 2310.766220]  ? io_submit_sqes+0x8610/0x8610
[ 2310.766954]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2310.767787]  ? wait_for_completion_io+0x270/0x270
[ 2310.768621]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2310.769411]  ? vfs_write+0x354/0xb10
[ 2310.770048]  ? fput_many+0x2f/0x1a0
[ 2310.770684]  ? ksys_write+0x1a9/0x260
[ 2310.771336]  ? __ia32_sys_read+0xb0/0xb0
[ 2310.772020]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2310.772929]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2310.773827]  do_syscall_64+0x33/0x40
[ 2310.774456]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2310.775323] RIP: 0033:0x7fd05c70ab19
[ 2310.775976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2310.779034] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2310.780294] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2310.781463] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2310.782634] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2310.783832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2310.785012] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:07:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100030c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2310.799602] FAULT_INJECTION: forcing a failure.
[ 2310.799602] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2310.801306] CPU: 1 PID: 11815 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2310.802238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2310.803396] Call Trace:
[ 2310.803760]  dump_stack+0x107/0x167
[ 2310.804272]  should_fail.cold+0x5/0xa
[ 2310.804807]  _copy_to_iter+0x264/0x12d0
[ 2310.805375]  ? seq_read_iter+0xd4d/0x12b0
[ 2310.805953]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2310.806640]  ? __virt_addr_valid+0x170/0x5d0
[ 2310.807257]  ? __check_object_size+0x319/0x440
[ 2310.807919]  seq_read_iter+0xdcb/0x12b0
[ 2310.808508]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2310.809201]  proc_reg_read_iter+0x20a/0x2e0
[ 2310.809825]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2310.810565]  io_read+0x2dc/0x11e0
[ 2310.811068]  ? __is_insn_slot_addr+0x14c/0x290
[ 2310.811694]  ? kernel_text_address+0xf2/0x120
[ 2310.812347]  ? unwind_get_return_address+0x55/0xa0
[ 2310.813059]  ? create_prof_cpu_mask+0x20/0x20
[ 2310.813705]  ? kiocb_done+0xc90/0xc90
[ 2310.814257]  ? mark_lock+0xf5/0x2df0
[ 2310.814803]  ? lock_chain_count+0x20/0x20
[ 2310.815402]  ? __lock_acquire+0xbb1/0x5b00
[ 2310.816026]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2310.816776]  ? SOFTIRQ_verbose+0x10/0x10
[ 2310.817357]  ? kasan_save_stack+0x1b/0x40
[ 2310.817951]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2310.818678]  ? __io_queue_sqe+0x666/0x9d0
[ 2310.819289]  ? __lock_acquire+0xbb1/0x5b00
[ 2310.819875]  io_issue_sqe+0x2e8a/0x77b0
[ 2310.820459]  ? perf_trace_lock+0xac/0x490
[ 2310.821061]  ? SOFTIRQ_verbose+0x10/0x10
[ 2310.821645]  ? io_connect+0x610/0x610
[ 2310.822200]  ? lock_acquire+0x197/0x470
[ 2310.822765]  ? find_held_lock+0x2c/0x110
[ 2310.823356]  ? __fget_files+0x2cf/0x520
[ 2310.823897]  ? lock_downgrade+0x6d0/0x6d0
[ 2310.824504]  __io_queue_sqe+0x90/0x9d0
[ 2310.825035]  ? io_issue_sqe+0x77b0/0x77b0
[ 2310.825635]  ? __fget_files+0x2f8/0x520
[ 2310.826176]  ? io_prep_rw+0x7f5/0x1050
[ 2310.826740]  io_submit_sqes+0x44aa/0x8610
[ 2310.827336]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2310.828058]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2310.828711]  ? find_held_lock+0x2c/0x110
[ 2310.829300]  ? io_submit_sqes+0x8610/0x8610
[ 2310.829888]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2310.830581]  ? wait_for_completion_io+0x270/0x270
[ 2310.831235]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2310.831921]  ? vfs_write+0x354/0xb10
[ 2310.832426]  ? fput_many+0x2f/0x1a0
[ 2310.832953]  ? ksys_write+0x1a9/0x260
[ 2310.833471]  ? __ia32_sys_read+0xb0/0xb0
[ 2310.834061]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2310.834772]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2310.835525]  do_syscall_64+0x33/0x40
[ 2310.836062]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2310.836800] RIP: 0033:0x7fbe4d75bb19
[ 2310.837339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2310.839989] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2310.841096] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2310.842138] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2310.843156] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2310.844182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2310.845217] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:07:20 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

05:07:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

05:07:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100040c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100050c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0)
syz_io_uring_setup(0x6556, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000)=<r0=>0x0, &(0x7f0000000340))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r2 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="02000021e8155b226571b244a7000000000000000000000000000001000000000000"])
pread64(r5, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000940)={{r5}, "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"})
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r1, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000)
syz_io_uring_submit(r6, r4, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd_index=0x4, 0x3ff, 0x0, 0x0, 0x11, 0x1, {0x1, r8}}, 0xff)
syz_io_uring_submit(r0, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r7, 0x0, &(0x7f0000000080)="fbfa586e37d4be1b7909292dd6dd725135fccfd0c8e522f4c728cd38afe2b0142e279d477509316bd15fc1edbf05d6b91ab19e44d340d0dc1b1ca50b1deaaa948c4faa8947a974334074808b58d49734725b3ce02a5254809f261e951a0d69719b0ec5dc14fd408e032a3b8a8fa9c697d7b2d91e50ad5121f92670c1c5c8c38150063127fac6a79970e23d5ceb1a280b61ebef3366e86a3a588b0a66590fc9f7b0604b071e52384c648d8c2bff6eb0dc13c7b7950529b757ac909644116044b1c87f081a25974c52a551bff5f5299514f2e7dd182aac2cd5ee425dd8da9cd2dc6db4da7ec0471aca8a714af9b5", 0xed, 0x0, 0x0, {0x0, r8}}, 0xff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="747208584f94a13446f940646e6f3d", @ANYRESHEX=r9, @ANYBLOB=',wfdno=', @ANYRESHEX=r10, @ANYBLOB=',dfltuid=', @ANYRESHEX=0x0, @ANYBLOB=',appraise,\x00'])

05:07:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)

05:07:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100060c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:21 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4300, 0x0, 0x0, 0x0)

05:07:36 executing program 5:
syz_io_uring_setup(0x1c28, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000fec000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r2 = syz_io_uring_setup(0x1f8, &(0x7f0000000680)={0x0, 0x0, 0x8}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
syz_io_uring_setup(0x373b, &(0x7f0000000080)={0x0, 0x67c6, 0x2a, 0x3, 0xe5, 0x0, r2}, &(0x7f0000ff1000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000180)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, r5, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x3, &(0x7f00000001c0)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r6}}, 0xfffffff9)
ftruncate(r4, 0x1)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:07:36 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100070c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)

05:07:36 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43, 0x0, 0x0, 0x0)

05:07:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4800, 0x0, 0x0, 0x0)

05:07:36 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

[ 2326.250529] FAULT_INJECTION: forcing a failure.
[ 2326.250529] name failslab, interval 1, probability 0, space 0, times 0
[ 2326.251872] CPU: 1 PID: 11865 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2326.252668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2326.253614] Call Trace:
05:07:36 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF2(r1, 0x4b48, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "fc7716a87dcc2f2711c68a536fb323f38d0401"})
dup3(r0, r0, 0x0)

[ 2326.253924]  dump_stack+0x107/0x167
[ 2326.254503]  should_fail.cold+0x5/0xa
[ 2326.254974]  ? io_setup_async_rw+0x180/0x580
[ 2326.255487]  should_failslab+0x5/0x20
[ 2326.255934]  __kmalloc+0x72/0x390
[ 2326.256347]  io_setup_async_rw+0x180/0x580
[ 2326.256830]  ? iov_iter_restore+0x195/0x3a0
[ 2326.257338]  io_read+0x775/0x11e0
[ 2326.257738]  ? __is_insn_slot_addr+0x14c/0x290
[ 2326.258281]  ? kernel_text_address+0xf2/0x120
[ 2326.258795]  ? unwind_get_return_address+0x55/0xa0
[ 2326.259360]  ? create_prof_cpu_mask+0x20/0x20
[ 2326.259879]  ? kiocb_done+0xc90/0xc90
[ 2326.260327]  ? mark_lock+0xf5/0x2df0
[ 2326.260756]  ? lock_chain_count+0x20/0x20
[ 2326.261237]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.261739]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2326.262349]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.262805]  ? kasan_save_stack+0x1b/0x40
[ 2326.263284]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2326.263876]  ? __io_queue_sqe+0x666/0x9d0
[ 2326.264359]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.264840]  io_issue_sqe+0x2e8a/0x77b0
[ 2326.265308]  ? perf_trace_lock+0xac/0x490
[ 2326.265790]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.266268]  ? io_connect+0x610/0x610
[ 2326.266714]  ? lock_acquire+0x197/0x470
[ 2326.267169]  ? find_held_lock+0x2c/0x110
[ 2326.267651]  ? __fget_files+0x2cf/0x520
[ 2326.268110]  ? lock_downgrade+0x6d0/0x6d0
[ 2326.268587]  __io_queue_sqe+0x90/0x9d0
[ 2326.269055]  ? io_issue_sqe+0x77b0/0x77b0
[ 2326.269531]  ? __fget_files+0x2f8/0x520
[ 2326.269985]  ? io_prep_rw+0x7f5/0x1050
[ 2326.270448]  io_submit_sqes+0x44aa/0x8610
[ 2326.270945]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.271521]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.272081]  ? find_held_lock+0x2c/0x110
[ 2326.272549]  ? io_submit_sqes+0x8610/0x8610
[ 2326.273057]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2326.273613]  ? wait_for_completion_io+0x270/0x270
[ 2326.274178]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2326.274711]  ? vfs_write+0x354/0xb10
[ 2326.275141]  ? fput_many+0x2f/0x1a0
[ 2326.275565]  ? ksys_write+0x1a9/0x260
[ 2326.276001]  ? __ia32_sys_read+0xb0/0xb0
[ 2326.276473]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2326.277075]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2326.277664]  do_syscall_64+0x33/0x40
[ 2326.278094]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2326.278675] RIP: 0033:0x7fbe4d75bb19
[ 2326.279102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2326.281212] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2326.282087] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2326.282893] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2326.283719] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2326.284536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2326.285344] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
[ 2326.288225] FAULT_INJECTION: forcing a failure.
[ 2326.288225] name failslab, interval 1, probability 0, space 0, times 0
[ 2326.289606] CPU: 1 PID: 11860 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2326.290420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2326.291367] Call Trace:
[ 2326.291677]  dump_stack+0x107/0x167
[ 2326.292100]  should_fail.cold+0x5/0xa
[ 2326.292531]  ? create_object.isra.0+0x3a/0xa20
[ 2326.293051]  should_failslab+0x5/0x20
[ 2326.293483]  kmem_cache_alloc+0x5b/0x310
[ 2326.293945]  create_object.isra.0+0x3a/0xa20
[ 2326.294449]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2326.295028]  __kmalloc+0x16e/0x390
[ 2326.295446]  io_setup_async_rw+0x180/0x580
[ 2326.295932]  ? iov_iter_restore+0x195/0x3a0
[ 2326.296430]  io_read+0x775/0x11e0
[ 2326.296832]  ? kiocb_done+0xc90/0xc90
[ 2326.297265]  ? mark_lock+0xf5/0x2df0
[ 2326.297692]  ? lock_chain_count+0x20/0x20
[ 2326.298187]  ? lock_acquire+0x197/0x470
[ 2326.298646]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.299138]  io_issue_sqe+0x2e8a/0x77b0
[ 2326.299605]  ? perf_trace_lock+0xac/0x490
[ 2326.300079]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.300532]  ? lock_chain_count+0x20/0x20
[ 2326.301003]  ? io_connect+0x610/0x610
[ 2326.301445]  ? lock_acquire+0x197/0x470
[ 2326.301891]  ? find_held_lock+0x2c/0x110
[ 2326.302366]  ? __fget_files+0x2cf/0x520
[ 2326.302811]  ? lock_downgrade+0x6d0/0x6d0
[ 2326.303289]  __io_queue_sqe+0x90/0x9d0
[ 2326.303741]  ? io_issue_sqe+0x77b0/0x77b0
[ 2326.304217]  ? __fget_files+0x2f8/0x520
[ 2326.304667]  ? io_prep_rw+0x7f5/0x1050
[ 2326.305114]  io_submit_sqes+0x44aa/0x8610
[ 2326.305600]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.306180]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.306724]  ? find_held_lock+0x2c/0x110
[ 2326.307195]  ? io_submit_sqes+0x8610/0x8610
[ 2326.307696]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2326.308253]  ? wait_for_completion_io+0x270/0x270
[ 2326.308796]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2326.309321]  ? vfs_write+0x354/0xb10
[ 2326.309744]  ? fput_many+0x2f/0x1a0
[ 2326.310170]  ? ksys_write+0x1a9/0x260
[ 2326.310600]  ? __ia32_sys_read+0xb0/0xb0
[ 2326.311070]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2326.311670]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2326.312265]  do_syscall_64+0x33/0x40
05:07:36 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0xb)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}}, 0x1c)

[ 2326.312685]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2326.313426] RIP: 0033:0x7fd05c70ab19
[ 2326.313844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2326.315920] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2326.316780] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2326.317583] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2326.318386] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2326.319186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2326.319992] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:07:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b00, 0x0, 0x0, 0x0)

05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100080c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa000000, 0x0, 0x0, 0x0)

05:07:36 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff)
move_mount(r0, &(0x7f0000000300)='./file0\x00', 0xffffffffffffffff, 0x0, 0x40)
r2 = perf_event_open(&(0x7f0000000100)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
r4 = dup2(r3, r2)
r5 = accept4$unix(r4, &(0x7f0000000900), 0x0, 0x81800)
ioctl$EXT4_IOC_SWAP_BOOT(r5, 0x6611)
tgkill(0x0, 0x0, 0x0)
r6 = fcntl$dupfd(r3, 0x406, r1)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r7, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$PERF_EVENT_IOC_PERIOD(r7, 0x40082404, &(0x7f0000000040)=0x7f)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0xe2, 0x0, 0x0, 0x0, 0x10060, 0xf, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0}, 0x0, 0x3f, 0x1, 0x1, 0xca6e, 0x40, 0xa8c1, 0x0, 0x4, 0x0, 0xffffffffffffffff}, 0x0, 0xa, r6, 0x0)
timerfd_create(0x1, 0x80000)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
clone3(&(0x7f0000000380)={0x82140080, &(0x7f0000000180), &(0x7f0000000200), 0x0, {0x2c}, 0x0, 0x0, &(0x7f0000000300), &(0x7f0000000340)=[0x0, 0x0], 0x2, {r4}}, 0x58)

05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100180c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c00, 0x0, 0x0, 0x0)

05:07:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6500, 0x0, 0x0, 0x0)

05:07:36 executing program 5:
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffff8)
r0 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000380)={'fscrypt:', @desc4}, &(0x7f00000003c0)={0x0, "06e2e00e8ca9f8e8332c1f7012d3dfab2d00503a35304e7abff4555d3823062d0b2c7dc2211bef960e0e74b4c8416d3d9ef7d4db14ea8190ecc58e9010ba5a6f"}, 0x48, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x11, r0, 0xfffffffffffffffa, 0x0, 0x0)
r1 = request_key(&(0x7f0000000000)='big_key\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='syz', r0)
pkey_mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff)
request_key(&(0x7f0000000140)='blacklist\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='^/\'#\x00', r1)
request_key(&(0x7f0000000040)='encrypted\x00', &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0)

05:07:36 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000001001c0c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)

[ 2326.662272] FAULT_INJECTION: forcing a failure.
[ 2326.662272] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2326.663680] CPU: 1 PID: 11906 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2326.664461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2326.665396] Call Trace:
[ 2326.665701]  dump_stack+0x107/0x167
[ 2326.666123]  should_fail.cold+0x5/0xa
[ 2326.666561]  _copy_to_iter+0x264/0x12d0
[ 2326.667021]  ? seq_read_iter+0xd4d/0x12b0
[ 2326.667489]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2326.668052]  ? __virt_addr_valid+0x170/0x5d0
[ 2326.668559]  ? __check_object_size+0x319/0x440
[ 2326.669080]  seq_read_iter+0xdcb/0x12b0
[ 2326.669549]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2326.670137]  proc_reg_read_iter+0x20a/0x2e0
[ 2326.670630]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2326.671218]  io_read+0x2dc/0x11e0
[ 2326.671622]  ? __is_insn_slot_addr+0x14c/0x290
[ 2326.672141]  ? kiocb_done+0xc90/0xc90
[ 2326.672572]  ? mark_lock+0xf5/0x2df0
[ 2326.672991]  ? register_lock_class+0xbb/0x17b0
[ 2326.673507]  ? arch_stack_walk+0x99/0xf0
[ 2326.673968]  ? lock_chain_count+0x20/0x20
[ 2326.674439]  ? is_dynamic_key+0x1e0/0x1e0
[ 2326.674919]  ? __lock_acquire+0x1657/0x5b00
[ 2326.675416]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.675901]  io_issue_sqe+0x2e8a/0x77b0
[ 2326.676356]  ? perf_trace_lock+0xac/0x490
[ 2326.676824]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.677285]  ? lock_chain_count+0x20/0x20
[ 2326.677756]  ? io_connect+0x610/0x610
[ 2326.678190]  ? lock_acquire+0x197/0x470
[ 2326.678637]  ? find_held_lock+0x2c/0x110
[ 2326.679100]  ? __fget_files+0x2cf/0x520
[ 2326.679557]  ? lock_downgrade+0x6d0/0x6d0
[ 2326.680032]  __io_queue_sqe+0x90/0x9d0
[ 2326.680477]  ? io_issue_sqe+0x77b0/0x77b0
[ 2326.680950]  ? __fget_files+0x2f8/0x520
[ 2326.681406]  ? io_prep_rw+0x7f5/0x1050
[ 2326.681849]  io_submit_sqes+0x44aa/0x8610
[ 2326.682340]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.682903]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.683448]  ? find_held_lock+0x2c/0x110
[ 2326.683919]  ? io_submit_sqes+0x8610/0x8610
[ 2326.684414]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2326.684963]  ? wait_for_completion_io+0x270/0x270
[ 2326.685508]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2326.686033]  ? vfs_write+0x354/0xb10
[ 2326.686456]  ? fput_many+0x2f/0x1a0
[ 2326.686871]  ? ksys_write+0x1a9/0x260
[ 2326.687302]  ? __ia32_sys_read+0xb0/0xb0
[ 2326.687777]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2326.688372]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2326.688963]  do_syscall_64+0x33/0x40
[ 2326.689396]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2326.689982] RIP: 0033:0x7fd05c70ab19
[ 2326.690406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2326.692489] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2326.693355] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2326.694168] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2326.694981] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2326.695792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2326.696608] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:07:36 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x59e2399e58911086}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@getspdinfo={0x14, 0x25, 0x100, 0x70bd26, 0x25dfdbfe, 0x8, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8003}, 0x8000000)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=@getsadinfo={0x14, 0x23, 0x1}, 0x14}}, 0x0)
r1 = fork()
ptrace(0x10, r1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x9, 0x8, 0x3f, 0xf1, 0x0, 0x6, 0x0, 0xd, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x53342a59, 0x1, @perf_config_ext={0x400, 0x3}, 0x10000, 0x764b, 0x81, 0x3, 0x3, 0x1, 0xfffa, 0x0, 0x3, 0x0, 0x1}, r1, 0x6, 0xffffffffffffffff, 0x1)

05:07:36 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

05:07:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6800, 0x0, 0x0, 0x0)

05:07:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)

05:07:36 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48, 0x0, 0x0, 0x0)

05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100650c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2326.936676] FAULT_INJECTION: forcing a failure.
[ 2326.936676] name failslab, interval 1, probability 0, space 0, times 0
[ 2326.938010] CPU: 1 PID: 11925 Comm: syz-executor.4 Not tainted 5.10.238 #1
05:07:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c020000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2326.938793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2326.939943] Call Trace:
[ 2326.940247]  dump_stack+0x107/0x167
[ 2326.940658]  should_fail.cold+0x5/0xa
[ 2326.941089]  ? create_object.isra.0+0x3a/0xa20
[ 2326.941613]  should_failslab+0x5/0x20
[ 2326.942046]  kmem_cache_alloc+0x5b/0x310
[ 2326.942513]  create_object.isra.0+0x3a/0xa20
[ 2326.943004]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2326.943581]  __kmalloc+0x16e/0x390
[ 2326.943988]  io_setup_async_rw+0x180/0x580
[ 2326.944462]  ? iov_iter_restore+0x195/0x3a0
[ 2326.944949]  io_read+0x775/0x11e0
[ 2326.945345]  ? __is_insn_slot_addr+0x14c/0x290
[ 2326.945865]  ? kernel_text_address+0xf2/0x120
[ 2326.946375]  ? unwind_get_return_address+0x55/0xa0
[ 2326.946932]  ? create_prof_cpu_mask+0x20/0x20
[ 2326.947441]  ? kiocb_done+0xc90/0xc90
[ 2326.947882]  ? mark_lock+0xf5/0x2df0
[ 2326.948312]  ? lock_chain_count+0x20/0x20
[ 2326.948779]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.949270]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2326.949869]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.950324]  ? kasan_save_stack+0x1b/0x40
[ 2326.950796]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2326.951365]  ? __io_queue_sqe+0x666/0x9d0
[ 2326.951843]  ? __lock_acquire+0xbb1/0x5b00
[ 2326.952325]  io_issue_sqe+0x2e8a/0x77b0
[ 2326.952782]  ? perf_trace_lock+0xac/0x490
[ 2326.953251]  ? SOFTIRQ_verbose+0x10/0x10
[ 2326.953716]  ? io_connect+0x610/0x610
[ 2326.954148]  ? lock_acquire+0x197/0x470
[ 2326.954593]  ? find_held_lock+0x2c/0x110
[ 2326.955054]  ? __fget_files+0x2cf/0x520
[ 2326.955508]  ? lock_downgrade+0x6d0/0x6d0
[ 2326.955988]  __io_queue_sqe+0x90/0x9d0
[ 2326.956439]  ? io_issue_sqe+0x77b0/0x77b0
[ 2326.956901]  ? __fget_files+0x2f8/0x520
[ 2326.957356]  ? io_prep_rw+0x7f5/0x1050
[ 2326.957800]  io_submit_sqes+0x44aa/0x8610
[ 2326.958292]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.958853]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2326.959404]  ? find_held_lock+0x2c/0x110
[ 2326.959880]  ? io_submit_sqes+0x8610/0x8610
[ 2326.960378]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2326.960921]  ? wait_for_completion_io+0x270/0x270
[ 2326.961470]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2326.961993]  ? vfs_write+0x354/0xb10
[ 2326.962416]  ? fput_many+0x2f/0x1a0
[ 2326.962831]  ? ksys_write+0x1a9/0x260
[ 2326.963265]  ? __ia32_sys_read+0xb0/0xb0
[ 2326.963732]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2326.964331]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2326.964917]  do_syscall_64+0x33/0x40
[ 2326.965342]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2326.965924] RIP: 0033:0x7fbe4d75bb19
[ 2326.966347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2326.968412] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2326.969276] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2326.970079] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2326.970883] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2326.971694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2326.972500] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:07:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)

05:07:53 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)

05:07:53 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b, 0x0, 0x0, 0x0)

05:07:53 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

05:07:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c00, 0x0, 0x0, 0x0)

05:07:53 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89)
r1 = openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x5a7083, 0x20)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x20, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
write$binfmt_elf64(r3, &(0x7f0000000280)=ANY=[], 0xfdef)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='net/protocols\x00')
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x3fd, 0x9, 0x7})
setsockopt$packet_int(r4, 0x107, 0xc, &(0x7f0000000080), 0x4)
r6 = syz_io_uring_complete(r2)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r6, {0x4}}, './file1\x00'})
socket$inet_icmp(0x2, 0x2, 0x1)
recvmmsg$unix(r5, &(0x7f00000016c0)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000180)}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f0000000200)=""/37, 0x25}, {&(0x7f00000002c0)=""/153, 0x99}, {&(0x7f0000000380)=""/185, 0xb9}, {&(0x7f0000000440)=""/223, 0xdf}, {&(0x7f0000000540)=""/133, 0x85}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/91, 0x5b}], 0x9, &(0x7f0000001680)=[@cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}], 0x20}}], 0x1, 0xc0, &(0x7f0000001840)={0x0, 0x989680})
r8 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x8, 0x1}, 0x0, 0x0, 0x4, 0x5, 0x0, 0x0, 0x2}, r7, 0xffdffffdffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x3, 0x1, 0x20, &(0x7f0000000140)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
dup3(r1, r9, 0x80000)
perf_event_open(&(0x7f0000001700)={0x3, 0x80, 0x6, 0x6, 0x20, 0x6, 0x0, 0x1ff, 0x80100, 0x1c, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0xb2, 0x742}, 0x10c00, 0xffffffffffffff74, 0x3ff, 0x3, 0xb39e, 0x2, 0x1, 0x0, 0xe5a3, 0x0, 0x2}, 0x0, 0x3, r8, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

05:07:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c030000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)

[ 2343.353532] FAULT_INJECTION: forcing a failure.
[ 2343.353532] name failslab, interval 1, probability 0, space 0, times 0
[ 2343.356301] CPU: 1 PID: 11947 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2343.357878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2343.359775] Call Trace:
[ 2343.360390]  dump_stack+0x107/0x167
[ 2343.361227]  should_fail.cold+0x5/0xa
[ 2343.362104]  ? create_object.isra.0+0x3a/0xa20
[ 2343.363141]  should_failslab+0x5/0x20
[ 2343.364009]  kmem_cache_alloc+0x5b/0x310
[ 2343.364940]  create_object.isra.0+0x3a/0xa20
[ 2343.365940]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2343.367105]  kmem_cache_alloc_trace+0x151/0x320
[ 2343.368183]  ? lock_downgrade+0x6d0/0x6d0
[ 2343.369129]  __io_queue_sqe+0x666/0x9d0
[ 2343.370041]  ? io_issue_sqe+0x77b0/0x77b0
[ 2343.370959]  ? __fget_files+0x2f8/0x520
[ 2343.371880]  ? io_prep_rw+0x7f5/0x1050
[ 2343.372768]  io_submit_sqes+0x44aa/0x8610
[ 2343.373757]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2343.374871]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2343.375971]  ? find_held_lock+0x2c/0x110
[ 2343.376901]  ? io_submit_sqes+0x8610/0x8610
[ 2343.377872]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2343.378960]  ? wait_for_completion_io+0x270/0x270
[ 2343.380069]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2343.381124]  ? vfs_write+0x354/0xb10
[ 2343.381974]  ? fput_many+0x2f/0x1a0
[ 2343.382794]  ? ksys_write+0x1a9/0x260
[ 2343.383657]  ? __ia32_sys_read+0xb0/0xb0
[ 2343.384603]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2343.385780]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2343.386951]  do_syscall_64+0x33/0x40
[ 2343.387799]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2343.388959] RIP: 0033:0x7fd05c70ab19
[ 2343.389795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2343.393971] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2343.395678] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2343.397305] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2343.398924] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2343.400546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2343.402164] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:07:53 executing program 7:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48, 0x0, 0x0, 0x0)

[ 2343.426262] FAULT_INJECTION: forcing a failure.
[ 2343.426262] name failslab, interval 1, probability 0, space 0, times 0
[ 2343.428867] CPU: 1 PID: 11956 Comm: syz-executor.4 Not tainted 5.10.238 #1
05:07:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7400, 0x0, 0x0, 0x0)

[ 2343.430534] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2343.432450] Call Trace:
[ 2343.433053]  dump_stack+0x107/0x167
[ 2343.433879]  should_fail.cold+0x5/0xa
[ 2343.434742]  ? __io_queue_sqe+0x666/0x9d0
[ 2343.435677]  should_failslab+0x5/0x20
[ 2343.436546]  kmem_cache_alloc_trace+0x55/0x320
[ 2343.437585]  ? lock_downgrade+0x6d0/0x6d0
[ 2343.438526]  __io_queue_sqe+0x666/0x9d0
[ 2343.439439]  ? io_issue_sqe+0x77b0/0x77b0
[ 2343.440378]  ? __fget_files+0x2f8/0x520
[ 2343.441291]  ? io_prep_rw+0x7f5/0x1050
[ 2343.442182]  io_submit_sqes+0x44aa/0x8610
[ 2343.443162]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2343.444355]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2343.445455]  ? find_held_lock+0x2c/0x110
[ 2343.446398]  ? io_submit_sqes+0x8610/0x8610
[ 2343.447386]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2343.448490]  ? wait_for_completion_io+0x270/0x270
05:07:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

05:07:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c040000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2343.449587]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2343.450830]  ? vfs_write+0x354/0xb10
[ 2343.451681]  ? fput_many+0x2f/0x1a0
[ 2343.452517]  ? ksys_write+0x1a9/0x260
[ 2343.453377]  ? __ia32_sys_read+0xb0/0xb0
[ 2343.454303]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2343.455487]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2343.456654]  do_syscall_64+0x33/0x40
[ 2343.457495]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2343.458654] RIP: 0033:0x7fbe4d75bb19
[ 2343.459497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2343.463648] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2343.465434] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2343.467092] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2343.468742] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2343.470387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2343.472045] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:07:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c050000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a00, 0x0, 0x0, 0x0)

05:07:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24000000, 0x0, 0x0, 0x0)

05:07:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c060000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:07:53 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x80000, 0x4)
close(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
write(r1, &(0x7f0000000240)="01", 0x1)
close(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x0)
write$binfmt_elf32(r2, &(0x7f0000000000)=ANY=[@ANYRESDEC], 0x58)
close(r2)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x1ff)
execveat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0, 0x0, 0x0)

05:08:08 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)

05:08:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c070000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:08 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a000000, 0x0, 0x0, 0x0)

05:08:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xeffd, 0x0, 0x0, 0x0)

05:08:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

05:08:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c, 0x0, 0x0, 0x0)

05:08:08 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x8, 0x0)
fcntl$setlease(r2, 0x400, 0x2)
setsockopt$inet6_mreq(r1, 0x29, 0x8, &(0x7f0000000080)={@empty}, 0x14)

05:08:08 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x662}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000340)='\x00', 0x6)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = dup(r2)
ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f0000000100)=0x5)
preadv(r2, &(0x7f0000001740)=[{&(0x7f0000000380)=""/197, 0xc5}, {&(0x7f0000000480)=""/246, 0xf6}, {&(0x7f0000000580)=""/172, 0xac}, {&(0x7f0000000180)=""/72, 0x48}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/202, 0xca}], 0x6, 0x8001, 0xfffffff8)
memfd_create(&(0x7f0000000140)='(%(!+-#&\\\x00', 0x3)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc)
ioctl$CDROM_LAST_WRITTEN(r3, 0x5395, &(0x7f0000000240))
signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x1]}, 0x8)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000c4e000/0x1000)=nil, 0x1000, 0x1000000, 0x10, 0xffffffffffffffff, 0x0)
ioctl$DVD_AUTH(r4, 0x5390, &(0x7f0000000000)=@lsa={0x0, 0x3})
ioctl$CDROM_LAST_WRITTEN(r4, 0x5395, &(0x7f00000000c0))
kcmp(0x0, 0x0, 0x1, r4, r4)
r5 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x48042)
ioctl$LOOP_SET_FD(r5, 0x4c00, r4)
ioctl$CDROMPLAYBLK(r4, 0x5317, &(0x7f0000000200)={0x10001, 0x2})
mmap(&(0x7f00003c6000/0x1000)=nil, 0x1000, 0x2000008, 0x1d012, r0, 0x0)
finit_module(r1, 0x0, 0x0)

[ 2358.907281] FAULT_INJECTION: forcing a failure.
[ 2358.907281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2358.911032] CPU: 1 PID: 12009 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2358.913339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2358.915701] Call Trace:
[ 2358.916652]  dump_stack+0x107/0x167
[ 2358.917862]  should_fail.cold+0x5/0xa
[ 2358.919089]  _copy_from_user+0x2e/0x1b0
[ 2358.920374]  iovec_from_user+0x141/0x400
[ 2358.921729]  __import_iovec+0x67/0x590
[ 2358.923009]  ? kfree+0xd7/0x340
[ 2358.924090]  io_import_iovec+0x581/0x1120
[ 2358.925434]  ? io_put_sq_data+0x80/0x250
[ 2358.926737]  ? io_complete_rw+0x230/0x230
[ 2358.928098]  ? io_clean_op+0x30c/0x870
[ 2358.929319]  ? kiocb_done+0x16b/0xc90
[ 2358.930594]  io_read+0xe14/0x11e0
[ 2358.931761]  ? __is_insn_slot_addr+0x14c/0x290
[ 2358.933310]  ? kernel_text_address+0xf2/0x120
[ 2358.934776]  ? unwind_get_return_address+0x55/0xa0
[ 2358.936335]  ? create_prof_cpu_mask+0x20/0x20
[ 2358.937810]  ? kiocb_done+0xc90/0xc90
[ 2358.939136]  ? mark_lock+0xf5/0x2df0
[ 2358.940401]  ? lock_chain_count+0x20/0x20
[ 2358.941842]  ? __lock_acquire+0xbb1/0x5b00
[ 2358.943174]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2358.944940]  ? SOFTIRQ_verbose+0x10/0x10
[ 2358.946294]  ? kasan_save_stack+0x1b/0x40
[ 2358.947670]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2358.949385]  ? __io_queue_sqe+0x666/0x9d0
[ 2358.950804]  ? __lock_acquire+0xbb1/0x5b00
[ 2358.952283]  io_issue_sqe+0x2e8a/0x77b0
[ 2358.953694]  ? perf_trace_lock+0xac/0x490
[ 2358.955008]  ? SOFTIRQ_verbose+0x10/0x10
[ 2358.956315]  ? io_connect+0x610/0x610
[ 2358.957576]  ? lock_acquire+0x197/0x470
[ 2358.958817]  ? find_held_lock+0x2c/0x110
[ 2358.960177]  ? __fget_files+0x2cf/0x520
[ 2358.961448]  ? lock_downgrade+0x6d0/0x6d0
[ 2358.962755]  __io_queue_sqe+0x90/0x9d0
[ 2358.964093]  ? io_issue_sqe+0x77b0/0x77b0
[ 2358.965369]  ? __fget_files+0x2f8/0x520
[ 2358.966672]  ? io_prep_rw+0x7f5/0x1050
[ 2358.968017]  io_submit_sqes+0x44aa/0x8610
[ 2358.969310]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2358.970681]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2358.972053]  ? find_held_lock+0x2c/0x110
[ 2358.973212]  ? io_submit_sqes+0x8610/0x8610
[ 2358.974400]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2358.975742]  ? wait_for_completion_io+0x270/0x270
[ 2358.977098]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2358.978658]  ? vfs_write+0x354/0xb10
[ 2358.979884]  ? fput_many+0x2f/0x1a0
[ 2358.981001]  ? ksys_write+0x1a9/0x260
[ 2358.982205]  ? __ia32_sys_read+0xb0/0xb0
[ 2358.983360]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2358.985031]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2358.986524]  do_syscall_64+0x33/0x40
[ 2358.987447]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2358.988829] RIP: 0033:0x7fd05c70ab19
[ 2358.989921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2358.994768] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2358.996898] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2358.998814] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2359.000757] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2359.002694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2359.004665] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2359.021286] FAULT_INJECTION: forcing a failure.
[ 2359.021286] name failslab, interval 1, probability 0, space 0, times 0
[ 2359.024213] CPU: 0 PID: 12000 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 2359.025913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2359.028143] Call Trace:
[ 2359.028794]  dump_stack+0x107/0x167
[ 2359.029701]  should_fail.cold+0x5/0xa
[ 2359.030670]  ? create_object.isra.0+0x3a/0xa20
[ 2359.032035]  should_failslab+0x5/0x20
[ 2359.032970]  kmem_cache_alloc+0x5b/0x310
[ 2359.033979]  create_object.isra.0+0x3a/0xa20
[ 2359.035054]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2359.036438]  kmem_cache_alloc_trace+0x151/0x320
[ 2359.037668]  ? lock_downgrade+0x6d0/0x6d0
[ 2359.038698]  __io_queue_sqe+0x666/0x9d0
[ 2359.039693]  ? io_issue_sqe+0x77b0/0x77b0
[ 2359.040715]  ? __fget_files+0x2f8/0x520
[ 2359.041696]  ? io_prep_rw+0x7f5/0x1050
[ 2359.042668]  io_submit_sqes+0x44aa/0x8610
[ 2359.043732]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2359.044979]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2359.046166]  ? find_held_lock+0x2c/0x110
[ 2359.047172]  ? io_submit_sqes+0x8610/0x8610
[ 2359.048246]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2359.049440]  ? wait_for_completion_io+0x270/0x270
[ 2359.050618]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2359.051752]  ? vfs_write+0x354/0xb10
[ 2359.052673]  ? fput_many+0x2f/0x1a0
[ 2359.053568]  ? ksys_write+0x1a9/0x260
[ 2359.054500]  ? __ia32_sys_read+0xb0/0xb0
[ 2359.055505]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2359.056798]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2359.058076]  do_syscall_64+0x33/0x40
[ 2359.058992]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2359.060266] RIP: 0033:0x7fbe4d75bb19
[ 2359.061182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2359.065688] RSP: 002b:00007fbe4acd1188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2359.067555] RAX: ffffffffffffffda RBX: 00007fbe4d86ef60 RCX: 00007fbe4d75bb19
[ 2359.069313] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2359.071064] RBP: 00007fbe4acd11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2359.072831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2359.074582] R13: 00007ffe1acae18f R14: 00007fbe4acd1300 R15: 0000000000022000
05:08:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c080000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:09 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe2(&(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
io_uring_setup(0x6a32, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000080)=<r1=>0x0)
r2 = epoll_create1(0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000000)={0x4000201f})
r4 = epoll_create(0x3ff)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000240)={'wg0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="1b000000ccb5d785d588830831a1dc80050000000d000000ff"]})
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000200)={0x20000001})
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
ioctl$PIO_CMAP(0xffffffffffffffff, 0x4b71, &(0x7f0000000140)={0x2, 0x4, 0x18000000000000, 0x3, 0x6, 0x400})
dup2(r5, r2)
waitid(0x0, r1, 0x0, 0x8, 0x0)
r6 = creat(&(0x7f0000000180)='./file0\x00', 0x2c)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r0, &(0x7f00000001c0)={0x20000000})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0x7)

05:08:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30000000, 0x0, 0x0, 0x0)

05:08:09 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65, 0x0, 0x0, 0x0)

[ 2359.212804] sr 1:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
05:08:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ff, 0x0, 0x0, 0x0)

05:08:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c180000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:09 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0x80000001, 0x4)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000040)=@ccm_128={{0x303}, "897e482d8f0edc65", "aef42bddf6a950890af044e950d92e4c", "a58d50c7", "5af97af59f574ff2"}, 0x28)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000000000/0x2000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x35, 0x0, 0x0}, &(0x7f0000000100)=0x40)

05:08:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36000000, 0x0, 0x0, 0x0)

05:08:23 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:08:23 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68, 0x0, 0x0, 0x0)

05:08:23 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x20001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getgroups(0x3, &(0x7f0000000640)=[0x0, 0x0, 0x0])
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x4, 0x0, @fd=r3, 0xffffffffffffffff, 0x0}, 0xffffffff)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000340)=ANY=[@ANYRES64], 0x8)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000540)='\t', 0x1)

05:08:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfdef, 0x0, 0x0, 0x0)

[ 2373.747844] sg_write: data in/out 352299/2920 bytes for SCSI command 0x0-- guessing data in;
[ 2373.747844]    program syz-executor.7 not setting count and/or reply_len properly
05:08:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c1c0000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:23 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001)
ioctl$SG_IO(r0, 0x2285, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0xb92)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$FIOCLEX(r3, 0x5451)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r5, 0x84009422, &(0x7f0000001900)={0x0, 0x0, {0x0, @struct, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r4, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, &(0x7f0000000140)=ANY=[]}, @devid=r6})
ioctl$BTRFS_IOC_DEV_INFO(r3, 0xd000941e, &(0x7f0000003080)={r6, "1f97da2d965551153358c180300791a3"})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r7, &(0x7f0000000000)=""/41, 0x29, 0x3)
preadv2(r7, &(0x7f0000000040)=[{&(0x7f0000000100)=""/222, 0xde}], 0x1, 0xd35, 0x1dafee2f, 0x0)
getpeername(r1, &(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, <r8=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, &(0x7f0000000280)=0x80)
fcntl$dupfd(0xffffffffffffffff, 0x406, r8)
ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f0000001e00)={r6, "058fb32d9b0ddbd181baaa73caa1237b"})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:08:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c000000, 0x0, 0x0, 0x0)

05:08:23 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

[ 2373.799501] FAULT_INJECTION: forcing a failure.
[ 2373.799501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2373.802554] CPU: 0 PID: 12067 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2373.804412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2373.806621] Call Trace:
[ 2373.807330]  dump_stack+0x107/0x167
[ 2373.808325]  should_fail.cold+0x5/0xa
[ 2373.809356]  _copy_to_iter+0x264/0x12d0
[ 2373.810444]  ? seq_read_iter+0xd4d/0x12b0
[ 2373.811553]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2373.812881]  ? __virt_addr_valid+0x170/0x5d0
[ 2373.814059]  ? __check_object_size+0x319/0x440
[ 2373.815294]  seq_read_iter+0xdcb/0x12b0
[ 2373.816395]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2373.817773]  proc_reg_read_iter+0x20a/0x2e0
[ 2373.818766]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2373.820145]  io_read+0x2dc/0x11e0
[ 2373.821084]  ? __is_insn_slot_addr+0x14c/0x290
[ 2373.822317]  ? kernel_text_address+0xf2/0x120
[ 2373.823520]  ? unwind_get_return_address+0x55/0xa0
[ 2373.824846]  ? create_prof_cpu_mask+0x20/0x20
[ 2373.826050]  ? kiocb_done+0xc90/0xc90
[ 2373.827069]  ? mark_lock+0xf5/0x2df0
[ 2373.828090]  ? lock_chain_count+0x20/0x20
[ 2373.829201]  ? __lock_acquire+0xbb1/0x5b00
[ 2373.830365]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2373.831768]  ? SOFTIRQ_verbose+0x10/0x10
[ 2373.832713]  ? kasan_save_stack+0x1b/0x40
[ 2373.833816]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2373.835173]  ? __io_queue_sqe+0x666/0x9d0
[ 2373.836397]  ? __lock_acquire+0xbb1/0x5b00
[ 2373.837572]  io_issue_sqe+0x2e8a/0x77b0
[ 2373.838675]  ? perf_trace_lock+0xac/0x490
[ 2373.839797]  ? SOFTIRQ_verbose+0x10/0x10
[ 2373.840928]  ? io_connect+0x610/0x610
[ 2373.841798]  ? lock_acquire+0x197/0x470
[ 2373.842693]  ? find_held_lock+0x2c/0x110
[ 2373.843630]  ? __fget_files+0x2cf/0x520
[ 2373.844549]  ? lock_downgrade+0x6d0/0x6d0
[ 2373.845494]  __io_queue_sqe+0x90/0x9d0
[ 2373.846379]  ? io_issue_sqe+0x77b0/0x77b0
[ 2373.847317]  ? __fget_files+0x2f8/0x520
[ 2373.848238]  ? io_prep_rw+0x7f5/0x1050
[ 2373.849136]  io_submit_sqes+0x44aa/0x8610
[ 2373.850107]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2373.851230]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2373.852347]  ? find_held_lock+0x2c/0x110
[ 2373.853283]  ? io_submit_sqes+0x8610/0x8610
[ 2373.854261]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2373.855352]  ? wait_for_completion_io+0x270/0x270
[ 2373.856470]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2373.857531]  ? vfs_write+0x354/0xb10
05:08:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c650000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2373.858367]  ? fput_many+0x2f/0x1a0
[ 2373.859355]  ? ksys_write+0x1a9/0x260
[ 2373.860261]  ? __ia32_sys_read+0xb0/0xb0
[ 2373.861356]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2373.862750]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2373.864136]  do_syscall_64+0x33/0x40
[ 2373.865142]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2373.866492] RIP: 0033:0x7fd05c70ab19
[ 2373.867476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2373.872131] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2373.873854] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2373.875478] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2373.877101] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2373.878705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2373.880310] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:08:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfff5, 0x0, 0x0, 0x0)

05:08:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43000000, 0x0, 0x0, 0x0)

05:08:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000cf00000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:23 executing program 7:
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = pkey_alloc(0x0, 0x2)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x4001)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
pkey_free(0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0)
pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff)
munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80)
fallocate(r2, 0x0, 0x0, 0x8800000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

05:08:24 executing program 5:
unshare(0x8010c00)
semget$private(0x0, 0x4000, 0x0)
unshare(0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
unshare(0x800)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000080))
r0 = perf_event_open$cgroup(&(0x7f0000001380)={0x1, 0x80, 0x5, 0x1, 0x8, 0x5, 0x0, 0x780, 0x0, 0x1d, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000001340), 0x3}, 0x4001, 0x80000001, 0x9, 0x3, 0x8, 0xc4, 0x5, 0x0, 0xfffffff7, 0x0, 0xbe2c}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(0x0, 0x0, 0x0, r0, 0x1)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f00000000c0))
r1 = semget(0x2, 0x3, 0x40)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0, 0x8000, 0xff, 0x4, 0x3, 0xaa57, 0xffff])

05:08:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48000000, 0x0, 0x0, 0x0)

05:08:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000300dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:39 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:08:39 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c, 0x0, 0x0, 0x0)

05:08:39 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c800400dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:39 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x1812a2, 0x0)
fcntl$setstatus(r1, 0x4, 0x0)
pipe(&(0x7f00000014c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, 0x0, 0x31)
vmsplice(r3, &(0x7f0000000180)=[{&(0x7f0000000080)=',', 0x1}], 0x1, 0x0)
splice(r2, 0x0, r1, 0x0, 0xfdef, 0x0)

05:08:39 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0)

05:08:39 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b000000, 0x0, 0x0, 0x0)

05:08:39 executing program 7:
r0 = gettid()
ptrace(0xffffffffffffffff, r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x3)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x13, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000006, 0x10010, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffffff, 0x0, 0x36400, 0xe375d1901a7fcc3b)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = gettid()
process_vm_readv(r3, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x5a}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000000200)=""/171, 0xab}], 0x3, &(0x7f00000007c0)=[{&(0x7f0000001bc0)=""/4096}, {&(0x7f0000000140)=""/167, 0xfffffffffffffe25}, {&(0x7f00000002c0)=""/143}, {&(0x7f0000000380)=""/210}, {&(0x7f0000000500)=""/60}, {&(0x7f0000000540)=""/240}, {&(0x7f0000000640)=""/105}, {&(0x7f00000006c0)=""/194}], 0x0, 0x0)
ioctl$BINDER_FREEZE(r2, 0x400c620e, &(0x7f0000000080)={r3, 0x1, 0x5b0})
fcntl$getown(r2, 0x9)
utimensat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)={{}, {0x77359400}}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r4}}, 0x7ff)
readv(0xffffffffffffffff, &(0x7f0000001600), 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0)
clock_gettime(0x0, &(0x7f0000000b40))

05:08:39 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

[ 2389.895840] FAULT_INJECTION: forcing a failure.
[ 2389.895840] name failslab, interval 1, probability 0, space 0, times 0
[ 2389.898648] CPU: 0 PID: 12115 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2389.900293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2389.902235] Call Trace:
[ 2389.902859]  dump_stack+0x107/0x167
[ 2389.903721]  should_fail.cold+0x5/0xa
[ 2389.904628]  ? io_setup_async_rw+0x180/0x580
[ 2389.905665]  should_failslab+0x5/0x20
[ 2389.906562]  __kmalloc+0x72/0x390
[ 2389.907386]  io_setup_async_rw+0x180/0x580
[ 2389.908386]  ? iov_iter_restore+0x195/0x3a0
[ 2389.909407]  io_read+0x775/0x11e0
[ 2389.910227]  ? __is_insn_slot_addr+0x14c/0x290
[ 2389.911309]  ? kernel_text_address+0xf2/0x120
[ 2389.912377]  ? unwind_get_return_address+0x55/0xa0
[ 2389.913529]  ? create_prof_cpu_mask+0x20/0x20
[ 2389.914579]  ? kiocb_done+0xc90/0xc90
[ 2389.915472]  ? mark_lock+0xf5/0x2df0
[ 2389.916364]  ? lock_chain_count+0x20/0x20
[ 2389.917338]  ? __lock_acquire+0xbb1/0x5b00
[ 2389.918357]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2389.919584]  ? SOFTIRQ_verbose+0x10/0x10
[ 2389.920540]  ? kasan_save_stack+0x1b/0x40
[ 2389.921507]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2389.922695]  ? __io_queue_sqe+0x666/0x9d0
[ 2389.923673]  ? __lock_acquire+0xbb1/0x5b00
[ 2389.924677]  io_issue_sqe+0x2e8a/0x77b0
[ 2389.925632]  ? perf_trace_lock+0xac/0x490
[ 2389.926601]  ? SOFTIRQ_verbose+0x10/0x10
[ 2389.927557]  ? io_connect+0x610/0x610
[ 2389.928460]  ? lock_acquire+0x197/0x470
[ 2389.929390]  ? find_held_lock+0x2c/0x110
[ 2389.930343]  ? __fget_files+0x2cf/0x520
[ 2389.931266]  ? lock_downgrade+0x6d0/0x6d0
[ 2389.932243]  __io_queue_sqe+0x90/0x9d0
[ 2389.933158]  ? io_issue_sqe+0x77b0/0x77b0
[ 2389.934118]  ? __fget_files+0x2f8/0x520
[ 2389.935049]  ? io_prep_rw+0x7f5/0x1050
[ 2389.935961]  io_submit_sqes+0x44aa/0x8610
[ 2389.936971]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2389.938130]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2389.939260]  ? find_held_lock+0x2c/0x110
[ 2389.940224]  ? io_submit_sqes+0x8610/0x8610
[ 2389.941239]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2389.942374]  ? wait_for_completion_io+0x270/0x270
[ 2389.943499]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2389.944588]  ? vfs_write+0x354/0xb10
[ 2389.945455]  ? fput_many+0x2f/0x1a0
[ 2389.946304]  ? ksys_write+0x1a9/0x260
[ 2389.947198]  ? __ia32_sys_read+0xb0/0xb0
[ 2389.948166]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2389.949400]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2389.950607]  do_syscall_64+0x33/0x40
[ 2389.951472]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2389.952667] RIP: 0033:0x7fd05c70ab19
[ 2389.953533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2389.957809] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2389.959580] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2389.961248] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2389.962909] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2389.964580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2389.966241] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:08:39 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68, 0x0, 0x0, 0x0)

05:08:39 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000500dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:39 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x100000, 0x0, 0x0, 0x0)

05:08:39 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c000000, 0x0, 0x0, 0x0)

05:08:39 executing program 7:
r0 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000500)=ANY=[@ANYBLOB="031900000101000018", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="000000064e36ef11e4a9175936b1dc3a5b14b4150dddefa28d15f0dc10530d41b04b8f2332e3b82f3e96ad9e1d1d00f597c3536846210de5780b8e19ddd59fd856c46ea3ab754d9bc5a266f78463bfe610463c8cfab43160bc5001f50f6d2630949f5253c449ec0aa8a524eacd4660e7f8c5fdfe5408fe2c0e817a03dfe5d4ecd6d7a466779cc4b56234cf93c0f883449b5dd50630"])
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x80080, 0x0)
readlinkat(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)=""/137, 0x89)
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]})
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)
fchmodat(r1, &(0x7f00000000c0)='./file0\x00', 0x41)
setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300), &(0x7f0000000440), 0x2, 0x0)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000004c0), 0x200100, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000800)='./file0/file0\x00', 0xc0)
lseek(r4, 0x5f3, 0x1)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
r6 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000480)=[{}, {r0, 0x120}, {r6, 0x80c4}, {r2, 0x44c}, {r5, 0x8004}], 0x5, 0x8)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x4, 0x8, 0x20, 0x8, 0xe0a})
sendmsg$NL80211_CMD_RELOAD_REGDB(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r8, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x2004c0c0}, 0x4c040)

05:08:40 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000600dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2390.194602] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
05:08:40 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65000000, 0x0, 0x0, 0x0)

[ 2390.246496] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
05:08:40 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x200000, 0x0, 0x0, 0x0)

05:08:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68000000, 0x0, 0x0, 0x0)

05:08:53 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0)

05:08:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000700dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:53 executing program 5:
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
unlinkat(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r0=>0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x12108, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000}, 0x0, 0x0, 0x0, 0x4}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = fsopen(&(0x7f0000000080)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = memfd_create(&(0x7f0000000340)='\x00', 0x0)
pwritev2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)='Z', 0x1}], 0x1, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000380))
finit_module(r2, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000400)=ANY=[@ANYBLOB="015e00d65a1c78c592c06d00", @ANYRES32=r3, @ANYBLOB='?\x00\x00\x00\x00\x00\x00\x00./file0\x00', @ANYRES16])
lseek(r3, 0x20, 0x3)
open_by_handle_at(r2, &(0x7f0000000200)=@OVL_FILEID_V1={0x18, 0xf8, {'\x00', {0x0, 0xfb, 0x15, 0x0, 0x9, "0ed24540a56c07b77505a7ff5a779748"}}}, 0x444502)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000040), 0x9, 0x82000)

05:08:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

05:08:53 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x4300, 0x4)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @remote}, 0x1c)
r1 = open_tree(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd_index=0x4, 0x3ff, 0x0, 0x0, 0x11, 0x1, {0x1}}, 0xff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r2 = socket$inet(0xa, 0x3, 0xff)
dup(0xffffffffffffffff)
r3 = dup3(r1, r2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000580)=ANY=[@ANYBLOB="010685695891528fe1157e0901d8d0598e0fd4ec2d1b132c9fdc0fd3b863f30dbec48897c1f84bf135ea9d139be1e5796a444dd70af697321a3446570f1d78abb3b63ee0f86728b54319d9325f49e760a0f94cdc301a90bb0c1a4bb327e88dc884b28793d53d0d2fca5702fda9aea3c7954e011cb791dd332762fd067f0c2338f4c352bf5f2fa3480267fdd9a05539f5199af3da751983a9cc608a9d03ec65da96b7d1c62e2a14944db39beb196a6c6ed57969327806cc58643a43506794943c49718041c29ccfe94268d4b36a", @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB="d10d0000000000002e2f66696c653000"])
sendmsg$GTP_CMD_GETPDP(r4, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4090000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@GTPA_I_TEI={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
r5 = socket$inet(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_ADDRFORM(r4, 0x29, 0x1, &(0x7f0000000200), 0x4)
fcntl$dupfd(0xffffffffffffffff, 0x406, r0)
r6 = dup(r5)
setsockopt$inet6_int(r6, 0x29, 0x4c, &(0x7f0000000180), 0x4)
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0)

05:08:53 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74, 0x0, 0x0, 0x0)

05:08:53 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

[ 2404.049452] Module has invalid ELF structures
[ 2404.061312] FAULT_INJECTION: forcing a failure.
[ 2404.061312] name failslab, interval 1, probability 0, space 0, times 0
[ 2404.064036] CPU: 1 PID: 12171 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2404.065740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2404.067666] Call Trace:
[ 2404.068284]  dump_stack+0x107/0x167
[ 2404.069150]  should_fail.cold+0x5/0xa
[ 2404.070044]  ? io_setup_async_rw+0x180/0x580
[ 2404.071070]  should_failslab+0x5/0x20
[ 2404.071954]  __kmalloc+0x72/0x390
[ 2404.072780]  io_setup_async_rw+0x180/0x580
[ 2404.073762]  ? iov_iter_restore+0x195/0x3a0
[ 2404.074771]  io_read+0x775/0x11e0
[ 2404.075584]  ? __is_insn_slot_addr+0x14c/0x290
[ 2404.076665]  ? kernel_text_address+0xf2/0x120
[ 2404.077716]  ? unwind_get_return_address+0x55/0xa0
[ 2404.078857]  ? create_prof_cpu_mask+0x20/0x20
[ 2404.079899]  ? kiocb_done+0xc90/0xc90
[ 2404.080793]  ? mark_lock+0xf5/0x2df0
[ 2404.081675]  ? lock_chain_count+0x20/0x20
[ 2404.082642]  ? __lock_acquire+0xbb1/0x5b00
[ 2404.083651]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2404.084877]  ? SOFTIRQ_verbose+0x10/0x10
[ 2404.085817]  ? kasan_save_stack+0x1b/0x40
[ 2404.086783]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2404.087124] Module has invalid ELF structures
[ 2404.087959]  ? __io_queue_sqe+0x666/0x9d0
[ 2404.087989]  ? __lock_acquire+0xbb1/0x5b00
[ 2404.088017]  io_issue_sqe+0x2e8a/0x77b0
[ 2404.088049]  ? perf_trace_lock+0xac/0x490
[ 2404.088069]  ? SOFTIRQ_verbose+0x10/0x10
[ 2404.088098]  ? io_connect+0x610/0x610
[ 2404.094328]  ? lock_acquire+0x197/0x470
[ 2404.095253]  ? find_held_lock+0x2c/0x110
[ 2404.096202]  ? __fget_files+0x2cf/0x520
[ 2404.097141]  ? lock_downgrade+0x6d0/0x6d0
[ 2404.098114]  __io_queue_sqe+0x90/0x9d0
[ 2404.099030]  ? io_issue_sqe+0x77b0/0x77b0
[ 2404.099990]  ? __fget_files+0x2f8/0x520
[ 2404.100934]  ? io_prep_rw+0x7f5/0x1050
[ 2404.101851]  io_submit_sqes+0x44aa/0x8610
[ 2404.102856]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2404.104011]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2404.105143]  ? find_held_lock+0x2c/0x110
[ 2404.106096]  ? io_submit_sqes+0x8610/0x8610
[ 2404.107106]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2404.108229]  ? wait_for_completion_io+0x270/0x270
[ 2404.109355]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2404.110436]  ? vfs_write+0x354/0xb10
[ 2404.111299]  ? fput_many+0x2f/0x1a0
[ 2404.112149]  ? ksys_write+0x1a9/0x260
[ 2404.113045]  ? __ia32_sys_read+0xb0/0xb0
[ 2404.113994]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2404.115217]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2404.116430]  do_syscall_64+0x33/0x40
[ 2404.117294]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2404.118487] RIP: 0033:0x7fd05c70ab19
[ 2404.119358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2404.123640] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2404.125414] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2404.127081] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2404.128747] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2404.130394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2404.132052] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:08:54 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x6d7cf708bc06516e}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x800, 0x6)
fsetxattr$security_capability(r1, &(0x7f0000000000), &(0x7f0000000040)=@v3={0x3000000, [{0x6}, {0xd444, 0xee2}], 0xffffffffffffffff}, 0x18, 0x1)
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000080)=@fragment={0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x865}, 0x28)
r2 = syz_io_uring_setup(0x5841, &(0x7f0000000340)={0x0, 0x2000, 0x2, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))
r3 = dup(r0)
io_uring_enter(r3, 0x7efa, 0x4f38, 0x1, &(0x7f0000000180)={[0x1]}, 0x8)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f00000000c0), 0x4)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000005, 0x13, r4, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, r2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0xa, &(0x7f0000000200)}, 0x8)

05:08:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c7c0a00dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:08:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

05:09:09 executing program 7:
r0 = signalfd(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000010000001800000407b94b89c498474e311b3e0af5953256ab4a922c43b0cea68aa97561305c", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000001200)={0x88348900, 0x0, 0x0, 0x0, {0x10000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x6)
faccessat2(r0, &(0x7f0000000100)='./file0\x00', 0x69, 0x200)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x1)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1, 0x5}, &(0x7f0000000000)=':\x15\x00U\x1bT;\xfa4\x8dd\xa0\x9d&\xb0Z\xdfv\x8b\x84\x87\xa8K\xff\xb5\xce\xb4\xa7\xab\xc6\xf1\a\xdb\xc2m\xb2w\b\xb7*v\xfdo\x83\'\xd9[\xee|4P\xa7\xe8\xad\x82,\xf5\xd1\xea\xdb\xf4\xf5F\xc0H\v\x8d\xbc\x9e)&nH\x032\x15\x80\x19\xc0\fn\xdc\x8dk\xf2\xe4\x80\x9aJ\xe7\xdb\x8e\xd3\x80*i\x82CT\xb3j%\x94\x15\xc6\xc1\xc2\x82\x83\xdc\xf6sqF\x9cX', 0x0)
keyctl$set_reqkey_keyring(0xe, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
keyctl$set_reqkey_keyring(0xe, 0x6)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x7f, 0xe1, 0x8, 0x6, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7f, 0x1, @perf_bp={0x0, 0x9}, 0x800, 0x4, 0x1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0xc, r1, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r2)
openat(0xffffffffffffffff, 0x0, 0x2b0480, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

05:09:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c000000, 0x0, 0x0, 0x0)

05:09:09 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a, 0x0, 0x0, 0x0)

05:09:09 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0)

05:09:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c001800dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0)

05:09:09 executing program 5:
r0 = open(&(0x7f0000000000)='./file1\x00', 0x600000, 0x1b2)
r1 = perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, r0, 0x0)
lseek(r1, 0x0, 0x1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x4e24, 0x3, @loopback, 0x5}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x1, 0xffffffff, @private1, 0xc3a}, 0x1c)
fallocate(r1, 0x3, 0x52, 0x6)
fstat(0xffffffffffffffff, &(0x7f0000000300))
openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x5f42, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet(0xa, 0x3, 0xff)
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000640)={@private0, @dev={0xfe, 0x80, '\x00', 0xb}, @mcast2, 0x0, 0xffff, 0x80, 0x100, 0x7f, 0x400032})
r4 = syz_mount_image$nfs4(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x8000, 0x3, &(0x7f0000000500)=[{&(0x7f0000000440), 0x0, 0x1}, {&(0x7f0000000880)="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", 0x1000, 0x6}, {&(0x7f0000000480)="5f8307ffd6d44cf6d3c85055bdaa6286ff1656ac47b749054a0da10a861b942bec1e2317a2ec68b82554595128df9f6cff0a1871aabfb394282edde040ce926ec52c858ffd56147502d4fa4635b46b0fd9", 0x51, 0x1000}], 0x206000c, &(0x7f0000000580)={[{'#'}, {'-\x88]\xd4'}], [{@smackfshat={'smackfshat', 0x3d, '/dev/vcsa#\x00'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}]})
fcntl$setstatus(r4, 0x4, 0x400)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x950)
syz_open_dev$vcsa(&(0x7f0000000840), 0x0, 0x28180)
r5 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
getsockname(0xffffffffffffffff, &(0x7f0000000200)=@hci, &(0x7f0000000280)=0x80)
pwrite64(r5, &(0x7f00000000c0)="041a3a4985d424bdce9675f286982a09f7fe7569cb2c6e71f89e8019678c585aa70cc9e2435235dcb0b3434020d0f4d5613bb8bde96608eaf4af1834720900b040007af6d3edc14cd7ab81c733b614b0835ac6af8173be3b00015a826f2562ae98feb0d40000f80000", 0xff69, 0x3ff03)

05:09:09 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

[ 2419.550625] FAULT_INJECTION: forcing a failure.
[ 2419.550625] name failslab, interval 1, probability 0, space 0, times 0
[ 2419.553582] CPU: 0 PID: 12214 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2419.555400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2419.557598] Call Trace:
[ 2419.558290]  dump_stack+0x107/0x167
[ 2419.559254]  should_fail.cold+0x5/0xa
[ 2419.560254]  ? __io_queue_sqe+0x666/0x9d0
[ 2419.561354]  should_failslab+0x5/0x20
[ 2419.562345]  kmem_cache_alloc_trace+0x55/0x320
[ 2419.563699]  ? lock_downgrade+0x6d0/0x6d0
[ 2419.564795]  __io_queue_sqe+0x666/0x9d0
[ 2419.565841]  ? io_issue_sqe+0x77b0/0x77b0
[ 2419.567005]  ? __fget_files+0x2f8/0x520
[ 2419.568061]  ? io_prep_rw+0x7f5/0x1050
[ 2419.569086]  io_submit_sqes+0x44aa/0x8610
[ 2419.570192]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2419.571455]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2419.572737]  ? find_held_lock+0x2c/0x110
[ 2419.573781]  ? io_submit_sqes+0x8610/0x8610
[ 2419.574900]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2419.576138]  ? wait_for_completion_io+0x270/0x270
[ 2419.577400]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2419.578593]  ? vfs_write+0x354/0xb10
[ 2419.579590]  ? fput_many+0x2f/0x1a0
[ 2419.580527]  ? ksys_write+0x1a9/0x260
[ 2419.581541]  ? __ia32_sys_read+0xb0/0xb0
[ 2419.582599]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2419.583949]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2419.585291]  do_syscall_64+0x33/0x40
[ 2419.586255]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2419.587555] RIP: 0033:0x7fd05c70ab19
[ 2419.588512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2419.593258] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2419.595213] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2419.597037] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2419.598871] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2419.600712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2419.602533] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:09:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c001c00dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2419.625845] loop5: detected capacity change from 0 to 32768
05:09:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74000000, 0x0, 0x0, 0x0)

05:09:24 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5, 0x0, 0x0, 0x0)

05:09:24 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000000, 0x0, 0x0, 0x0)

05:09:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a000000, 0x0, 0x0, 0x0)

05:09:24 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0)

05:09:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c002000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:24 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
sendfile(r1, r0, &(0x7f00000001c0)=0xa0, 0x3ff)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}}, 0x1c)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r6=>0x0})
write$P9_RLINK(r3, &(0x7f0000000340)={0x7, 0x47, 0x2}, 0x7)
sendmmsg$inet(r4, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r6], 0x38}}], 0x1, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_buf(r5, 0x1, 0x1c, &(0x7f0000000000)=""/90, &(0x7f0000000180)=0x5a)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r7)
pread64(r3, &(0x7f0000000240)=""/26, 0x1a, 0x3)

05:09:24 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000000)={0x6, 0x7f, 0x2, 0x760d, 0x1000, 0x1})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x1c)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x63a802, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000200))
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f0000000180))
sendmsg$ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, 0x0, 0x200, 0x70bd27, 0x25dfdc00, {}, [@ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_ENABLED={0x5}]}, 0x3c}}, 0x20000801)

05:09:24 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

05:09:24 executing program 5:
unshare(0x28020600)
acct(&(0x7f0000000040)='./file0\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000180), 0x40800, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000440)={0x3, 0x0, 0x0, "dbf57d"})
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)=0x1e)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080)={'#! ', './file0', [{}], 0xa, "863d9ccfbc3e6b07c1957f07147b07e33018b08994e2501f663ae8e82045f24967f6954c302a9be464d1c9b0ad7314b67e0b74a733598cfe98"}, 0x45)
unshare(0x48020200)

[ 2435.023535] FAULT_INJECTION: forcing a failure.
[ 2435.023535] name failslab, interval 1, probability 0, space 0, times 0
[ 2435.025042] CPU: 1 PID: 12257 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2435.025939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2435.027020] Call Trace:
[ 2435.027373]  dump_stack+0x107/0x167
[ 2435.027851]  should_fail.cold+0x5/0xa
[ 2435.028346]  ? create_object.isra.0+0x3a/0xa20
[ 2435.028949]  should_failslab+0x5/0x20
[ 2435.029427]  kmem_cache_alloc+0x5b/0x310
[ 2435.029960]  create_object.isra.0+0x3a/0xa20
[ 2435.030527]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2435.031200]  kmem_cache_alloc_trace+0x151/0x320
[ 2435.031788]  ? lock_downgrade+0x6d0/0x6d0
[ 2435.032339]  __io_queue_sqe+0x666/0x9d0
[ 2435.032872]  ? io_issue_sqe+0x77b0/0x77b0
[ 2435.033410]  ? __fget_files+0x2f8/0x520
[ 2435.033928]  ? io_prep_rw+0x7f5/0x1050
[ 2435.034438]  io_submit_sqes+0x44aa/0x8610
[ 2435.034995]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2435.035637]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2435.036261]  ? find_held_lock+0x2c/0x110
[ 2435.036802]  ? io_submit_sqes+0x8610/0x8610
[ 2435.037364]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2435.037988]  ? wait_for_completion_io+0x270/0x270
[ 2435.038612]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2435.039211]  ? vfs_write+0x354/0xb10
[ 2435.039692]  ? fput_many+0x2f/0x1a0
[ 2435.040164]  ? ksys_write+0x1a9/0x260
[ 2435.040659]  ? __ia32_sys_read+0xb0/0xb0
[ 2435.041196]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2435.041878]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2435.042548]  do_syscall_64+0x33/0x40
[ 2435.043030]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2435.043688] RIP: 0033:0x7fd05c70ab19
[ 2435.044166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2435.046536] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2435.047518] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2435.048438] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2435.049358] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2435.050277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2435.051188] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2435.131236] program syz-executor.5 is using a deprecated SCSI ioctl, please convert it to SG_IO
05:09:25 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c003f00dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:25 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xeffdffff, 0x0, 0x0, 0x0)

05:09:25 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0)

05:09:25 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c006500dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:25 executing program 7:
r0 = epoll_create(0x8000)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x20000300})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
syz_io_uring_setup(0x3b33, &(0x7f0000000100)={0x0, 0xc042, 0x0, 0x0, 0x275, 0x0, r2}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00004a7000/0x4000)=nil, &(0x7f0000000080), &(0x7f0000000180)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x1, &(0x7f00000001c0), 0x1, 0x1, 0x1, {0x0, r4}}, 0x5)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r2, 0x0)
epoll_wait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0)

05:09:42 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

05:09:42 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5000000, 0x0, 0x0, 0x0)

05:09:42 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0)

05:09:42 executing program 7:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={[{@mpol={'mpol', 0x3d, {'prefer', '=static', @val={0x3a, [0x30, 0x30]}}}}]})

05:09:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c0a7c00dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:42 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

05:09:42 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)='./file0\x00', 0x80, 0x2000, 0x23456, {0x0, r0}}, 0x1)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x200, 0x4, 0x25dfdbfc, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000)
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x43c, 0x3f3, 0x20, 0x70bd29, 0x25dfdbfd, {0x4, 0x2, 0x25, [0x100, 0x552, 0x3, 0x8, 0x0, 0x3, 0x6, 0x4, 0x7, 0x6, 0xffffffff, 0x6, 0x6, 0x0, 0x9, 0x4, 0xc3, 0xfffffff9, 0xc85f, 0x7, 0x0, 0x47, 0x80000000, 0x8, 0x7fff, 0x9, 0xff, 0x100000, 0x5, 0x9, 0x9, 0x8, 0x1, 0x400, 0x3, 0x1f, 0x100, 0x9, 0x7fffffff, 0x8000, 0x2, 0x100, 0x0, 0x0, 0x100, 0xffffff00, 0x2, 0x2, 0x1, 0x6, 0x3, 0x1, 0x9, 0x9, 0x8, 0x7, 0x1000, 0x1, 0x2, 0x7, 0xefc2, 0x10000, 0x4, 0x4], [0x6, 0xcf9a, 0x7, 0x5, 0xb01e, 0x2, 0x200, 0x9, 0x2, 0x8, 0x5, 0x9, 0x7, 0x3, 0x1, 0x6, 0x4, 0x61, 0x80000001, 0x1, 0x800, 0x0, 0x6, 0x7e8, 0x5, 0x100, 0x6, 0xb686, 0x8, 0xc11, 0x1, 0x9, 0x7f, 0x2, 0xffff, 0x6, 0x3bf, 0x9, 0xfffffffb, 0x8, 0x6, 0xe, 0x3, 0xfffffffd, 0x9, 0x1, 0x0, 0x1, 0x6, 0xaece, 0x6, 0x2, 0x3, 0x9, 0x81, 0x7d3, 0x0, 0xd996, 0x3ee, 0x6, 0xcca5, 0x2b, 0x40, 0x6043], [0xfffffffd, 0x6, 0x9, 0x3, 0xff, 0x20, 0x5, 0x2, 0x407, 0x6, 0xff, 0x6, 0x7, 0x20000000, 0x7ff, 0x9c6, 0x3, 0x5, 0x81, 0x8, 0x9, 0xae9, 0x3, 0x4, 0x2, 0x9, 0x3113, 0x1, 0xfffffffc, 0x8000, 0xffffffe1, 0x2, 0x5, 0x200, 0x2, 0x2, 0x0, 0x200, 0x1, 0x101, 0x6, 0x9, 0x200, 0xfff, 0x46e, 0x20000000, 0x0, 0x7, 0x80000001, 0x7, 0x0, 0xda8, 0x1fc00, 0x2, 0x0, 0x1, 0x3644, 0x7, 0x1, 0x0, 0x6, 0x8a9, 0x6, 0x1], [0x7, 0x6, 0x4, 0x8, 0x7, 0x2, 0x40, 0x3ff, 0xe4, 0xe7f2, 0x81, 0x1, 0x19, 0x558abcf0, 0x101, 0x20, 0x0, 0x9, 0x10001, 0x3f, 0x0, 0x9, 0x30, 0x4, 0xbd19, 0x6, 0x3, 0x7, 0x0, 0x9, 0x6, 0x7, 0x80000000, 0x7, 0x8, 0x74, 0x0, 0x1000, 0x0, 0x8001, 0x8, 0x9, 0x7, 0x7, 0x38, 0x5, 0x2, 0x0, 0x7, 0xfffffff8, 0x6, 0x7f, 0x1ff, 0x994, 0x1, 0x7f, 0xa7e7, 0x401, 0x0, 0x3f, 0x64d, 0x4, 0xfff, 0xfd13], 0x1b, ['(%,&)+\x00', '-{%\xa7\'9.@\x00', '\x00', ':+\'\x00', '%\x00', '[(^\x00']}, ["", "", "", "", "", "", "", ""]}, 0x43c}, 0x1, 0x0, 0x0, 0x4000}, 0x845)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x24, 0x2a, 0x878c5bf8df414e27, 0x0, 0x0, {}, [@typed={0x4}, @nested={0x9, 0x0, 0x0, 0x1, [@generic="999e00009c"]}]}, 0x24}}, 0x0)

05:09:42 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ffffff, 0x0, 0x0, 0x0)

[ 2452.754565] FAULT_INJECTION: forcing a failure.
[ 2452.754565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2452.757692] CPU: 0 PID: 12300 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2452.759512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2452.761666] Call Trace:
[ 2452.762365]  dump_stack+0x107/0x167
[ 2452.763328]  should_fail.cold+0x5/0xa
[ 2452.764341]  _copy_from_user+0x2e/0x1b0
[ 2452.765401]  iovec_from_user+0x141/0x400
[ 2452.766476]  __import_iovec+0x67/0x590
[ 2452.767497]  ? kfree+0xd7/0x340
[ 2452.768378]  io_import_iovec+0x581/0x1120
[ 2452.769468]  ? io_put_sq_data+0x80/0x250
[ 2452.770539]  ? io_complete_rw+0x230/0x230
[ 2452.771614]  ? io_clean_op+0x30c/0x870
[ 2452.772630]  ? kiocb_done+0x16b/0xc90
[ 2452.773638]  io_read+0xe14/0x11e0
[ 2452.774544]  ? __is_insn_slot_addr+0x14c/0x290
[ 2452.775734]  ? kernel_text_address+0xf2/0x120
[ 2452.776916]  ? unwind_get_return_address+0x55/0xa0
[ 2452.778196]  ? create_prof_cpu_mask+0x20/0x20
[ 2452.779364]  ? kiocb_done+0xc90/0xc90
[ 2452.780355]  ? mark_lock+0xf5/0x2df0
[ 2452.781343]  ? lock_chain_count+0x20/0x20
[ 2452.782414]  ? __lock_acquire+0xbb1/0x5b00
[ 2452.783527]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2452.784873]  ? SOFTIRQ_verbose+0x10/0x10
[ 2452.785920]  ? kasan_save_stack+0x1b/0x40
[ 2452.786982]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2452.788283]  ? __io_queue_sqe+0x666/0x9d0
[ 2452.789367]  ? __lock_acquire+0xbb1/0x5b00
[ 2452.790462]  io_issue_sqe+0x2e8a/0x77b0
[ 2452.791499]  ? perf_trace_lock+0xac/0x490
[ 2452.792563]  ? SOFTIRQ_verbose+0x10/0x10
[ 2452.793623]  ? io_connect+0x610/0x610
[ 2452.794604]  ? lock_acquire+0x197/0x470
[ 2452.795613]  ? find_held_lock+0x2c/0x110
[ 2452.796652]  ? __fget_files+0x2cf/0x520
[ 2452.797672]  ? lock_downgrade+0x6d0/0x6d0
[ 2452.798731]  __io_queue_sqe+0x90/0x9d0
[ 2452.799729]  ? io_issue_sqe+0x77b0/0x77b0
[ 2452.800777]  ? __fget_files+0x2f8/0x520
[ 2452.801801]  ? io_prep_rw+0x7f5/0x1050
[ 2452.802798]  io_submit_sqes+0x44aa/0x8610
[ 2452.803892]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2452.805165]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2452.806390]  ? find_held_lock+0x2c/0x110
[ 2452.807423]  ? io_submit_sqes+0x8610/0x8610
[ 2452.808518]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2452.809757]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2452.811076]  ? asm_sysvec_call_function_single+0x12/0x20
[ 2452.812435]  ? trace_hardirqs_on+0x5b/0x180
[ 2452.813533]  ? asm_sysvec_call_function_single+0x12/0x20
[ 2452.814913]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2452.816223]  do_syscall_64+0x33/0x40
[ 2452.817168]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2452.818455] RIP: 0033:0x7fd05c70ab19
[ 2452.819385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2452.824009] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2452.825925] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2452.827720] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2452.829531] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2452.831349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2452.833142] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:09:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c048000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:42 executing program 7:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000400)={{0x2, 0x0, 0xffffffffffffffff, 0x0, 0xee00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x8, 0xe4})
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_setup(0x20129a, &(0x7f0000000340)={0x0, 0x3, 0x0, 0x1, 0x0, 0x0, r1}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0, &(0x7f00000003c0))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x4}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc)

05:09:42 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0)

05:09:42 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfeffffff, 0x0, 0x0, 0x0)

05:09:42 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c00f000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:09:43 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffdef, 0x0, 0x0, 0x0)

05:09:43 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7000000, 0x0, 0x0, 0x0)

05:09:43 executing program 5:
r0 = openat$full(0xffffffffffffff9c, &(0x7f00000022c0), 0x20381, 0x0)
write$P9_RREAD(r0, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000340)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x0, 0x5, 0x400, 0x40}}, &(0x7f0000000500), 0x400)
r1 = perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x80, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd921d5fe546f24fd, @perf_config_ext={0x4, 0x9b}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x2c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x0, 0x0, 0x0, @str='keyring\x00'}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x2c}}, 0x0)
close_range(r2, r1, 0x0)
perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f00000005c0)=0x8, 0x4)
sendmsg$nl_generic(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bd59ea9d309472fdafad9501"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x20040000)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$NFNL_MSG_COMPAT_GET(r3, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000000b0102000000000500000206000108000240000000030800034000"/52], 0x34}, 0x1, 0x0, 0x0, 0x40054}, 0x400140c4)
add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
unshare(0x48020200)
unshare(0x60040380)

[ 2453.313119] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2474.801241] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:10:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa000000, 0x0, 0x0, 0x0)

05:10:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

05:10:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000200dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:04 executing program 7:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef)
syz_open_dev$vcsa(&(0x7f0000000000), 0x20, 0x480000)
fcntl$setsig(r1, 0xa, 0x23)
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000500)={<r3=>0x0, 0x1ff, 0x7fffffff})
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000900)={{r0}, 0x0, 0x8, @unused=[0x4, 0xfffffffffffffc00, 0x3, 0xff], @devid=r3})
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x0, 0x53f, 0x10000000, 0x0, 0x0, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x3, 0x4077, 0x8000)

05:10:04 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0)

05:10:04 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0)

05:10:04 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

05:10:04 executing program 5:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB='./nile0f'])
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000280)={0x0, &(0x7f0000000240)})
preadv(r2, &(0x7f0000000b80)=[{&(0x7f0000000400)=""/150, 0x96}, {&(0x7f00000007c0)=""/215, 0xd7}, {&(0x7f00000008c0)=""/193, 0xc1}, {&(0x7f00000002c0)=""/124, 0x7c}, {&(0x7f00000009c0)=""/247, 0xf7}, {&(0x7f0000000240)=""/43, 0x2b}, {&(0x7f00000004c0)=""/150, 0x96}, {&(0x7f0000000ac0)=""/82, 0x52}, {&(0x7f0000000380)=""/11, 0xb}, {&(0x7f0000000b40)=""/51, 0x33}], 0xa, 0x3f, 0x6)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000001000010000000000000100000000000000600ab89e86a0986fb0a0550500000000540b009c701c76df1f18e4"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x3000000a})
openat$sr(0xffffffffffffff9c, &(0x7f0000000c40), 0x30a00, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100)
r5 = signalfd(r4, &(0x7f00000003c0)={[0x1]}, 0x8)
fcntl$setstatus(r5, 0x4, 0x46800)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r6, 0x0, 0x0, 0x1000002)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x1, 0x4)
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f0000000040))
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

[ 2474.808584] FAULT_INJECTION: forcing a failure.
[ 2474.808584] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2474.810601] CPU: 1 PID: 12349 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2474.811538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2474.812659] Call Trace:
[ 2474.813021]  dump_stack+0x107/0x167
[ 2474.813524]  should_fail.cold+0x5/0xa
[ 2474.814043]  _copy_to_iter+0x264/0x12d0
[ 2474.814591]  ? seq_read_iter+0xd4d/0x12b0
[ 2474.815158]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2474.815819]  ? __virt_addr_valid+0x170/0x5d0
[ 2474.816418]  ? __check_object_size+0x319/0x440
[ 2474.817007]  seq_read_iter+0xdcb/0x12b0
[ 2474.817565]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2474.818261]  proc_reg_read_iter+0x20a/0x2e0
[ 2474.818841]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2474.819530]  io_read+0x2dc/0x11e0
[ 2474.819995]  ? __is_insn_slot_addr+0x14c/0x290
[ 2474.820617]  ? kernel_text_address+0xf2/0x120
[ 2474.821239]  ? unwind_get_return_address+0x55/0xa0
[ 2474.821889]  ? create_prof_cpu_mask+0x20/0x20
[ 2474.822487]  ? kiocb_done+0xc90/0xc90
[ 2474.822997]  ? mark_lock+0xf5/0x2df0
[ 2474.823509]  ? lock_chain_count+0x20/0x20
[ 2474.824062]  ? __lock_acquire+0xbb1/0x5b00
[ 2474.824645]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2474.825361]  ? SOFTIRQ_verbose+0x10/0x10
[ 2474.825902]  ? kasan_save_stack+0x1b/0x40
[ 2474.826455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2474.827138]  ? __io_queue_sqe+0x666/0x9d0
[ 2474.827693]  ? __lock_acquire+0xbb1/0x5b00
[ 2474.828270]  io_issue_sqe+0x2e8a/0x77b0
[ 2474.828806]  ? perf_trace_lock+0xac/0x490
[ 2474.829372]  ? SOFTIRQ_verbose+0x10/0x10
[ 2474.829921]  ? io_connect+0x610/0x610
[ 2474.830436]  ? lock_acquire+0x197/0x470
[ 2474.830974]  ? find_held_lock+0x2c/0x110
[ 2474.831521]  ? __fget_files+0x2cf/0x520
[ 2474.832052]  ? lock_downgrade+0x6d0/0x6d0
[ 2474.832623]  __io_queue_sqe+0x90/0x9d0
[ 2474.833156]  ? io_issue_sqe+0x77b0/0x77b0
[ 2474.833708]  ? __fget_files+0x2f8/0x520
[ 2474.834248]  ? io_prep_rw+0x7f5/0x1050
[ 2474.834775]  io_submit_sqes+0x44aa/0x8610
[ 2474.835353]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2474.836014]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2474.836661]  ? find_held_lock+0x2c/0x110
[ 2474.837219]  ? io_submit_sqes+0x8610/0x8610
[ 2474.837797]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2474.838441]  ? wait_for_completion_io+0x270/0x270
[ 2474.839089]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2474.839707]  ? vfs_write+0x354/0xb10
[ 2474.840206]  ? fput_many+0x2f/0x1a0
[ 2474.840699]  ? ksys_write+0x1a9/0x260
[ 2474.841213]  ? __ia32_sys_read+0xb0/0xb0
[ 2474.841758]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2474.842462]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2474.843156]  do_syscall_64+0x33/0x40
[ 2474.843652]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2474.844337] RIP: 0033:0x7fd05c70ab19
[ 2474.844839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2474.847291] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2474.848318] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2474.849274] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2474.850230] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2474.851429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2474.852446] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2474.909319] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:10:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000300dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc000000, 0x0, 0x0, 0x0)

05:10:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffffe, 0x0, 0x0, 0x0)

05:10:04 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)=<r0=>0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0xee00, 0xee00}}, './file0/file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001700)=ANY=[@ANYBLOB="010000009bd77e7d3db3c295", @ANYRES32, @ANYRES16, @ANYRES32=0xee01, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955ac9afaf6a03287eeb5e4a2a15739ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a92740fbed0519a0fe8fb2bb1420fa5a24997c0cf4682cd464c3bcd44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e2c77577a1157a58a7edab4a0981d3549776f0000"])
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="2400000000000000000000f7000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xb62)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d)
r4 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}, 0x40000, 0x0, 0x8, 0x7, 0x0, 0xc0f7}, 0x0, 0x800000000000002, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, r4, 0x0)
r5 = getpid()
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x40, 0x3d, 0x80, 0x3f, 0x0, 0x7, 0x43004, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000000), 0xf}, 0x4a008, 0xfffffffffffffffc, 0x4, 0x2, 0x0, 0x2, 0x0, 0x0, 0x8, 0x0, 0x3f}, r5, 0x7, r4, 0x9)
fcntl$setown(r3, 0x8, r5)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x78, 0x0, 0x311, 0x70bd27, 0x25dfdbfb, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x4000004)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000000c0)={0x14, 0x12, 0x69844ea0a6ddcd11}, 0x14}}, 0x0)
dup2(r2, r3)

[ 2475.054542] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12377 comm=syz-executor.5
[ 2475.069671] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12377 comm=syz-executor.5
[ 2475.082559] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12377 comm=syz-executor.5
[ 2475.096107] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12379 comm=syz-executor.5
05:10:04 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
dup3(r0, r0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0xfffffffc, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r1, 0x300, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_IDX={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x84000}, 0x10040010)
setxattr$trusted_overlay_nlink(0x0, 0x0, 0x0, 0x0, 0x0)

05:10:05 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000400dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:05 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xffffffff, 0x0, 0x0, 0x0)

05:10:05 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
io_setup(0x5, &(0x7f0000000080)=<r1=>0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r4 = fcntl$dupfd(r2, 0x0, r2)
sendfile(r4, r0, &(0x7f0000007140)=0x7fff, 0x2)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000007100)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
io_submit(r1, 0x2, &(0x7f00000001c0)=[&(0x7f0000000040)={0x0, 0x0, 0x5, 0x0, 0x0, r2, 0x0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x0, r0, 0x0, 0x0, 0x733}])
sendmsg$DEVLINK_CMD_PORT_GET(r3, &(0x7f0000007300)={&(0x7f0000007180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000072c0)={&(0x7f0000007340)=ANY=[@ANYBLOB="f0000000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fbdbdf2505000000080001007063690011000200303030308ebae0439c277be317c39c3a30303a31302e30000000000800030002000000080001007063690011000200303030303a30303a31302e30000000000800030001000000080001007063690011000200303030303a30303a31302e3000000000080003000341120000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000800030003000000080001007063690011000200303030303a30303a31302e30000000000800030000000000080001007063690011000200303030303a30303a31302e30000000000800030002000000"], 0xf0}, 0x1, 0x0, 0x0, 0x1cf9cff12643e9d9}, 0x4000080)
io_setup(0x5, &(0x7f0000000000)=<r5=>0x0)
io_cancel(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x7f, 0xffffffffffffffff, &(0x7f0000000280)="e22a8a830f66e825ad0d66264c4aa0990a23aa6cf7bf8feb6497e7bb9b20136f893c3006461202a70bc5b9d291ad51fe7f4b490c987e549839ed970df7207be662d1dde1ff051ef3de73e8e020a966a116d92626eec6a0d39ccd9b01797c0262101943570da081de6984fae6129042942c959f8bea32eaff47e478bffce27ea8b0c3c11a584306d6fd2424a65eed7d40a57fa07627c8706fb2ae55f75738ba2eec4520891380f16c6e7bbdc889d06f7db989c63fa8abc802e15c140ce871cac446edd14c3809bd1704cac5bb6a69d7e3b1a269be4cfb33edef2c084ae89657f7aa", 0xe1, 0x100000000000009, 0x0, 0x1}, &(0x7f0000000140))
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
recvmmsg$unix(r0, &(0x7f0000006ec0)=[{{&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000400)=""/140, 0x8c}, {&(0x7f00000004c0)=""/186, 0xba}, {&(0x7f0000000580)=""/115, 0x73}], 0x3}}, {{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000001b40)=[{&(0x7f0000000680)=""/148, 0x94}, {&(0x7f0000000740)=""/156, 0x9c}, {&(0x7f0000000200)=""/15, 0xf}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/158, 0x9e}, {&(0x7f00000018c0)=""/233, 0xe9}, {&(0x7f00000019c0)=""/238, 0xee}, {&(0x7f0000001ac0)=""/119, 0x77}], 0x8, &(0x7f0000001bc0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r6=>0x0}}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x98}}, {{&(0x7f00000071c0), 0x6e, &(0x7f0000003e40)=[{&(0x7f0000001d00)=""/169, 0xa9}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/57, 0x39}, {&(0x7f0000002e00)=""/21, 0x15}, {&(0x7f0000002e40)=""/4096, 0x1000}], 0x5, &(0x7f0000003ec0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xff66}}, {{&(0x7f0000003f00)=@abs, 0x6e, &(0x7f0000005180)=[{&(0x7f0000003f80)=""/4096, 0x1000}, {&(0x7f0000004f80)=""/207, 0xcf}, {&(0x7f0000005080)=""/194, 0xc2}], 0x3, &(0x7f00000051c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f00000052c0)=@abs, 0x6e, &(0x7f00000054c0)=[{&(0x7f0000005340)=""/97, 0x61}, {&(0x7f00000053c0)=""/217, 0xd9}], 0x2, &(0x7f0000005500)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030431200000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x90}}, {{0x0, 0x0, &(0x7f0000006a40)=[{&(0x7f00000055c0)=""/108, 0x6c}, {&(0x7f0000005640)=""/180, 0xb4}, {&(0x7f0000005700)=""/4096, 0x1000}, {&(0x7f0000006700)=""/151, 0x97}, {&(0x7f00000067c0)=""/154, 0x9a}, {&(0x7f0000006880)=""/186, 0xba}, {&(0x7f0000006940)=""/240, 0xf0}], 0x7}}, {{0x0, 0x0, &(0x7f0000006e40)=[{&(0x7f0000006ac0)=""/157, 0x9d}, {&(0x7f0000006b80)=""/94, 0x5e}, {&(0x7f0000006c00)=""/91, 0x5b}, {&(0x7f0000006c80)=""/115, 0x73}, {&(0x7f0000006d00)=""/12, 0xc}, {&(0x7f0000006d40)=""/239, 0xef}], 0x6}}], 0x7, 0x40000120, &(0x7f0000007080)={0x77359400})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000070c0)={{0x1, 0x1, 0x18, r0, {0x0, r6}}, './file1\x00'})
ioctl$KDADDIO(r7, 0x4b34, 0x7)

05:10:05 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

05:10:05 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

05:10:05 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12000000, 0x0, 0x0, 0x0)

05:10:05 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fork()
ptrace(0x10, r1)
r2 = signalfd(r0, &(0x7f00000000c0)={[0x100]}, 0x8)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x2, 0x1f, 0x7f, 0x9, 0x0, 0x8d22, 0x80, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x20, 0x2, 0x1, 0x7, 0x0, 0x8, 0x5, 0x0, 0x8, 0x0, 0x8423}, r1, 0x3, r2, 0x2)

[ 2475.363171] FAULT_INJECTION: forcing a failure.
[ 2475.363171] name failslab, interval 1, probability 0, space 0, times 0
[ 2475.366054] CPU: 1 PID: 12406 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2475.367629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2475.369522] Call Trace:
[ 2475.370128]  dump_stack+0x107/0x167
[ 2475.370961]  should_fail.cold+0x5/0xa
[ 2475.371838]  ? create_object.isra.0+0x3a/0xa20
[ 2475.372882]  should_failslab+0x5/0x20
[ 2475.373758]  kmem_cache_alloc+0x5b/0x310
[ 2475.374695]  create_object.isra.0+0x3a/0xa20
[ 2475.375692]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2475.376856]  kmem_cache_alloc_trace+0x151/0x320
[ 2475.377917]  ? lock_downgrade+0x6d0/0x6d0
[ 2475.378866]  __io_queue_sqe+0x666/0x9d0
[ 2475.379777]  ? io_issue_sqe+0x77b0/0x77b0
[ 2475.380713]  ? __fget_files+0x2f8/0x520
[ 2475.381627]  ? io_prep_rw+0x7f5/0x1050
[ 2475.382523]  io_submit_sqes+0x44aa/0x8610
[ 2475.383508]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2475.384638]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2475.385743]  ? find_held_lock+0x2c/0x110
[ 2475.386669]  ? io_submit_sqes+0x8610/0x8610
[ 2475.387654]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2475.388743]  ? wait_for_completion_io+0x270/0x270
[ 2475.389876]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2475.390925]  ? vfs_write+0x354/0xb10
[ 2475.391773]  ? fput_many+0x2f/0x1a0
[ 2475.392599]  ? ksys_write+0x1a9/0x260
[ 2475.393470]  ? __ia32_sys_read+0xb0/0xb0
[ 2475.394391]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2475.395574]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2475.396752]  do_syscall_64+0x33/0x40
[ 2475.397609]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2475.398783] RIP: 0033:0x7fd05c70ab19
[ 2475.399627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2475.403792] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2475.405531] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2475.407152] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2475.408770] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2475.410391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2475.412019] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:10:22 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

05:10:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB="00000000de464f2ff95ed06f4f5e64546c5ab77eb88f9cc93b4bac50a891542ff850071102301ed1d60b64e2238fa2ce", @ANYRES16=r1, @ANYBLOB="020128bd7000070000007900000008000300", @ANYRES32=r2, @ANYBLOB="0c009900000000f0340000000400f4000400f4000400f4000400f4000400f400"], 0x3c}}, 0x8000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1, r3}}, 0x10001)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f00000000c0)='comm\x00')
getpgid(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x80}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008048)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000500)={0x84, 0x0, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x70, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x507}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x52}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x80}, 0x4)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendfile(r5, r6, 0x0, 0xffff)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(r7, 0xc020662a, &(0x7f0000000100)={0xfffffffeffd, 0x4})

05:10:22 executing program 7:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(r0, &(0x7f0000000140)='./file0\x00', 0x181000, 0x145)
openat(r1, &(0x7f00000004c0)='./file0\x00', 0x80001, 0xa)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x2d, &(0x7f0000000080)={&(0x7f00000006c0)={0x28, 0x18, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0xc, 0x12, 0x0, 0x0, @u64=0x2}]}, 0x28}}, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0xa000, 0x40)
mount$9p_fd(0x0, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x8, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}], [{@obj_role={'obj_role', 0x3d, '[f'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@smackfshat}, {@smackfsfloor={'smackfsfloor', 0x3d, '-@\x00'}}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@audit}]}})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r4}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r5=>0x0, <r6=>0x0})
mq_timedsend(r4, &(0x7f0000000140), 0x0, 0x20, &(0x7f00000001c0)={r5, r6+60000000})
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r8 = openat(r2, &(0x7f00000002c0)='./file0\x00', 0x301000, 0x180)
ioctl$PERF_EVENT_IOC_DISABLE(r8, 0x2401, 0x5)
renameat2(r7, &(0x7f00000000c0)='./file0\x00', r7, &(0x7f0000000280)='./file1\x00', 0x2)
openat(r7, &(0x7f0000000300)='./file1\x00', 0x0, 0x0)

05:10:22 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0)

05:10:22 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0)

05:10:22 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000500dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:22 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0)

05:10:22 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18000000, 0x0, 0x0, 0x0)

[ 2493.103460] FAULT_INJECTION: forcing a failure.
[ 2493.103460] name failslab, interval 1, probability 0, space 0, times 0
[ 2493.105929] CPU: 1 PID: 12423 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2493.107404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2493.109149] Call Trace:
[ 2493.109727]  dump_stack+0x107/0x167
[ 2493.110506]  should_fail.cold+0x5/0xa
[ 2493.111319]  ? create_object.isra.0+0x3a/0xa20
[ 2493.112290]  should_failslab+0x5/0x20
[ 2493.113093]  kmem_cache_alloc+0x5b/0x310
[ 2493.113986]  create_object.isra.0+0x3a/0xa20
[ 2493.114917]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2493.115996]  __kmalloc+0x16e/0x390
[ 2493.116754]  io_setup_async_rw+0x180/0x580
[ 2493.117666]  ? iov_iter_restore+0x195/0x3a0
[ 2493.118586]  io_read+0x775/0x11e0
[ 2493.119324]  ? __is_insn_slot_addr+0x14c/0x290
[ 2493.120305]  ? kernel_text_address+0xf2/0x120
[ 2493.121261]  ? unwind_get_return_address+0x55/0xa0
[ 2493.122308]  ? create_prof_cpu_mask+0x20/0x20
[ 2493.123251]  ? kiocb_done+0xc90/0xc90
[ 2493.124057]  ? mark_lock+0xf5/0x2df0
[ 2493.124854]  ? lock_chain_count+0x20/0x20
[ 2493.125740]  ? __lock_acquire+0xbb1/0x5b00
[ 2493.126660]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2493.127768]  ? SOFTIRQ_verbose+0x10/0x10
[ 2493.128622]  ? kasan_save_stack+0x1b/0x40
[ 2493.129504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2493.130577]  ? __io_queue_sqe+0x666/0x9d0
[ 2493.131462]  ? __lock_acquire+0xbb1/0x5b00
[ 2493.132367]  io_issue_sqe+0x2e8a/0x77b0
[ 2493.133221]  ? perf_trace_lock+0xac/0x490
[ 2493.134109]  ? SOFTIRQ_verbose+0x10/0x10
[ 2493.134976]  ? io_connect+0x610/0x610
[ 2493.135786]  ? lock_acquire+0x197/0x470
[ 2493.136625]  ? find_held_lock+0x2c/0x110
[ 2493.137503]  ? __fget_files+0x2cf/0x520
[ 2493.138348]  ? lock_downgrade+0x6d0/0x6d0
[ 2493.139232]  __io_queue_sqe+0x90/0x9d0
[ 2493.140070]  ? io_issue_sqe+0x77b0/0x77b0
[ 2493.140949]  ? __fget_files+0x2f8/0x520
[ 2493.141804]  ? io_prep_rw+0x7f5/0x1050
[ 2493.142638]  io_submit_sqes+0x44aa/0x8610
[ 2493.143556]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2493.144606]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2493.145636]  ? find_held_lock+0x2c/0x110
[ 2493.146497]  ? io_submit_sqes+0x8610/0x8610
[ 2493.147414]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2493.148433]  ? wait_for_completion_io+0x270/0x270
[ 2493.149461]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2493.150443]  ? vfs_write+0x354/0xb10
[ 2493.151230]  ? fput_many+0x2f/0x1a0
[ 2493.152008]  ? ksys_write+0x1a9/0x260
[ 2493.152812]  ? __ia32_sys_read+0xb0/0xb0
[ 2493.153686]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2493.154797]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2493.155889]  do_syscall_64+0x33/0x40
[ 2493.156676]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2493.157768] RIP: 0033:0x7fd05c70ab19
[ 2493.158555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2493.162451] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2493.164058] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2493.165589] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2493.167108] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2493.168619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2493.170137] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2493.175670] loop7: detected capacity change from 0 to 262144
05:10:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000600dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2493.201735] 9pnet: Insufficient options for proto=fd
05:10:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e000000, 0x0, 0x0, 0x0)

[ 2493.244591] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
[ 2493.308646] EXT4-fs error (device loop7): ext4_add_entry:2350: inode #2: comm syz-executor.7: Directory hole found for htree leaf block 0
05:10:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4, 0x0, 0x0)

[ 2493.355810] EXT4-fs error (device loop7): ext4_add_entry:2350: inode #2: comm syz-executor.7: Directory hole found for htree leaf block 0
05:10:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000700dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:23 executing program 7:
r0 = syz_io_uring_setup(0x677d, &(0x7f0000000180)={0x0, 0x8378, 0x8, 0xfffffffd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_io_uring_submit(r3, r2, &(0x7f0000000240)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r4, 0x0, &(0x7f0000000100)='./file0\x00', 0x10, 0x801, 0x23456}, 0x48001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

05:10:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x5, 0x0, 0x0)

05:10:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000800dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:37 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

05:10:37 executing program 7:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)=<r0=>0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {<r3=>0xee00, 0xee00}}, './file0/file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001700)=ANY=[@ANYBLOB="010000009bd77e7d3db3c295", @ANYRES32, @ANYRES32=r3, @ANYRES32=0xee01, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955a9ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a92740fbed0519a0fe8fb2bb1420fa5a24997c0cf4682cd464c3bcd44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e2c77577a1157a58a7edab4a0981d3549776f00"/210])
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xb62)
syz_io_uring_submit(0x0, r0, &(0x7f00000002c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x6003, @fd, 0x0, 0x0, 0x0, 0xe, 0x1, {0x1}}, 0x9)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000000c0)={0x14, 0x12, 0x69844ea0a6ddcd11}, 0x14}}, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x4000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = dup(r5)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(r6, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4)
dup2(r2, r4)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@private, @in=@initdev}}, {{@in6=@dev}, 0x0, @in6}}, &(0x7f0000000280)=0xe8)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

05:10:37 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0)

[ 2507.416889] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
05:10:37 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6, 0x0, 0x0)

05:10:37 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

05:10:37 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0)

05:10:37 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0xc, &(0x7f0000000000)=0xba, 0x4)
sendmsg$nl_generic(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000001140)={0x2c, 0x1e, 0x69844ea0a6ddcd11, 0x70bd2c, 0x0, {0xf}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x8, 0x2003, 0x0, 0x0, @uid}, @typed={0xc, 0x4, 0x0, 0x0, @u64=0x1}]}]}, 0x2c}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r1, &(0x7f0000001200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xfffffffffffffffe, &(0x7f00000011c0)={&(0x7f00000013c0)={0x1c, r2, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8}, @val={0x0, 0x99, {0x9, 0x73}}}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000080)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001380)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000001300)=@x25, 0x0, 0x0, 0x1, {0x0, r4}}, 0x6)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001240)=ANY=[@ANYBLOB="180000009139a860c765414b0ee08ffcbb798b9540c852e897de68bc051cf9", @ANYRES16=r3, @ANYBLOB="0b0b00000000000000000100000004000180"], 0x18}}, 0x0)
pipe2(&(0x7f0000000000)={0x0, <r6=>0x0}, 0x80800)
writev(r5, &(0x7f0000001280)=[{&(0x7f0000000140)="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", 0xfffffffffffffdeb}, {&(0x7f0000001180)="6d6a7f9ee452a13d761d39891adeab596fcd", 0x12}], 0x2)
fcntl$setpipe(r6, 0x407, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file0\x00'})
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x3ffffe00)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r7, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r7, &(0x7f00000001c0)=ANY=[], 0xfdef)

05:10:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c001800dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2507.457511] FAULT_INJECTION: forcing a failure.
[ 2507.457511] name failslab, interval 1, probability 0, space 0, times 0
[ 2507.460241] CPU: 0 PID: 12487 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2507.461864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2507.463805] Call Trace:
[ 2507.464430]  dump_stack+0x107/0x167
[ 2507.465280]  should_fail.cold+0x5/0xa
[ 2507.466181]  ? create_object.isra.0+0x3a/0xa20
[ 2507.467249]  should_failslab+0x5/0x20
[ 2507.468148]  kmem_cache_alloc+0x5b/0x310
[ 2507.469110]  create_object.isra.0+0x3a/0xa20
[ 2507.470140]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2507.471332]  __kmalloc+0x16e/0x390
[ 2507.472169]  io_setup_async_rw+0x180/0x580
[ 2507.473153]  ? iov_iter_restore+0x195/0x3a0
[ 2507.474170]  io_read+0x775/0x11e0
[ 2507.474981]  ? __is_insn_slot_addr+0x14c/0x290
[ 2507.476050]  ? kernel_text_address+0xf2/0x120
[ 2507.477102]  ? unwind_get_return_address+0x55/0xa0
[ 2507.478249]  ? create_prof_cpu_mask+0x20/0x20
[ 2507.479289]  ? kiocb_done+0xc90/0xc90
[ 2507.480172]  ? mark_lock+0xf5/0x2df0
[ 2507.481045]  ? lock_chain_count+0x20/0x20
[ 2507.482016]  ? __lock_acquire+0xbb1/0x5b00
[ 2507.483024]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2507.484239]  ? SOFTIRQ_verbose+0x10/0x10
[ 2507.485176]  ? kasan_save_stack+0x1b/0x40
[ 2507.486143]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2507.487324]  ? __io_queue_sqe+0x666/0x9d0
[ 2507.488291]  ? __lock_acquire+0xbb1/0x5b00
[ 2507.489280]  io_issue_sqe+0x2e8a/0x77b0
[ 2507.490222]  ? perf_trace_lock+0xac/0x490
[ 2507.491184]  ? SOFTIRQ_verbose+0x10/0x10
[ 2507.492133]  ? io_connect+0x610/0x610
[ 2507.493025]  ? lock_acquire+0x197/0x470
[ 2507.493961]  ? find_held_lock+0x2c/0x110
[ 2507.494913]  ? __fget_files+0x2cf/0x520
[ 2507.495838]  ? lock_downgrade+0x6d0/0x6d0
[ 2507.496807]  __io_queue_sqe+0x90/0x9d0
[ 2507.497729]  ? io_issue_sqe+0x77b0/0x77b0
[ 2507.498689]  ? __fget_files+0x2f8/0x520
[ 2507.499618]  ? io_prep_rw+0x7f5/0x1050
[ 2507.500529]  io_submit_sqes+0x44aa/0x8610
[ 2507.501540]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2507.502699]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2507.503821]  ? find_held_lock+0x2c/0x110
[ 2507.504774]  ? io_submit_sqes+0x8610/0x8610
[ 2507.505796]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2507.506917]  ? wait_for_completion_io+0x270/0x270
[ 2507.508044]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2507.509121]  ? vfs_write+0x354/0xb10
[ 2507.509994]  ? fput_many+0x2f/0x1a0
[ 2507.510842]  ? ksys_write+0x1a9/0x260
[ 2507.511728]  ? __ia32_sys_read+0xb0/0xb0
[ 2507.512679]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2507.513905]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2507.515108]  do_syscall_64+0x33/0x40
[ 2507.515974]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2507.517171] RIP: 0033:0x7fd05c70ab19
[ 2507.518115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2507.522629] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2507.524405] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2507.526074] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2507.527737] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2507.529400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2507.531066] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2507.557798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2507.558815] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2507.560097] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:10:37 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7, 0x0, 0x0)

05:10:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c001c00dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2507.579260] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
05:10:37 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24000000, 0x0, 0x0, 0x0)

05:10:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c006500dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:10:37 executing program 5:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x2, 0x7ffbfffc}]})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
r2 = dup(r0)
splice(r1, &(0x7f0000000040)=0x1, r2, &(0x7f0000000080)=0x80000000, 0x1, 0x1)
set_mempolicy(0x3, &(0x7f0000000000)=0xffff, 0x4)

05:10:37 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x8, 0x0, 0x0)

05:10:37 executing program 7:
prlimit64(0x0, 0x9, &(0x7f00000017c0), 0x0)
r0 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x6, 0xf9, 0x3f, 0x8, 0x0, 0x4, 0x11000, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x200, 0x4, @perf_bp={&(0x7f0000000100), 0x6}, 0x18440, 0x100000000, 0xff, 0x0, 0x1000, 0xffffffc1, 0xa69, 0x0, 0x1, 0x0, 0xf8}, 0x0, 0xb, 0xffffffffffffffff, 0xb)
prlimit64(r0, 0xa, &(0x7f00000000c0)={0xff, 0x40}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000004c0)={0x0, 0x80, 0x3, 0x0, 0xdb, 0x8, 0x0, 0x9, 0x0, 0x9, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={0x0, 0xc}, 0xc00, 0x1, 0x1, 0x5, 0x8, 0xffffffff, 0x9, 0x0, 0xffff, 0x0, 0x20000000000}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x1, &(0x7f0000000200)={0x0, 0x2}, 0x0)
prlimit64(0xffffffffffffffff, 0xd, 0x0, &(0x7f0000000080))
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001c00))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_group_source_req(r1, 0x0, 0x4, 0x0, 0x0)
r2 = getpgid(r0)
prlimit64(r2, 0xe, &(0x7f0000000040)={0x401, 0x10000}, &(0x7f0000000240))
connect$inet(r1, &(0x7f0000000140)={0x2, 0xfffd, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10)
io_setup(0x2d47, &(0x7f0000000000))

05:10:37 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c00f000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2507.938659] kauditd_printk_skb: 4 callbacks suppressed
[ 2507.938670] audit: type=1326 audit(1750396237.827:144): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12507 comm="syz-executor.5" exe="/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4807960b19 code=0x7ffb0000
05:10:53 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

05:10:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a000000, 0x0, 0x0, 0x0)

05:10:53 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$setstatus(r0, 0x4, 0xc00)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback, 0x10000}, 0x1c)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r0, 0xf505, 0x0)

05:10:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000003dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2523.668374] FAULT_INJECTION: forcing a failure.
[ 2523.668374] name failslab, interval 1, probability 0, space 0, times 0
[ 2523.670154] CPU: 0 PID: 12529 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2523.671223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2523.672502] Call Trace:
[ 2523.672921]  dump_stack+0x107/0x167
[ 2523.673488]  should_fail.cold+0x5/0xa
[ 2523.674085]  ? create_object.isra.0+0x3a/0xa20
[ 2523.674955]  should_failslab+0x5/0x20
[ 2523.675539]  kmem_cache_alloc+0x5b/0x310
[ 2523.676173]  create_object.isra.0+0x3a/0xa20
[ 2523.676848]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2523.677636]  kmem_cache_alloc_trace+0x151/0x320
[ 2523.678367]  __io_queue_sqe+0x666/0x9d0
[ 2523.678985]  ? io_issue_sqe+0x77b0/0x77b0
[ 2523.679622]  ? __fget_files+0x2f8/0x520
[ 2523.680239]  ? io_prep_rw+0x7f5/0x1050
[ 2523.680843]  io_submit_sqes+0x44aa/0x8610
[ 2523.681508]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2523.682279]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2523.683021]  ? find_held_lock+0x2c/0x110
[ 2523.683650]  ? io_submit_sqes+0x8610/0x8610
[ 2523.684321]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2523.685061]  ? wait_for_completion_io+0x270/0x270
[ 2523.685813]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2523.686522]  ? vfs_write+0x354/0xb10
[ 2523.687095]  ? fput_many+0x2f/0x1a0
[ 2523.687652]  ? ksys_write+0x1a9/0x260
[ 2523.688236]  ? __ia32_sys_read+0xb0/0xb0
[ 2523.688860]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2523.689661]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2523.690458]  do_syscall_64+0x33/0x40
[ 2523.691026]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2523.691809] RIP: 0033:0x7fd05c70ab19
[ 2523.692374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2523.695190] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2523.696356] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2523.697450] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2523.698551] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2523.699640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2523.700730] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:10:53 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0)

05:10:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xa, 0x0, 0x0)

05:10:53 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="240000001200010300000000000000000000000008000080000000000800008004001200"], 0x24}}, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x30, 0x0, 0x1, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xfffffffa, 0x61}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf7}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x44010)
r5 = dup3(r2, r2, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0xfffffffc, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r6=>0x0})
dup3(r5, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, 0x0, 0x5, 0xfffffffc, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r7)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r9=>0x0})
dup3(r7, r7, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r8, 0x5, 0xfffffffc, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r2, &(0x7f0000000600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)={0x20, 0x0, 0x800, 0x7, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4020051}, 0xc0)

05:10:53 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa00, 0x0, 0x0, 0x0)

05:10:53 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xc, 0x0, 0x0)

05:10:53 executing program 5:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x100, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000005c0)=ANY=[])
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=ANY=[@ANYBLOB="24000000100001000000000000000096000009000500000000000000050000804800005bdf87399f088209ee1e3e3ecd799ab580d9692a4c3dc12b855173ed2e9f93fc3bbf050c4209bdfb1544969b27bcd01a38a4e5ebe04dd1e1d7fb6705f297087dcbcd7675253395329744739d96eda915556e9429c80f9e751f0785770941bc9521b15d8570b89784466152c6f1968c71182f1305181a06216e1c41c8a9854888a3a905fbaae49510319bec010d4dd1c4b683c289630df03c198c62f0c2ea0e56"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000900)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="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"])
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000580)={{0x0, 0x1, 0x4, 0x3, 0x8, 0x43, 0x7, 0x5, 0x180000, 0x7159, 0x7, 0x3, 0x1f, 0x3ff, 0x6}, 0x48, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
sendmsg$AUDIT_GET_FEATURE(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5008c00c}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x3fb, 0x800, 0x70bd2a, 0x25dfdbfc, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc004}, 0x884)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r3)
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, &(0x7f0000000400), &(0x7f0000000440)=0x10)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000640)=0xe, 0x100000)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x92180, 0x1)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000540)={0x8, 'veth0_macvtap\x00', {'dummy0\x00'}, 0xfff9})
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x88100, 0x0)
dup(r4)

05:10:53 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c008004dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2523.837393] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:10:53 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30000000, 0x0, 0x0, 0x0)

[ 2523.898235] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2523.899304] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2523.900408] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2523.924096] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:11:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000005dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:09 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0)

05:11:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x10, 0x0, 0x0)

05:11:09 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x8a020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={&(0x7f0000000140)}, 0x3a20, 0x0, 0x0, 0x4, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = getpgrp(0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x1, 0x2, 0x7f, 0x0, 0xfffffffffffffffb, 0x60496, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0xe3, 0x1}, 0x20000, 0x0, 0x0, 0x9, 0x400, 0xb4, 0x8, 0x0, 0x100, 0x0, 0x200}, r1, 0x4, r0, 0xb)
getpgrp(r1)
r2 = socket$inet(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r2, 0x6, 0x21, 0x0, &(0x7f0000000000))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000002c0), 0x4)
ioctl$sock_ifreq(r3, 0x8942, &(0x7f0000000e00)={'sit0\x00', @ifru_names})
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = dup(r4)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8936, &(0x7f0000000080)={@local, 0x78, r7})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="bc000000", @ANYRES16=0x0, @ANYBLOB="000428bd7000fcdbdf25030000001c00b2f10800030002006ebd8ad20000", @ANYRES32=r7, @ANYBLOB="08000300010000000500030004000000400001801400020067656e65766531000000000000000000140002006c6f00000000000000000000000000001400020000000000000000000000000000000000050002000500000034000180080003000200000014000200626f6e64300000000000000000000000140002006d6163736563300000000000000000000500020000000000"], 0xbc}, 0x1, 0x0, 0x0, 0x4008004}, 0x4004005)
ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f0000000040)={0x9, 0x1, 0x7fff, 0xbccd, 0x4e})
read(0xffffffffffffffff, &(0x7f0000000340)=""/131, 0x83)
ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000300)={@empty, 0x15, r7})

05:11:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36000000, 0x0, 0x0, 0x0)

05:11:09 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0)

[ 2539.546642] FAULT_INJECTION: forcing a failure.
[ 2539.546642] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.549253] CPU: 1 PID: 12582 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2539.550805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
05:11:09 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

05:11:09 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x46e2, 0x102)
execveat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000840)=[&(0x7f0000000140)=']\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='security.capability\x00', &(0x7f0000000340)='security.capability\x00', &(0x7f00000003c0)='wlan0\x00', &(0x7f0000000440)='\xd7,+[-&@\x00', &(0x7f0000000c40)='\x9c)Q#\x18?\xe1\x9d\xf8\xb6\x04\x9d\x9c\xd2\xa0\x012\x80\x8d\x83\x8d\x8d\x03\x11\xc7\xbd\xa4o\xafo\x85F\xcd\xd1\xce\x94U\x9e\xfe\xa0\x14\xa8\xb03:\xc7\xe2\xb7\xc4ux\xef7\x0f$\xf2\xe1\x98\xcb\x0e\x02\xe7=I[Bb\x86\xd3\x11\xd0\x18CS\x8euz_;\f\xdf\xa2,\x0etQ\xbc\xa8\x951=\xb2\x99v\x1d\xee\x14\xe4\xa1<+\ni&8\x1f\xc7\x8a\xcf\x90\x9e\x96\xef\xfarB\xc3\x13\f\x06\xe6X\x06\xece\x8c\x8b\x84X\x97\x03)\xdd\x9cf0V\x8cN\xab\xef\xfe\x87Q_\xaa\x9eT>\x02\xf5\xb7M\xcev\x1f\xda)V\x8a\xb9\xae\x187l\xf7t\xab\xe2\x15a\x95u^!\xa5\xfbbq\xa34\xacc1\xf2\xb2im\xfe\x15\xb0\x9d\xb0L\x99\x01k,\xc6u\xefn\x03\x17\xa1\xdc:\xf5)x\xa6\x85z\xfa\x8a2\x93/\xc0\xbe\xf2\xf3\x97\xa8\xb8-,\xf1\x87\xd1\xf9\xf4\xb9\xad\xa7\x96#\xcf\x9b\xbaI\xa5\xc6n\xc6[\xb7?\xd7\xa0\x0e\x93%@{\xce\xbf\x91]\xf4\x9d\x9a\xd9\xa1b\x8fF\xbb\xa6\xf9\x93\xa3\xc7\'\\\x95\x06\\\xcf\xf5o\xec'], &(0x7f0000000440), 0x1000)
fallocate(0xffffffffffffffff, 0x70, 0x0, 0xffffffffffffffff)
ftruncate(r0, 0x1000003)
preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000640)=""/162, 0xa2}, {&(0x7f0000000b80)=""/145, 0x91}, {&(0x7f0000000b00)=""/108, 0x6c}], 0x3, 0x1, 0x8)
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x73, 0x0, @perf_bp={0x0}, 0x8, 0x2, 0x400, 0x3, 0x2, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000d80)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8)
syz_io_uring_setup(0x132, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000053740)={0x101, [{}, {}, {0x0, <r1=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r3=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {<r4=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r5=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r6=>0x0}], 0x2, "67bd6e190f77fb"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004e480)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {0x0, r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}], 0x25, "69320a5f88403a"})
clone3(&(0x7f0000000740)={0x40092340, &(0x7f0000000480)=<r7=>0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000000700)}, 0x58)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f00000007c0)={0xfffffffd, 0x81, 0x667, 0x3f, 0x8})
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000880)='system_u:object_r:lost_found_t:s0\x00', 0x22, 0x79f05f8871bdc386)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000009c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000940)={0x400, 0x1c, 0x1}, &(0x7f0000000980)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

[ 2539.552753] Call Trace:
[ 2539.553401]  dump_stack+0x107/0x167
[ 2539.554202]  should_fail.cold+0x5/0xa
[ 2539.555018]  ? __io_queue_sqe+0x666/0x9d0
[ 2539.555899]  should_failslab+0x5/0x20
[ 2539.556702]  kmem_cache_alloc_trace+0x55/0x320
[ 2539.557661]  ? lock_downgrade+0x6d0/0x6d0
[ 2539.558555]  __io_queue_sqe+0x666/0x9d0
[ 2539.559403]  ? io_issue_sqe+0x77b0/0x77b0
[ 2539.560280]  ? __fget_files+0x2f8/0x520
[ 2539.561122]  ? io_prep_rw+0x7f5/0x1050
[ 2539.561960]  io_submit_sqes+0x44aa/0x8610
[ 2539.562865]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2539.563916]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2539.564940]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2539.566058]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2539.567053]  ? trace_hardirqs_on+0x5b/0x180
[ 2539.567986]  ? io_submit_sqes+0x8610/0x8610
[ 2539.568941]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2539.569930]  ? finish_task_switch+0x126/0x5d0
[ 2539.570909]  ? finish_task_switch+0xef/0x5d0
[ 2539.571876]  ? __switch_to+0x572/0xf70
[ 2539.572748]  ? __switch_to_asm+0x3a/0x60
[ 2539.573630]  ? __switch_to_asm+0x34/0x60
[ 2539.574539]  ? __schedule+0x82c/0x1ea0
[ 2539.575389]  ? io_schedule_timeout+0x140/0x140
[ 2539.576385]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2539.577398]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2539.578572]  ? ksys_write+0x1a9/0x260
[ 2539.579397]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2539.580504]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2539.581601]  do_syscall_64+0x33/0x40
[ 2539.582414]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2539.583505] RIP: 0033:0x7fd05c70ab19
[ 2539.584297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.588218] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2539.589830] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2539.591355] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2539.592897] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.594423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2539.595926] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:11:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000006dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x12, 0x0, 0x0)

05:11:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c000000, 0x0, 0x0, 0x0)

05:11:09 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x8a020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={&(0x7f0000000140)}, 0x3a20, 0x0, 0x0, 0x4, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = getpgrp(0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x1, 0x2, 0x7f, 0x0, 0xfffffffffffffffb, 0x60496, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0xe3, 0x1}, 0x20000, 0x0, 0x0, 0x9, 0x400, 0xb4, 0x8, 0x0, 0x100, 0x0, 0x200}, r1, 0x4, r0, 0xb)
getpgrp(r1)
r2 = socket$inet(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r2, 0x6, 0x21, 0x0, &(0x7f0000000000))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000002c0), 0x4)
ioctl$sock_ifreq(r3, 0x8942, &(0x7f0000000e00)={'sit0\x00', @ifru_names})
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = dup(r4)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8936, &(0x7f0000000080)={@local, 0x78, r7})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="bc000000", @ANYRES16=0x0, @ANYBLOB="000428bd7000fcdbdf25030000001c00b2f10800030002006ebd8ad20000", @ANYRES32=r7, @ANYBLOB="08000300010000000500030004000000400001801400020067656e65766531000000000000000000140002006c6f00000000000000000000000000001400020000000000000000000000000000000000050002000500000034000180080003000200000014000200626f6e64300000000000000000000000140002006d6163736563300000000000000000000500020000000000"], 0xbc}, 0x1, 0x0, 0x0, 0x4008004}, 0x4004005)
ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f0000000040)={0x9, 0x1, 0x7fff, 0xbccd, 0x4e})
read(0xffffffffffffffff, &(0x7f0000000340)=""/131, 0x83)
ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000300)={@empty, 0x15, r7})

05:11:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000007dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:09 executing program 7:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0)

05:11:09 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0/file1\x00'})
rename(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000240)='./file0/file1\x00')

05:11:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x18, 0x0, 0x0)

05:11:23 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

05:11:23 executing program 5:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_submit(0x0, 0x1, &(0x7f0000000400)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x42, 0xffffffffffffffff, &(0x7f0000000540)="4fa961a32c46292c4c203b03c6cfcb7f41a36b2033c451524efa095f3259d324fe60cf5baa606c7c29d5626c6a425a3357a6ef9b122793056fe62dc737af44a1070dcbaede3f1a1a803aeec79b506e019ba9a0faad0ffeddee88e9c7f880a2b88dd7ec8a16c3670691b02178a9efe72a78120600fe8be129a52b1b4d82cc8adf2f88522df22ee2ca034bd40b6be1e2b77c7b9594a599c877", 0x98, 0x0, 0x0, 0x3}])
syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, 0x0)
timer_delete(0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x7f}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0)
clock_gettime(0x4, &(0x7f0000000380)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000440)={{}, {r1, r2+60000000}}, &(0x7f0000000700))
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r3=>0x0)
timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @thr={&(0x7f0000000600)="1a90741b478736dcb3b315064fc9e72c4608370b13bc2cb637529112fc303e1776468566db550164e33a10b0631194d0c525a6de03dea72ca7919d9f8026f6731bde01f3232df675dccf6cfdc168550c74433af885e6c95d44c46a6227103177f847898edf0b69b5bb4ce7cb18c9b532190cab9007de662870fd202b7c55fc84576b9e25c32997e5ebfb4bf56dacbc75625e461c5efcef9c8d5ad29e03c5acb0699a5bf8fca88e223ab1b91bd8b79f91aeddb32d54049112fa", &(0x7f00000006c0)="d268db7656a375b39a1a8696902ef074b8ab"}}, &(0x7f0000000340))
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000040))
clock_gettime(0x0, &(0x7f00000000c0))
clock_gettime(0x0, &(0x7f0000000100))
timer_gettime(0x0, &(0x7f0000000280))
timer_create(0x6, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r3}, &(0x7f00000002c0))
timer_gettime(0x0, &(0x7f0000000080))
timer_delete(0x0)
clone3(&(0x7f0000000740)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f00000007c0), &(0x7f00000001c0)='./file0\x00', 0x7ff, 0x800}, 0x800)
fcntl$dupfd(r0, 0x0, r0)

05:11:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c007c0adc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:23 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0xb65, @mcast2, 0xfffffffc}, 0x1c)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="00000002000004002e2f6669"])
r3 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='mand\x00', &(0x7f00000003c0)='-\xfcx{\xe6\xac\xc8\xdf\x8e;\xb4Wy\xbea\xac2@\xa7\\\x98\x1f\x9d\x00\x00\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c00, 0x0)
ioctl$LOOP_CHANGE_FD(r4, 0x4c06, 0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="280000002000210c00000000000000000200000008000300", @ANYRES32=0x0, @ANYBLOB="0c001141470a68c0579cc500910e831586ea76a7e5ed35c1ac03021e87dab7edd8a4924f0e2e444ca2e4cd321fbe48303101517526e7ea0edc3afd2f015266a7fe7d89db9731e9eacd583510690e4776976d3530f02393df5a36d689cfd2f4bb094a4d6c4b71c57b92c5632c304ff7432db3d56391ee4c1a644c908bc466850da21d7f182cc3d2bf"], 0x28}}, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bdf48f0a1ce5690e842544456d6eb93796473b53c5e4780ad41e8491cc6d"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x20040000)
fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000340)=ANY=[@ANYBLOB="0100050001000000180000b1", @ANYRES32, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5)

05:11:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43000000, 0x0, 0x0, 0x0)

05:11:23 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0)

05:11:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1e, 0x0, 0x0)

05:11:23 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x10, 0x0, 0x0, 0x0)

[ 2553.895201] FAULT_INJECTION: forcing a failure.
[ 2553.895201] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2553.898256] CPU: 1 PID: 12628 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2553.900042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2553.900262] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=32 sclass=netlink_tcpdiag_socket pid=12623 comm=syz-executor.7
[ 2553.902187] Call Trace:
[ 2553.902219]  dump_stack+0x107/0x167
[ 2553.902249]  should_fail.cold+0x5/0xa
[ 2553.906302]  _copy_to_iter+0x264/0x12d0
[ 2553.907350]  ? seq_read_iter+0xd4d/0x12b0
[ 2553.908417]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2553.909676]  ? __virt_addr_valid+0x170/0x5d0
[ 2553.910840]  ? __check_object_size+0x319/0x440
[ 2553.912024]  seq_read_iter+0xdcb/0x12b0
[ 2553.913083]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2553.914416]  proc_reg_read_iter+0x20a/0x2e0
[ 2553.915396]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2553.916562]  io_read+0x2dc/0x11e0
[ 2553.917350]  ? __is_insn_slot_addr+0x14c/0x290
[ 2553.918395]  ? kernel_text_address+0xf2/0x120
[ 2553.919411]  ? unwind_get_return_address+0x55/0xa0
[ 2553.920517]  ? create_prof_cpu_mask+0x20/0x20
[ 2553.921528]  ? kiocb_done+0xc90/0xc90
[ 2553.922395]  ? mark_lock+0xf5/0x2df0
[ 2553.923246]  ? lock_chain_count+0x20/0x20
[ 2553.924182]  ? __lock_acquire+0xbb1/0x5b00
[ 2553.925166]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2553.926356]  ? SOFTIRQ_verbose+0x10/0x10
[ 2553.927271]  ? kasan_save_stack+0x1b/0x40
[ 2553.928209]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2553.929356]  ? __io_queue_sqe+0x666/0x9d0
[ 2553.930312]  ? __lock_acquire+0xbb1/0x5b00
[ 2553.931277]  io_issue_sqe+0x2e8a/0x77b0
[ 2553.932186]  ? perf_trace_lock+0xac/0x490
[ 2553.933123]  ? SOFTIRQ_verbose+0x10/0x10
[ 2553.934062]  ? io_connect+0x610/0x610
[ 2553.934932]  ? lock_acquire+0x197/0x470
[ 2553.935831]  ? find_held_lock+0x2c/0x110
[ 2553.936756]  ? __fget_files+0x2cf/0x520
[ 2553.937657]  ? lock_downgrade+0x6d0/0x6d0
[ 2553.938617]  __io_queue_sqe+0x90/0x9d0
[ 2553.939509]  ? io_issue_sqe+0x77b0/0x77b0
[ 2553.940446]  ? __fget_files+0x2f8/0x520
[ 2553.941357]  ? io_prep_rw+0x7f5/0x1050
[ 2553.942254]  io_submit_sqes+0x44aa/0x8610
[ 2553.943234]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2553.944365]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2553.945461]  ? find_held_lock+0x2c/0x110
[ 2553.946400]  ? io_submit_sqes+0x8610/0x8610
[ 2553.947393]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2553.948487]  ? wait_for_completion_io+0x270/0x270
[ 2553.949587]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2553.950651]  ? vfs_write+0x354/0xb10
[ 2553.951495]  ? fput_many+0x2f/0x1a0
[ 2553.952320]  ? ksys_write+0x1a9/0x260
[ 2553.953186]  ? __ia32_sys_read+0xb0/0xb0
[ 2553.954124]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2553.955309]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2553.956482]  do_syscall_64+0x33/0x40
[ 2553.957326]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2553.958491] RIP: 0033:0x7fd05c70ab19
[ 2553.959331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2553.963486] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2553.965210] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2553.966839] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2553.968455] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2553.970083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2553.971700] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:11:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48000000, 0x0, 0x0, 0x0)

05:11:23 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x24, 0x0, 0x0)

05:11:23 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = syz_io_uring_complete(0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4ea0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
clone3(&(0x7f0000000740)={0x40092340, &(0x7f0000000480)=<r2=>0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000000700)}, 0x58)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f00000007c0)={0xfffffffd, 0x81, 0x667, 0x3f, 0x8})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000280)={{r3}, 0x2, &(0x7f0000000240)=[0xffffffff, 0x81], 0x9, 0x4, [0xff, 0x9, 0x7f, 0x9]})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x74})
r5 = socket$packet(0x11, 0x0, 0x300)
ioctl$PTP_PEROUT_REQUEST2(r1, 0x40383d0c, &(0x7f00000000c0)={{0x39}, {0x10001, 0x2}, 0xd46e, 0x1})
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x80000f, 0x11, r1, 0x10ec4000)
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000100)={0x0, 0x100})
openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x8040, 0x80)
ioctl$BLKROGET(0xffffffffffffffff, 0x125e, &(0x7f00000001c0))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

05:11:23 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000018dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:23 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b000000, 0x0, 0x0, 0x0)

05:11:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2a, 0x0, 0x0)

05:11:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c00001cdc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:24 executing program 5:
syz_open_dev$vcsa(0x0, 0x0, 0x14100)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_tables_matches\x00')
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
sendfile(r2, r3, 0x0, 0x100000001)
r5 = dup2(r1, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000040)=ANY=[@ANYBLOB="010000d10a3d9da6d3028194", @ANYRES32=r5, @ANYBLOB="00000000000000002ed518bccf653100"])
pipe(&(0x7f0000000140))
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)

05:11:45 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x30, 0x0, 0x0)

05:11:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000020dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:45 executing program 7:
syz_open_dev$vcsa(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1)
syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_tables_matches\x00')
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
clock_gettime(0x0, &(0x7f0000000440)={<r4=>0x0, <r5=>0x0})
recvmmsg$unix(r3, &(0x7f0000001800)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000340)=""/243, 0xf3}, {&(0x7f00000001c0)=""/49, 0x31}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/113, 0x71}, {&(0x7f0000001580)=""/89, 0x59}], 0x5}}, {{&(0x7f0000001680)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000001700)=""/94, 0x5e}], 0x1, &(0x7f0000001780)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r6=>0x0}}}], 0x60}}], 0x2, 0x40012020, &(0x7f0000001880)={r4, r5+10000000})
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0xcb, 0x1, 0x7, 0x7f, 0x0, 0xfb6b, 0x621, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xbce7719, 0x2, @perf_bp={&(0x7f0000000140), 0xe}, 0x1c60, 0x299fb95f, 0x10001, 0x5, 0x4, 0x1, 0xffff, 0x0, 0x0, 0x0, 0x80}, r6, 0x3, r0, 0x1)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
sendfile(r2, r3, 0x0, 0x100000001)
r7 = dup2(r1, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r7, @ANYBLOB="00000000000000002ed518bccf653100"])
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)

05:11:45 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c000000, 0x0, 0x0, 0x0)

05:11:45 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x3, 0xffffffffffffffff}, 0x9)
r2 = mq_open(&(0x7f0000000100)='wfdno', 0x801, 0x83, &(0x7f0000000200)={0x6, 0x4, 0xb0, 0x7})
write$binfmt_elf64(r2, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'ip6tnl0\x00', &(0x7f00000001c0)={'syztnl2\x00', 0x0, 0x2d, 0x4, 0x1, 0x7ff, 0x0, @local, @private1, 0x8000, 0x20, 0x1f}})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}, 0x7})
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
r3 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r3, @ANYRES32, @ANYRES32, @ANYBLOB="2e2f66696c653000c2045dfd619856a6b9b0a83f05455950a38d505605a78861755ae9df5fd777dfe31b5e5f1fd6cfbe94c36453fb9d4f14d0dddc4386eab26bf2a4024e33ba44084b9c7524939c490a60288ef911f736d7ec46440ab81c7c25dddcc20ed602665916aef4383b07d271f164582e4d8da987baed3ededb10ad1f8f43b2"])
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f0000000080)=0xc0)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$HIDIOCINITREPORT(r7, 0x550c, 0x20000000)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e21, 0x6, @local, 0x9}, 0x1c)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x10c820, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2, @ANYRESHEX=r4, @ANYBLOB="2c771e175db9df", @ANYRESHEX=r5, @ANYBLOB=',\x00'])

05:11:45 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0)

05:11:45 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

05:11:45 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0)

[ 2575.911251] FAULT_INJECTION: forcing a failure.
[ 2575.911251] name failslab, interval 1, probability 0, space 0, times 0
[ 2575.913045] CPU: 1 PID: 12691 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2575.914020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.915202] Call Trace:
[ 2575.915575]  dump_stack+0x107/0x167
[ 2575.916089]  should_fail.cold+0x5/0xa
[ 2575.916629]  ? io_setup_async_rw+0x180/0x580
[ 2575.917248]  should_failslab+0x5/0x20
[ 2575.917777]  __kmalloc+0x72/0x390
[ 2575.918277]  io_setup_async_rw+0x180/0x580
[ 2575.918863]  ? iov_iter_restore+0x195/0x3a0
[ 2575.919471]  io_read+0x775/0x11e0
[ 2575.919958]  ? __is_insn_slot_addr+0x14c/0x290
[ 2575.920598]  ? kernel_text_address+0xf2/0x120
[ 2575.921234]  ? unwind_get_return_address+0x55/0xa0
[ 2575.921916]  ? create_prof_cpu_mask+0x20/0x20
[ 2575.922549]  ? kiocb_done+0xc90/0xc90
[ 2575.923079]  ? mark_lock+0xf5/0x2df0
[ 2575.923606]  ? lock_chain_count+0x20/0x20
[ 2575.924184]  ? __lock_acquire+0xbb1/0x5b00
[ 2575.924795]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2575.925524]  ? SOFTIRQ_verbose+0x10/0x10
[ 2575.926095]  ? kasan_save_stack+0x1b/0x40
[ 2575.926684]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.927397]  ? __io_queue_sqe+0x666/0x9d0
[ 2575.927985]  ? __lock_acquire+0xbb1/0x5b00
[ 2575.928580]  io_issue_sqe+0x2e8a/0x77b0
[ 2575.929149]  ? perf_trace_lock+0xac/0x490
[ 2575.929730]  ? SOFTIRQ_verbose+0x10/0x10
[ 2575.930328]  ? io_connect+0x610/0x610
[ 2575.930869]  ? lock_acquire+0x197/0x470
[ 2575.931424]  ? find_held_lock+0x2c/0x110
[ 2575.932005]  ? __fget_files+0x2cf/0x520
[ 2575.932564]  ? lock_downgrade+0x6d0/0x6d0
[ 2575.933159]  __io_queue_sqe+0x90/0x9d0
[ 2575.933712]  ? io_issue_sqe+0x77b0/0x77b0
[ 2575.934306]  ? __fget_files+0x2f8/0x520
[ 2575.934868]  ? io_prep_rw+0x7f5/0x1050
[ 2575.935420]  io_submit_sqes+0x44aa/0x8610
[ 2575.936036]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2575.936746]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2575.937443]  ? find_held_lock+0x2c/0x110
[ 2575.938014]  ? io_submit_sqes+0x8610/0x8610
[ 2575.938640]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2575.939323]  ? wait_for_completion_io+0x270/0x270
[ 2575.940002]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2575.940652]  ? vfs_write+0x354/0xb10
[ 2575.941178]  ? fput_many+0x2f/0x1a0
[ 2575.941695]  ? ksys_write+0x1a9/0x260
[ 2575.942229]  ? __ia32_sys_read+0xb0/0xb0
[ 2575.942807]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2575.943540]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2575.944269]  do_syscall_64+0x33/0x40
[ 2575.944792]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2575.945513] RIP: 0033:0x7fd05c70ab19
[ 2575.946035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2575.948628] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2575.949693] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2575.950700] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2575.951705] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2575.952702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2575.953703] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:11:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c00003fdc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:45 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65000000, 0x0, 0x0, 0x0)

05:11:45 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x36, 0x0, 0x0)

05:11:45 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000065dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:45 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x20020, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f00000001c0)={0x2, 0x0, 0x0, 0x0})
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="72e8864d064c22c168922209a0d390b91f2281d70ef1908fee6128ed4ae827c155e09102aa0043ec36ac3b076746fd3af57045147a172dae0c81409394d4e20f20c7033e50173dc32078fb6da1193eee00"/96], 0xee)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000180)=ANY=[@ANYBLOB="010064e35805e80d1c2fb901000000010000000000", @ANYRES32=r0, @ANYBLOB="01000000000000002e2f66696c653100"])
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$PTP_SYS_OFFSET_PRECISE(r1, 0xc0403d08, &(0x7f0000000040))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
write$binfmt_script(r3, &(0x7f0000000200)={'#! ', './file1', [{0x20, '/proc/key-users\x00'}, {0x20, '/proc/key-users\x00'}, {0x20, ',\x13&&$'}, {}], 0xa, "d22c0256defd9d41baaa82a70614b965de4bacbedb7a2ee7a856bf8b35e8567c49f9e8129fc18fd72e00a6cc71da7b0f767175a257bebe1a41c262c86b248add41dfa1b82521b30ece2d0e085d32fb21cdd009b07fccc77b6ce3ada3417d3e9690984ca4ea12b332bf4e016e2033c2618eb8b8530a3627c22c14b0c215b13f8c8e3105a1b4cd1203dc3cf43f6cbf22aa679538aae036ad4a02bb8fca01a96a9e484d370b3e6a211142762dce42a721a1bb00f0953779181010b30a57cf8a39581c693a6f61eedb18d1c3dcd7519cea3c29646bb3ac"}, 0x109)

05:11:46 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3c, 0x0, 0x0)

05:11:46 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000a7cdc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:11:46 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68000000, 0x0, 0x0, 0x0)

05:11:46 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
pread64(r0, &(0x7f0000000180)=""/199, 0xc7, 0x1)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x4008040)
r1 = creat(&(0x7f0000000100)='./file1\x00', 0x0)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
fcntl$setstatus(r2, 0x4, 0xf0ac3d2370543000)
r3 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x1c705, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f00000000c0))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendfile(r6, r5, 0x0, 0x80464c453f)
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000003c0)={0x0, 0x8, 0x7})
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, &(0x7f0000000340)={{0xa, 0x4e24, 0x800, @rand_addr=' \x01\x00', 0x6}, {0xa, 0x4e24, 0x1, @private0, 0x1}, 0x100, [0x3ab, 0x0, 0x2, 0x8, 0x4, 0x19, 0xfffffffd, 0x7]}, 0x5c)
fcntl$lock(r3, 0x26, &(0x7f0000000140)={0x2, 0x3, 0xffff, 0x3})
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="980000416724536cdf001d00210c00000000000000000400020081001180cabdd69942ff86268a922047d9b931f72731084d0549ba3c3933c937995472e7f2c4854ccde899bf6e5e124c44777b29b0c0248c91fc2f36ad312fabcd1d5b007bd1df8e075435d45ef1d2286d14eb74dc272eda06b60fbe2433149ed0643222101a57610aa97329fbf38aafba"], 0x98}}, 0x0)

05:12:01 executing program 7:
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x24508)
openat(r0, &(0x7f00000000c0)='./file1\x00', 0x10001, 0x0)
mkdirat(r0, &(0x7f0000001440)='./file1\x00', 0x0)
rmdir(&(0x7f0000000080)='./file1\x00')

05:12:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000480dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:01 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

05:12:01 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0)

05:12:01 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x43, 0x0, 0x0)

05:12:01 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c000000, 0x0, 0x0, 0x0)

05:12:01 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000b80), 0x80, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x1f)

05:12:01 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0)

[ 2591.299320] FAULT_INJECTION: forcing a failure.
[ 2591.299320] name failslab, interval 1, probability 0, space 0, times 0
[ 2591.302073] CPU: 0 PID: 12746 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2591.303778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2591.305797] Call Trace:
[ 2591.306455]  dump_stack+0x107/0x167
[ 2591.307351]  should_fail.cold+0x5/0xa
[ 2591.308281]  ? create_object.isra.0+0x3a/0xa20
[ 2591.309395]  should_failslab+0x5/0x20
[ 2591.310323]  kmem_cache_alloc+0x5b/0x310
[ 2591.311335]  create_object.isra.0+0x3a/0xa20
[ 2591.312403]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.313642]  __kmalloc+0x16e/0x390
[ 2591.314525]  io_setup_async_rw+0x180/0x580
[ 2591.315558]  ? iov_iter_restore+0x195/0x3a0
[ 2591.316616]  io_read+0x775/0x11e0
[ 2591.317465]  ? __is_insn_slot_addr+0x14c/0x290
[ 2591.318591]  ? kernel_text_address+0xf2/0x120
[ 2591.319691]  ? unwind_get_return_address+0x55/0xa0
[ 2591.320886]  ? create_prof_cpu_mask+0x20/0x20
[ 2591.321983]  ? kiocb_done+0xc90/0xc90
[ 2591.322919]  ? mark_lock+0xf5/0x2df0
[ 2591.323841]  ? lock_chain_count+0x20/0x20
[ 2591.324859]  ? __lock_acquire+0xbb1/0x5b00
[ 2591.325939]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2591.327229]  ? SOFTIRQ_verbose+0x10/0x10
[ 2591.328227]  ? kasan_save_stack+0x1b/0x40
[ 2591.329235]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.330481]  ? __io_queue_sqe+0x666/0x9d0
[ 2591.331506]  ? __lock_acquire+0xbb1/0x5b00
[ 2591.332557]  io_issue_sqe+0x2e8a/0x77b0
[ 2591.333541]  ? perf_trace_lock+0xac/0x490
[ 2591.334561]  ? SOFTIRQ_verbose+0x10/0x10
[ 2591.335563]  ? io_connect+0x610/0x610
[ 2591.336503]  ? lock_acquire+0x197/0x470
[ 2591.337475]  ? find_held_lock+0x2c/0x110
[ 2591.338485]  ? __fget_files+0x2cf/0x520
[ 2591.339464]  ? lock_downgrade+0x6d0/0x6d0
[ 2591.340486]  __io_queue_sqe+0x90/0x9d0
[ 2591.341452]  ? io_issue_sqe+0x77b0/0x77b0
[ 2591.342474]  ? __fget_files+0x2f8/0x520
[ 2591.343458]  ? io_prep_rw+0x7f5/0x1050
[ 2591.344422]  io_submit_sqes+0x44aa/0x8610
[ 2591.345480]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2591.346704]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2591.347893]  ? find_held_lock+0x2c/0x110
[ 2591.348892]  ? io_submit_sqes+0x8610/0x8610
[ 2591.349954]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2591.351154]  ? wait_for_completion_io+0x270/0x270
[ 2591.352337]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2591.353480]  ? vfs_write+0x354/0xb10
[ 2591.354393]  ? fput_many+0x2f/0x1a0
[ 2591.355298]  ? ksys_write+0x1a9/0x260
[ 2591.356237]  ? __ia32_sys_read+0xb0/0xb0
[ 2591.357242]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2591.358533]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2591.359800]  do_syscall_64+0x33/0x40
[ 2591.360713]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2591.361971] RIP: 0033:0x7fd05c70ab19
[ 2591.362900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2591.367435] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2591.369310] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2591.371078] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2591.372836] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2591.374607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2591.376363] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:12:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c0000f0dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:01 executing program 7:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010600)="024344303031", 0x6, 0x8800}], 0x0, &(0x7f0000000040))

05:12:01 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74000000, 0x0, 0x0, 0x0)

05:12:01 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x48, 0x0, 0x0)

05:12:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000002dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:01 executing program 5:
memfd_create(&(0x7f0000000340)='\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r0 = syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2ba}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x0, @fd_index}, 0x3)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
finit_module(r3, &(0x7f0000000000)=',\x00', 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_NOP={0x0, 0x2}, 0x9)
io_uring_enter(r0, 0x4eae, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0)

[ 2591.599868] loop7: detected capacity change from 0 to 69632
[ 2591.687189] isofs_fill_super: bread failed, dev=loop7, iso_blknum=34, block=68
05:12:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000003dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2591.743554] loop7: detected capacity change from 0 to 69632
05:12:01 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4b, 0x0, 0x0)

[ 2591.818390] isofs_fill_super: bread failed, dev=loop7, iso_blknum=34, block=68
05:12:01 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a000000, 0x0, 0x0, 0x0)

05:12:01 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000004dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000005dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:17 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x100, 0x6)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
pwrite64(r2, &(0x7f0000000140)="afc9", 0x2, 0xffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x3ba4141e}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r1, 0x8, 0x0, 0x8000)
ftruncate(r2, 0x91)

05:12:17 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0)

05:12:17 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

05:12:17 executing program 7:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, 0x0})
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000580)=ANY=[@ANYBLOB="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"])
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000500))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101982, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
ioctl$LOOP_SET_STATUS(r1, 0x4c00, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f0000000440)={0x0, {}, 0x0, {}, 0x0, 0x12, 0x1d, 0x19, "6e60147ae2fcdc3f1d52584aebeafaa0edd69266edf29bbff612a7a730c97b72b322d0b8aff13a679593d52a3c987ef7c88e49e70f44c10f719a7c0f41774981", "f8258a6ec00c2423b3415e80f5dcc6b04bdfa5322086b2c40bc141347fe2216a", [0x100000001, 0x9]})
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x220000, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xfff, 0x0, 0x13, 0x0, "a33ffde15ac5e3597997ca8986bc6d30fb365a162412350d2dbb5f02e4b9158f3b699d557e93639a919a636fc399cb69327ad1688070049903904fc96628577b", "2f87934459fd43a9829984709a2e821126913d74f3d1ad8285ca2e3a4a403d99"})
creat(&(0x7f0000000040)='./file1\x00', 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000200)=ANY=[])
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x4, &(0x7f0000ffb000/0x3000)=nil)
open(&(0x7f0000000080)='./file2\x00', 0x80, 0x26)
acct(&(0x7f0000000140)='./file0\x00')
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x20082, 0xf4)
acct(&(0x7f0000000380)='./file1\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

05:12:17 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)

05:12:17 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4c, 0x0, 0x0)

05:12:17 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xeffdffff, 0x0, 0x0, 0x0)

[ 2607.531993] FAULT_INJECTION: forcing a failure.
[ 2607.531993] name failslab, interval 1, probability 0, space 0, times 0
[ 2607.533855] CPU: 0 PID: 12812 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2607.534951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2607.536240] Call Trace:
[ 2607.536650]  dump_stack+0x107/0x167
[ 2607.537202]  should_fail.cold+0x5/0xa
[ 2607.537796]  ? __io_queue_sqe+0x666/0x9d0
[ 2607.538427]  should_failslab+0x5/0x20
[ 2607.539028]  kmem_cache_alloc_trace+0x55/0x320
[ 2607.539747]  ? lock_downgrade+0x6d0/0x6d0
[ 2607.540374]  __io_queue_sqe+0x666/0x9d0
[ 2607.540974]  ? io_issue_sqe+0x77b0/0x77b0
[ 2607.541622]  ? __fget_files+0x2f8/0x520
[ 2607.542264]  ? io_prep_rw+0x7f5/0x1050
[ 2607.542882]  io_submit_sqes+0x44aa/0x8610
[ 2607.543543]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2607.544327]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2607.545085]  ? find_held_lock+0x2c/0x110
[ 2607.545734]  ? io_submit_sqes+0x8610/0x8610
[ 2607.546435]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2607.547185]  ? wait_for_completion_io+0x270/0x270
[ 2607.547922]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2607.548664]  ? vfs_write+0x354/0xb10
[ 2607.549242]  ? fput_many+0x2f/0x1a0
[ 2607.549823]  ? ksys_write+0x1a9/0x260
[ 2607.550422]  ? __ia32_sys_read+0xb0/0xb0
[ 2607.551057]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2607.551862]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2607.552668]  do_syscall_64+0x33/0x40
[ 2607.553243]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2607.554047] RIP: 0033:0x7fd05c70ab19
[ 2607.554623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2607.557422] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2607.558574] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2607.559681] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2607.560805] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2607.561905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2607.563025] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:12:17 executing program 5:
r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0xff}}, './file0\x00'})
r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r1, 0x5451)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="0005000000000000040106142b9384acc194db5e0212fa866035729354d71dcc1f0d512f7733e70fb2d4631cffffffff0000000000000000"], 0x38)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae799d5ce00"})
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000008540)=[{{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000400)="0a753fea", 0x4}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="24000000000000002900000032000000fe880000000000000000000000000001cc"], 0x28}}], 0x2, 0x0)
sendfile(r0, r5, &(0x7f0000000000)=0x2, 0x1)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYRES16], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)
sendto(r2, &(0x7f0000000540)="88be5d6641087089c4730608e3169c2f5aa0a80e6f6252bb9cdd8dd6058d6ac9a57161cbadc88ab3a50042c96bf5d7f90ce98b23e578baa86c69cf49bb138c81b9c08068197c225d338f2bac53ca583b1a4afdfce5a0922d01207ae033d6863bef66e6d753bb7383ab33da64d91fe9477e", 0x71, 0x8000, &(0x7f00000005c0)=@ll={0x11, 0x3, 0x0, 0x1, 0x3f, 0x6, @local}, 0x80)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

05:12:17 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x65, 0x0, 0x0)

05:12:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000006dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:17 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ffffff, 0x0, 0x0, 0x0)

[ 2607.758172] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:12:17 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000007dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2607.799753] Process accounting resumed
[ 2607.852386] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2607.853579] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2607.854959] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2607.877691] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:12:17 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x68, 0x0, 0x0)

[ 2607.915101] Process accounting resumed
[ 2623.874426] FAULT_INJECTION: forcing a failure.
[ 2623.874426] name failslab, interval 1, probability 0, space 0, times 0
[ 2623.876515] CPU: 0 PID: 12854 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2623.877737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2623.879246] Call Trace:
[ 2623.879709]  dump_stack+0x107/0x167
[ 2623.880366]  should_fail.cold+0x5/0xa
[ 2623.881050]  ? create_object.isra.0+0x3a/0xa20
[ 2623.881882]  should_failslab+0x5/0x20
[ 2623.882819]  kmem_cache_alloc+0x5b/0x310
[ 2623.883635]  create_object.isra.0+0x3a/0xa20
[ 2623.884423]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2623.885345]  kmem_cache_alloc_trace+0x151/0x320
[ 2623.886185]  ? lock_downgrade+0x6d0/0x6d0
[ 2623.886943]  __io_queue_sqe+0x666/0x9d0
[ 2623.887663]  ? io_issue_sqe+0x77b0/0x77b0
[ 2623.888405]  ? __fget_files+0x2f8/0x520
[ 2623.889118]  ? io_prep_rw+0x7f5/0x1050
[ 2623.889827]  io_submit_sqes+0x44aa/0x8610
[ 2623.890602]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2623.891496]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2623.892363]  ? find_held_lock+0x2c/0x110
[ 2623.893096]  ? io_submit_sqes+0x8610/0x8610
[ 2623.893873]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2623.894740]  ? wait_for_completion_io+0x270/0x270
[ 2623.895616]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2623.896444]  ? vfs_write+0x354/0xb10
[ 2623.897113]  ? fput_many+0x2f/0x1a0
[ 2623.897770]  ? ksys_write+0x1a9/0x260
[ 2623.898453]  ? __ia32_sys_read+0xb0/0xb0
[ 2623.899183]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2623.900118]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2623.901047]  do_syscall_64+0x33/0x40
[ 2623.901716]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2623.902630] RIP: 0033:0x7fd05c70ab19
[ 2623.903305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2623.906559] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2623.907917] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2623.909184] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2623.910466] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2623.911707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2623.911717] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:12:33 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

05:12:33 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfeffffff, 0x0, 0x0, 0x0)

05:12:33 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0)

05:12:33 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x1144a0, &(0x7f0000001480)=ANY=[@ANYBLOB="7472756e733d756e69782c706f73697861636c2c616669643d3078666666666666666666666666663830312c667363616368652c736d61636b6673726f6f743d2a2c736d61636b66736465663de93a9d69e18e253f589e4ceafdfa1b1f036e3d7afa989163788c46a819e9d28a001d2c61707072616973655f747970653d696d617369672c", @ANYRESHEX=r6, @ANYRESDEC=r5])
r7 = syz_io_uring_setup(0x1433, &(0x7f0000000080)={0x0, 0x4772, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f00000011c0))
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0x0, r8, 0x0)
mount$9p_unix(&(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='./file0\x00', &(0x7f0000001340), 0x20810, &(0x7f0000001380)={'trans=unix,', {[{@cache_loose}, {@version_u}, {@version_u}, {@cache_loose}, {@dfltuid={'dfltuid', 0x3d, r4}}], [{@dont_hash}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@subj_user={'subj_user', 0x3d, 'afid'}}, {@euid_lt={'euid<', r8}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}})
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000040)=@reiserfs_2={0x8, 0x2, {0x7, 0x3}}, 0x100100)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/4084, 0xff4}, {&(0x7f0000002e00)=""/4104, 0x1008}], 0x2)

05:12:33 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)

05:12:33 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000008dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:33 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040)=0x89, 0x4)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x2, @private0, 0x80000000}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

05:12:33 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6c, 0x0, 0x0)

05:12:33 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000018dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:33 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x74, 0x0, 0x0)

05:12:33 executing program 5:
statx(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2000, 0x8, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x44)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000240))
syz_mount_image$tmpfs(&(0x7f0000004240), &(0x7f0000004280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="687567653d6e657665722c6d706f6c3d696e7465726c65617665ffff74617469632c6d706f6c3d64656661756c563d7374617469632c687567653d616c776179732c61756469742c657569643d", @ANYRESDEC=r0, @ANYBLOB=',\x00'])

05:12:33 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffdef, 0x0, 0x0, 0x0)

[ 2624.086444] tmpfs: Bad value for 'mpol'
05:12:33 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c00001cdc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:34 executing program 7:
r0 = syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x30, r0, 0x10000000)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r5, &(0x7f0000000080)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r6, 0x0, &(0x7f0000000280)="f46f377dbd6ca7dae7e1c047fe3e2ce041c4af41f850878dfc87d90f4004d1e4b447a80a92b5a23d786e690d369f5b4c8bc81692406be408eaaec6a4ef69fbde9a26314c5e91ff84a1f1dd368e7169598c070059c7317bca4fb1b9e0600a58ac86f920d6ab2c8cbc970f526c9254448c1a64e6aa874def26140e3c3e593a89d9753fc5d136783c1829c7ed0989eb86454895dbf64d4bb96bbc23ceda61572b185d8f8417187e1425e9a9e376dd968ab5b8889f6e74636490de81484ac073b7a85f3845e150825221d598b606f06dcb", 0xcf, 0x20, 0x0, {0x0, r7}}, 0x6)
io_uring_enter(r0, 0x5931, 0x748c, 0x5, 0x0, 0x0)

05:12:34 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000065dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:34 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x4, @mcast2, 0x3}, 0x1c)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000180))
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000000c0)=0x87)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x2, 0x0, 0x0)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd_index=0x4, 0x3ff, 0x0, 0x0, 0x11, 0x1, {0x1, r1}}, 0xff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x23457, 0x0, 0x0, 0x1, {0x0, r1}}, 0x3)
socket$inet6_icmp(0xa, 0x2, 0x3a)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, r2, {0x6}}, './file0\x00'})
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x2000, @fd, 0x4, 0x6, 0x6, 0x0, 0x1, {0x3}}, 0x100)

05:12:48 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0)

05:12:48 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0)

05:12:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc00000001000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:48 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7a, 0x0, 0x0)

05:12:48 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

05:12:48 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 36)

05:12:48 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x74, r1, 0x20, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x20, 0x4a}}}}, [@NL80211_ATTR_REKEY_DATA={0x54, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "fd4073c777b3e12b"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="c9526cc0b9050681dc95f9645743da3a"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="145d203d681af9a4bbeb5781b669c42fea638c3c551d1d4f"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="4f131e1bb0189e511cbc41e8fcfc3b33"}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x2000084}, 0x1)
syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'local'}}}, {@huge_never}, {@nr_blocks={'nr_blocks', 0x3d, [0x65, 0x34, 0x39]}}]})

[ 2638.972399] tmpfs: Bad value for 'mpol'
[ 2638.973755] FAULT_INJECTION: forcing a failure.
[ 2638.973755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2638.975730] CPU: 0 PID: 12911 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2638.976850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2638.978139] Call Trace:
[ 2638.978589]  dump_stack+0x107/0x167
[ 2638.979162]  should_fail.cold+0x5/0xa
[ 2638.979769]  _copy_from_user+0x2e/0x1b0
[ 2638.980395]  iovec_from_user+0x141/0x400
[ 2638.981021]  __import_iovec+0x67/0x590
[ 2638.981620]  ? kfree+0xd7/0x340
[ 2638.982140]  io_import_iovec+0x581/0x1120
[ 2638.982786]  ? io_put_sq_data+0x80/0x250
[ 2638.983425]  ? io_complete_rw+0x230/0x230
[ 2638.984082]  ? io_clean_op+0x30c/0x870
[ 2638.984693]  ? kiocb_done+0x16b/0xc90
[ 2638.985285]  io_read+0xe14/0x11e0
[ 2638.985832]  ? __is_insn_slot_addr+0x14c/0x290
[ 2638.986539]  ? kernel_text_address+0xf2/0x120
[ 2638.987246]  ? unwind_get_return_address+0x55/0xa0
[ 2638.988004]  ? create_prof_cpu_mask+0x20/0x20
[ 2638.988703]  ? kiocb_done+0xc90/0xc90
[ 2638.989297]  ? mark_lock+0xf5/0x2df0
[ 2638.989892]  ? lock_chain_count+0x20/0x20
[ 2638.990563]  ? __lock_acquire+0xbb1/0x5b00
[ 2638.991234]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2638.992045]  ? SOFTIRQ_verbose+0x10/0x10
[ 2638.992668]  ? kasan_save_stack+0x1b/0x40
[ 2638.993305]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2638.994087]  ? __io_queue_sqe+0x666/0x9d0
[ 2638.994739]  ? __lock_acquire+0xbb1/0x5b00
[ 2638.995407]  io_issue_sqe+0x2e8a/0x77b0
[ 2638.996024]  ? perf_trace_lock+0xac/0x490
[ 2638.996685]  ? SOFTIRQ_verbose+0x10/0x10
[ 2638.997314]  ? io_connect+0x610/0x610
[ 2638.997946]  ? lock_acquire+0x197/0x470
[ 2638.998556]  ? find_held_lock+0x2c/0x110
[ 2638.999202]  ? __fget_files+0x2cf/0x520
[ 2638.999811]  ? lock_downgrade+0x6d0/0x6d0
[ 2639.000447]  __io_queue_sqe+0x90/0x9d0
[ 2639.001052]  ? io_issue_sqe+0x77b0/0x77b0
[ 2639.001697]  ? __fget_files+0x2f8/0x520
[ 2639.002313]  ? io_prep_rw+0x7f5/0x1050
[ 2639.002920]  io_submit_sqes+0x44aa/0x8610
[ 2639.003587]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2639.004361]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2639.005106]  ? find_held_lock+0x2c/0x110
[ 2639.005727]  ? io_submit_sqes+0x8610/0x8610
[ 2639.006405]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2639.007145]  ? wait_for_completion_io+0x270/0x270
[ 2639.007876]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2639.008595]  ? vfs_write+0x354/0xb10
[ 2639.009163]  ? fput_many+0x2f/0x1a0
[ 2639.009726]  ? ksys_write+0x1a9/0x260
[ 2639.010316]  ? __ia32_sys_read+0xb0/0xb0
[ 2639.010985]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2639.011797]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2639.012592]  do_syscall_64+0x33/0x40
[ 2639.013160]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2639.013962] RIP: 0033:0x7fd05c70ab19
[ 2639.014531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2639.017324] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2639.018491] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2639.019591] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2639.020697] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2639.021787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2639.022887] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:12:48 executing program 7:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0)

05:12:48 executing program 5:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, @perf_config_ext={0x0, 0x10}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
syz_io_uring_setup(0x24d4f, &(0x7f0000000240)={0x0, 0x3, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0xfffffffffffffffc}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000001a00)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000019c0)={&(0x7f0000000340)=@l2, 0x80, &(0x7f0000001900)=[{&(0x7f0000000640)=""/222, 0xde}, {&(0x7f00000003c0)=""/2, 0x2}, {&(0x7f0000000400)=""/112, 0x70}, {&(0x7f0000000500)=""/128, 0x80}, {0x0}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000001840)=""/166, 0xa6}], 0x7, &(0x7f0000001980)=""/63, 0x3f}, 0x0, 0x12101, 0x1, {0x2}}, 0xdc4c)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000580)=ANY=[@ANYBLOB="37b50b7f09c124e5237bd827a5ff3c85f44cc2197d7a1336652365a1eef58b8c42f6874e14c5097a38a26b9f2741b75f9a958021021141fef703aa8daff58dc6938dc5f7b7cdefe372668b1f8ac9983fac658810693ba952f49103a13ed5a59dc648108a743a0eafa62d5518eec424887ccf890f08dc28a27068da03e30ad7cf253faa327105ba6764bbfe0a2caee0fafd85d05371be674f7604ff5f06be1c691c9f659f3609c6066ea410", @ANYRES32=r0, @ANYRES32, @ANYBLOB="00000000100333676c683100"])
chdir(&(0x7f0000000300)='./file2\x00')
futimesat(0xffffffffffffffff, &(0x7f0000000000)='./mnt\x00', 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x180000030)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='attr\x00')
getdents64(r3, &(0x7f0000001500)=""/4096, 0x1000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYRES32=r3], 0x24}}, 0x40)
preadv(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0xfffe, 0x0)
rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f00000001c0)='./file0\x00')

05:12:48 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0200000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2639.111016] loop5: detected capacity change from 0 to 41948160
05:12:49 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5, 0x0, 0x0)

05:12:49 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffffe, 0x0, 0x0, 0x0)

05:12:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0300000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:49 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x300, 0x0, 0x0)

05:12:49 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0400000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:12:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
write$P9_RREADLINK(r1, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000540)=ANY=[@ANYBLOB="168ba0536cb3799ed46b2a401b000000a5caf9600406db45207bfd6f459b327704f7d2c4d5a21f4db32d1faeab98aa339f554a9d1e57963e2eb010fb0da7412021e6b35771af0f23227db5b357cb17eb86f91b265821ffaf2cd8f92e97b1"], 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bbc, &(0x7f0000000300)={0x0, 0x873a, 0x10, 0x0, 0x2ed}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
perf_event_open(&(0x7f00000004c0)={0x3, 0x80, 0x80, 0x0, 0x3f, 0x2, 0x0, 0x2, 0x4000, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x1000, 0x6}, 0x4881c, 0x7, 0x1000, 0x1, 0x2, 0x8, 0x2, 0x0, 0x7, 0x0, 0x4}, 0xffffffffffffffff, 0x3, r2, 0x1)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

05:13:04 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 37)

05:13:04 executing program 5:
memfd_create(&(0x7f0000000340)='\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x9216, 0x1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
io_uring_enter(r1, 0x4eae, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0)
r4 = fork()
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x5, 0x3, 0x9, 0x20, 0x0, 0x7, 0x40000, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x80000000, 0x6, @perf_bp={&(0x7f0000000000), 0x2}, 0x40, 0x9, 0x7fffffff, 0x4, 0x10001, 0x7, 0x6, 0x0, 0x5, 0x0, 0xfffffffffffffffe}, r4, 0x4, r0, 0x1)

05:13:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xffffffff, 0x0, 0x0, 0x0)

05:13:04 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0)

05:13:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0500000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:04 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0)

05:13:04 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
flock(r0, 0x8)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/locks\x00', 0x0, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7002)
flock(r0, 0x4)
r1 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000001780)={{0x2, 0x0, @remote}, {0x308}, 0xac1414fb, {0x2, 0x0, @broadcast}})
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000000180)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f61636c2c8d"])
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0)
pipe2(&(0x7f00000002c0), 0x80000)

05:13:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x500, 0x0, 0x0)

[ 2654.406524] FAULT_INJECTION: forcing a failure.
[ 2654.406524] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2654.409278] CPU: 1 PID: 12959 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2654.410847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2654.412716] Call Trace:
[ 2654.413320]  dump_stack+0x107/0x167
[ 2654.414152]  should_fail.cold+0x5/0xa
[ 2654.415022]  _copy_to_iter+0x264/0x12d0
[ 2654.415948]  ? seq_read_iter+0xd4d/0x12b0
[ 2654.416890]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2654.418006]  ? __virt_addr_valid+0x170/0x5d0
[ 2654.419001]  ? __check_object_size+0x319/0x440
[ 2654.420052]  seq_read_iter+0xdcb/0x12b0
[ 2654.420974]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2654.422146]  proc_reg_read_iter+0x20a/0x2e0
[ 2654.423129]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2654.424287]  io_read+0x2dc/0x11e0
[ 2654.425077]  ? __is_insn_slot_addr+0x14c/0x290
[ 2654.426112]  ? kernel_text_address+0xf2/0x120
[ 2654.427134]  ? unwind_get_return_address+0x55/0xa0
[ 2654.428237]  ? create_prof_cpu_mask+0x20/0x20
[ 2654.429243]  ? kiocb_done+0xc90/0xc90
[ 2654.430098]  ? mark_lock+0xf5/0x2df0
[ 2654.430948]  ? lock_chain_count+0x20/0x20
[ 2654.431894]  ? __lock_acquire+0xbb1/0x5b00
[ 2654.432872]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2654.434050]  ? SOFTIRQ_verbose+0x10/0x10
[ 2654.434960]  ? kasan_save_stack+0x1b/0x40
[ 2654.435897]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2654.437035]  ? __io_queue_sqe+0x666/0x9d0
[ 2654.437978]  ? __lock_acquire+0xbb1/0x5b00
[ 2654.438936]  io_issue_sqe+0x2e8a/0x77b0
[ 2654.439852]  ? perf_trace_lock+0xac/0x490
[ 2654.440784]  ? SOFTIRQ_verbose+0x10/0x10
[ 2654.441706]  ? io_connect+0x610/0x610
[ 2654.442571]  ? lock_acquire+0x197/0x470
[ 2654.443471]  ? find_held_lock+0x2c/0x110
[ 2654.444392]  ? __fget_files+0x2cf/0x520
[ 2654.445286]  ? lock_downgrade+0x6d0/0x6d0
[ 2654.446224]  __io_queue_sqe+0x90/0x9d0
[ 2654.447116]  ? io_issue_sqe+0x77b0/0x77b0
[ 2654.448045]  ? __fget_files+0x2f8/0x520
[ 2654.448944]  ? io_prep_rw+0x7f5/0x1050
[ 2654.449829]  io_submit_sqes+0x44aa/0x8610
[ 2654.450805]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2654.451929]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2654.453014]  ? find_held_lock+0x2c/0x110
[ 2654.453936]  ? io_submit_sqes+0x8610/0x8610
[ 2654.454915]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2654.456011]  ? wait_for_completion_io+0x270/0x270
[ 2654.457096]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2654.458139]  ? vfs_write+0x354/0xb10
[ 2654.458978]  ? fput_many+0x2f/0x1a0
[ 2654.459807]  ? ksys_write+0x1a9/0x260
[ 2654.460664]  ? __ia32_sys_read+0xb0/0xb0
[ 2654.461583]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2654.462761]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2654.463929]  do_syscall_64+0x33/0x40
[ 2654.464766]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2654.465917] RIP: 0033:0x7fd05c70ab19
[ 2654.466755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2654.470880] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2654.472595] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2654.474204] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2654.475818] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2654.477420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2654.479039] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:13:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0600000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0)

05:13:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x600, 0x0, 0x0)

[ 2654.643482] audit: type=1326 audit(1750396384.532:145): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
[ 2654.651388] audit: type=1326 audit(1750396384.539:146): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
05:13:04 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003)
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100))
inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x4000001)
creat(&(0x7f0000000080)='./file0\x00', 0x0)

[ 2654.703733] audit: type=1326 audit(1750396384.592:147): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
05:13:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0700000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2654.715310] audit: type=1326 audit(1750396384.601:148): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
[ 2654.743119] audit: type=1326 audit(1750396384.602:149): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
[ 2654.750521] loop7: detected capacity change from 0 to 16776704
[ 2654.779293] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[ 2654.779293] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 2654.779293] 
[ 2654.783349] EXT4-fs (loop7): Unrecognized mount option "�s" or missing value
[ 2654.803260] audit: type=1326 audit(1750396384.603:150): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff1ae839b19 code=0x7ffc0000
05:13:04 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0800000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2654.847866] audit: type=1326 audit(1750396384.609:151): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7ff1ae839ad7 code=0x7ffc0000
05:13:04 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x700, 0x0, 0x0)

[ 2654.853647] audit: type=1326 audit(1750396384.610:152): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7ff1ae7ecab7 code=0x7ffc0000
[ 2654.859160] audit: type=1326 audit(1750396384.616:153): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7ff1ae7ecab7 code=0x7ffc0000
[ 2654.865585] audit: type=1326 audit(1750396384.617:154): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12962 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7ff1ae7ecab7 code=0x7ffc0000
05:13:04 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0)

05:13:20 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x14, 0x5a, 0x69844ea0a6ddcd11}, 0x14}}, 0x0)
r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xe, 0x80800)
dup(r1)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)
rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f0000000640)='./file0\x00')

05:13:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc1800000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:20 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0)

05:13:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xa00, 0x0, 0x0)

05:13:20 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0)

05:13:20 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 38)

05:13:20 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4, 0x0, 0x0)

05:13:20 executing program 7:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x6, 0x4000010, 0xffffffffffffffff, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x1)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)

[ 2670.938360] FAULT_INJECTION: forcing a failure.
[ 2670.938360] name failslab, interval 1, probability 0, space 0, times 0
[ 2670.940159] CPU: 1 PID: 13022 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2670.941175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2670.942325] Call Trace:
[ 2670.942713]  dump_stack+0x107/0x167
[ 2670.943249]  should_fail.cold+0x5/0xa
[ 2670.943818]  ? io_setup_async_rw+0x180/0x580
[ 2670.944467]  should_failslab+0x5/0x20
[ 2670.945023]  __kmalloc+0x72/0x390
[ 2670.945534]  io_setup_async_rw+0x180/0x580
[ 2670.946155]  ? iov_iter_restore+0x195/0x3a0
[ 2670.946784]  io_read+0x775/0x11e0
[ 2670.947303]  ? __is_insn_slot_addr+0x14c/0x290
[ 2670.947974]  ? kernel_text_address+0xf2/0x120
[ 2670.948631]  ? unwind_get_return_address+0x55/0xa0
[ 2670.949344]  ? create_prof_cpu_mask+0x20/0x20
[ 2670.949994]  ? kiocb_done+0xc90/0xc90
[ 2670.950551]  ? mark_lock+0xf5/0x2df0
[ 2670.951098]  ? lock_chain_count+0x20/0x20
[ 2670.951712]  ? __lock_acquire+0xbb1/0x5b00
[ 2670.952343]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2670.953107]  ? SOFTIRQ_verbose+0x10/0x10
[ 2670.953694]  ? kasan_save_stack+0x1b/0x40
[ 2670.954296]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2670.955033]  ? __io_queue_sqe+0x666/0x9d0
[ 2670.955652]  ? __lock_acquire+0xbb1/0x5b00
[ 2670.956276]  io_issue_sqe+0x2e8a/0x77b0
[ 2670.956873]  ? perf_trace_lock+0xac/0x490
[ 2670.957473]  ? SOFTIRQ_verbose+0x10/0x10
[ 2670.958074]  ? io_connect+0x610/0x610
[ 2670.958635]  ? lock_acquire+0x197/0x470
[ 2670.959214]  ? find_held_lock+0x2c/0x110
[ 2670.959870]  ? __fget_files+0x2cf/0x520
[ 2670.960453]  ? lock_downgrade+0x6d0/0x6d0
[ 2670.961062]  __io_queue_sqe+0x90/0x9d0
[ 2670.961634]  ? io_issue_sqe+0x77b0/0x77b0
[ 2670.962238]  ? __fget_files+0x2f8/0x520
[ 2670.962820]  ? io_prep_rw+0x7f5/0x1050
[ 2670.963403]  io_submit_sqes+0x44aa/0x8610
[ 2670.964031]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2670.964753]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2670.965462]  ? find_held_lock+0x2c/0x110
[ 2670.966055]  ? io_submit_sqes+0x8610/0x8610
[ 2670.966687]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2670.967396]  ? wait_for_completion_io+0x270/0x270
[ 2670.968106]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2670.968778]  ? vfs_write+0x354/0xb10
[ 2670.969320]  ? fput_many+0x2f/0x1a0
[ 2670.969853]  ? ksys_write+0x1a9/0x260
[ 2670.970409]  ? __ia32_sys_read+0xb0/0xb0
[ 2670.971001]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2670.971774]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2670.972523]  do_syscall_64+0x33/0x40
[ 2670.973064]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2670.973803] RIP: 0033:0x7fd05c70ab19
[ 2670.974345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2670.977034] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2670.978155] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2670.979189] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2670.980236] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2670.981277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2670.982312] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:13:20 executing program 7:
syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[], [{@uid_gt}]})

05:13:20 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc1c00000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2671.056362] tmpfs: Unknown parameter 'uid>00000000000000000000'
[ 2671.067977] tmpfs: Unknown parameter 'uid>00000000000000000000'
05:13:20 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xc00, 0x0, 0x0)

05:13:20 executing program 5:
prctl$PR_SET_FP_MODE(0x2d, 0x3)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38)
statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', 0x0)
fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0)
r3 = open(&(0x7f0000000100)='./cgroup/cgroup.procs\x00', 0x141000, 0x80)
r4 = fsmount(r0, 0x0, 0x74)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f00000006c0)=ANY=[@ANYBLOB="7a6033a809a02e7cb5c3fa87755139b3c045ac9b2fd91553b41befe375e13ba702907981cd03a2682376613174390863d4af3c01da10450cbb80f22377b46d2208e08374374685ea489522bde012c160dad681a40a93c62ba45260b17f1e34134730cd33ae8008a3bb2d116158b7f341cb1a111ca9d22ef5fbdf9e7cb58d027e90311acc5ef826b36a232b15431622c8a8912139a770c50c9491fb0e47ed3281a6aac6b1c73bf3fb8bb0c3c62f4b86fe02809f7ed3045a8692cbec8fc280b17a1f41c80ef1a53b94131d81fb6986ce68c82e9cfd896c0c917064107421de207b8571c1b842", @ANYRES32=r4, @ANYBLOB="00000000000051002e2f66696c65310091860e16f594eb428f86c899dd13079df4781632ca8ff134cbf5efe9d5b0a8cac7c53f0459cde647573057d160a8b9ad6ff4b7193ffa1a440d061ea4c4afe4a31364d9cc08d643e534d25a254b2ecadb4de4c8013126dd38e46d77318e7c0681bdb08a96d78615166e3d4de532d9d18af7112494df4d257a089320df070514d9fee8c56812ea93a449cbf137d005a998a7e565c4756e83268bf246c16277ea3dcc85a1095215fff492e20c03a4389a64e98ae4f79015afeb47579adc501c27422f4fb70c09820000000000000000"])
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000340)=0x7, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'vxcan1\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_buf(r3, 0x107, 0x16, &(0x7f00000005c0)="52abe1f76a7f3f0ee977ca8b78b141092e5094d22244bcc8671363cb7b81f8d6d768087c359c92287b499663d320fb76ff1c66fd83c5ddaa645b7b566a7911f7889836d1a91b094ed243d028ef77f2", 0x4f)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)

05:13:20 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xb39e}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x101})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = dup2(r5, r3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCGPGRP(r6, 0x540f, &(0x7f0000000040))

05:13:21 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x5, 0x0, 0x0)

05:13:21 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1200, 0x0, 0x0)

05:13:21 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc6500000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:21 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1800, 0x0, 0x0)

05:13:21 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0)

05:13:36 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0)

05:13:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6, 0x0, 0x0)

05:13:36 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4300, 0x0, 0x0, 0x0)

05:13:36 executing program 7:
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block', 0x280800, 0x160)
sendmsg$nl_generic(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002900000826bd7000ffdbdf250f4a47eb568aa769c5030000000000000008006b0000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000011}, 0x40001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80d00, 0x2b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = geteuid()
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x15c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x8, 0x11, 0x0, 0x1, [@typed={0x4, 0x76}]}, @nested={0x140, 0x2a, 0x0, 0x1, [@generic="4d1afd367bfd5c4f0456a012d566", @typed={0x14, 0x6b, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x7a, 0x0, 0x0, @uid=r2}, @typed={0x8, 0x6f, 0x0, 0x0, @u32}, @generic="19dc7ad49c58cfe9309b545339bf4c1523e9059276267553b499598bf3b8e6e5469f2c88d31b8660e0cdf9e14ba54b81c7f16368496b02eaecc00c6ac732151bf2d2c22bc3bdad83e387205c79904a99ecfc713bd187f02ff1b8cc7e2b5da018ac67ad", @generic="d104ebefc2bf75d1b170ac988b8aca85e5cb4cc61c9bac7fe59daae7d90cb03b5e0d7245a360057779515f134772c3af9914ccd04c6b16f40781f1cc464ff472aa439187318d1f7df2c97ec18435b331a388f4f3556ca0143a555c0df1e0f7571fdacc9bc4ec84a96f9fd589634f5e1dd18e9fb63a05d62e3c1000", @generic="dc206d6894df5c3bc335bc25fd5a2decfdfd2241d00f40768ee46aff0f31da86", @typed={0xc, 0x82, 0x0, 0x0, @u64=0xfcf2}]}]}, 0x15c}}, 0x0)

05:13:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1e00, 0x0, 0x0)

05:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dcf000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:36 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 39)

05:13:36 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000002d80)=[{{&(0x7f0000001240)={0x2, 0x4e23, @local}, 0x10, 0x0, 0x0, &(0x7f0000001580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @empty}}}], 0x20}}], 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r3=>0x0})
sendmmsg$inet6(r1, &(0x7f0000004600)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000002500)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r3}}}], 0x28}}], 0x1, 0x0)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000000)={r3, 0x1, 0x6, @remote}, 0x10)
r4 = syz_open_dev$vcsn(&(0x7f0000000080), 0x9, 0x1)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000000)=""/41, 0x29, 0x3)
ioctl$PIO_SCRNMAP(r5, 0x4b41, &(0x7f0000000180)="7509ee4c5e1cf9ed002ba3401b6d56e5119c15275b653a3c12c3a98f86ebbc7d4671cd6330d19411dcd4c520c2dedafaf55240c3b3e30ee3ea12cae9789270da99cec6f07fd4e3432e5ddd7fbdb7c29ece2c871ff01ccf81a30a16e5cfb427aff9ba3d7be88410134e2044c0a6747e3e7697663af34ee251e9033a7f75c79045fe03f1ad6640e577363e29dc2ba4e3160782b725499fd1bba215fbf86a966a32f8f9354da4892596fcf7ae828f81925aa2d31db3b6c2b367f8e6dbab1d24d15fbdf748a2d9fc30340f273c0f0d275b2ddcbad783d926d93080268ae835cb8b1b49f455d411928d3ce9a6447314975e")
dup(r4)

[ 2686.593862] FAULT_INJECTION: forcing a failure.
[ 2686.593862] name failslab, interval 1, probability 0, space 0, times 0
[ 2686.595763] CPU: 0 PID: 13083 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2686.596841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2686.598125] Call Trace:
[ 2686.598535]  dump_stack+0x107/0x167
[ 2686.599107]  should_fail.cold+0x5/0xa
[ 2686.599707]  ? create_object.isra.0+0x3a/0xa20
[ 2686.600414]  should_failslab+0x5/0x20
[ 2686.601010]  kmem_cache_alloc+0x5b/0x310
[ 2686.601643]  create_object.isra.0+0x3a/0xa20
[ 2686.602321]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2686.603112]  __kmalloc+0x16e/0x390
[ 2686.603682]  io_setup_async_rw+0x180/0x580
[ 2686.604336]  ? iov_iter_restore+0x195/0x3a0
[ 2686.605005]  io_read+0x775/0x11e0
[ 2686.605543]  ? __is_insn_slot_addr+0x14c/0x290
[ 2686.606252]  ? kernel_text_address+0xf2/0x120
[ 2686.606954]  ? unwind_get_return_address+0x55/0xa0
[ 2686.607719]  ? create_prof_cpu_mask+0x20/0x20
[ 2686.608408]  ? kiocb_done+0xc90/0xc90
[ 2686.608992]  ? mark_lock+0xf5/0x2df0
[ 2686.609571]  ? lock_chain_count+0x20/0x20
[ 2686.610213]  ? __lock_acquire+0xbb1/0x5b00
[ 2686.610881]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2686.611695]  ? SOFTIRQ_verbose+0x10/0x10
[ 2686.612318]  ? kasan_save_stack+0x1b/0x40
[ 2686.612957]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2686.613736]  ? __io_queue_sqe+0x666/0x9d0
[ 2686.614380]  ? __lock_acquire+0xbb1/0x5b00
[ 2686.615043]  io_issue_sqe+0x2e8a/0x77b0
[ 2686.615680]  ? perf_trace_lock+0xac/0x490
[ 2686.616317]  ? SOFTIRQ_verbose+0x10/0x10
[ 2686.616957]  ? io_connect+0x610/0x610
[ 2686.617547]  ? lock_acquire+0x197/0x470
[ 2686.618162]  ? find_held_lock+0x2c/0x110
[ 2686.618791]  ? __fget_files+0x2cf/0x520
[ 2686.619409]  ? lock_downgrade+0x6d0/0x6d0
[ 2686.620097]  __io_queue_sqe+0x90/0x9d0
[ 2686.620702]  ? io_issue_sqe+0x77b0/0x77b0
[ 2686.621342]  ? __fget_files+0x2f8/0x520
[ 2686.621959]  ? io_prep_rw+0x7f5/0x1050
[ 2686.622565]  io_submit_sqes+0x44aa/0x8610
[ 2686.623231]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2686.624004]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2686.624750]  ? find_held_lock+0x2c/0x110
[ 2686.625381]  ? io_submit_sqes+0x8610/0x8610
[ 2686.626051]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2686.626795]  ? wait_for_completion_io+0x270/0x270
[ 2686.627549]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2686.628271]  ? vfs_write+0x354/0xb10
[ 2686.628851]  ? fput_many+0x2f/0x1a0
[ 2686.629420]  ? ksys_write+0x1a9/0x260
[ 2686.630006]  ? __ia32_sys_read+0xb0/0xb0
[ 2686.630636]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2686.631458]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2686.632258]  do_syscall_64+0x33/0x40
[ 2686.632835]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2686.633630] RIP: 0033:0x7fd05c70ab19
[ 2686.634208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2686.637060] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2686.638237] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2686.639350] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2686.640456] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2686.641561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2686.642669] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0003000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc8004000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:36 executing program 5:
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x40}, 0x18)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfeno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000080)={0x6, 0xffffff81, 0x8000, 0x0, 0x0, "0151e0a69d76db34e2f340539a0ad553f9b9a7", 0xffffffff, 0x8})
r3 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x6)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000000))
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000000)=""/41, 0x29, 0x3)
preadv2(r4, &(0x7f0000001680)=[{&(0x7f0000000180)=""/173, 0xad}, {&(0x7f0000000280)=""/97, 0x61}, {&(0x7f0000000300)=""/181, 0xb5}, {&(0x7f0000000440)=""/147, 0x93}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/38, 0x26}, {&(0x7f0000001500)=""/171, 0xab}, {&(0x7f00000015c0)=""/137, 0x89}], 0x8, 0x9329, 0x80000001, 0x4)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000001700)={0x2d, 0xd1b, 0xfff, 0x7, 0x5, "dec31fb41af6b4656695e6cca1e1d13932b2c5", 0xa2e, 0xfba})

05:13:36 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

05:13:36 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7, 0x0, 0x0)

05:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0005000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2686.854537] 9pnet: Insufficient options for proto=fd
[ 2686.868409] 9pnet: Insufficient options for proto=fd
05:13:36 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0006000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:36 executing program 5:
r0 = syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
clone3(&(0x7f0000000140)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRESHEX=r2, @ANYRES32, @ANYRESHEX=r1, @ANYRES16=r0, @ANYRESHEX=0x0])

05:13:54 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x43, 0x0, 0x0, 0x0)

05:13:54 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4800, 0x0, 0x0, 0x0)

05:13:54 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 40)

05:13:54 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x20042, 0x0)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0)
mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40000140}, 0x80000001)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, {0x1000}, 0x1, {0x0, r2}}, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0xfffffffc, @dev, 0x2}, 0x1c)
getsockopt(r3, 0x3, 0x400, &(0x7f0000001e00)=""/102383, &(0x7f00000000c0)=0x18fef)
creat(&(0x7f0000000400)='./file0\x00', 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
connect$inet6(r3, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xfff}, 0x1c)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000140)=0xc)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r3, &(0x7f0000004d00), 0x2f, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={0xffffffffffffffff, 0xfff, 0x800000007, 0x7})

05:13:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x8, 0x0, 0x0)

05:13:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0007000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:54 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2400, 0x0, 0x0)

05:13:54 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x580, 0x0, 0x0, 0xb9998546a837ad48, 0x0, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB='ile0\x00\x00\b\x00\x00\x00\x00\x00\x00\x00\x00\x00'])
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000001c0)=[@window={0x3, 0x0, 0x2b}, @timestamp, @timestamp, @window={0x3, 0x2a0, 0x2}, @mss={0x2, 0xfffffffe}, @mss={0x2, 0x6e}, @timestamp], 0x7)
setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001)
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmmsg$inet6(r2, &(0x7f0000001740)=[{{&(0x7f0000000200)={0xa, 0x4e22, 0x96a, @mcast2, 0x4}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="612000b6a508588885", 0x9}, {&(0x7f00000002c0)="fd1cfb47bc2753c90a5117b54667eae2c5f6855d78effb97e72269a094a3af641eceaf63f99236bda61f0bc0757bde1aeb35a1412a21b91d2ee34ced2ff4362457c397b776e6d8cfdb4ecdd5a6bae1a286ffa860d48515fb1505bb35a171b340d3c03cd508ff860df280bd6f3a38c7b5bee5c8475cfef4ed026755931a096fc241f5604a", 0x84}, {&(0x7f0000000380)="153b51e80d8cba6b45f7c8acf442c632115a6b7c902b105d55859e14bb9a0fde96102ee62adcac4a8984a009def80ec9d104d8130d3404fae559c0c84345d2f67af2b00450d9a451832a1aecd600db321d52254c082a8a71e87b1cda8ade429665568e2d413a695f7f7b3b68bf74e90477e85bc6d809020e2b94cb1ba970bc34c7dc61475717e090aaea27842a6a09ce7b6e54dd370cbeaeb33cb518123396e28eca815bd7a1bdc2d457b4c73ad05c5d8b70f7df43972eefe69353c869299dc5868cc1c8af3d2cf57e4c641c3b32b087c5584cf27b4e1d8d2767768e4a0803197cce86e1bb324b0f7bd9db5c1ee2c8e41fe7", 0xf2}, {&(0x7f0000000480)="f507dd6f9d49f8943932e83094c3401d9401afd49e0afe74ee666b424fb0b86441cfe7cbea5240d3f6b8382f2d847f4bc1f7c743c52bdf829d48", 0x3a}, {&(0x7f00000004c0)="d5490bb28520f36b08509e73391a8fe489bde9a7842a2f5b33278aac73445506f804bb824e4c67af176389767e82b1e75c8010c9f245038fabc2543f1454345cae8e951666dad10e501e5e216ae53bbce0a9d0ce8e6cb04f", 0x58}], 0x5, &(0x7f0000000700)=[@rthdr={{0x78, 0x29, 0x39, {0x2c, 0xc, 0x0, 0x8, 0x0, [@local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev={0xfe, 0x80, '\x00', 0x19}, @private1, @mcast1, @dev={0xfe, 0x80, '\x00', 0x28}]}}}, @hopopts_2292={{0x48, 0x29, 0x36, {0x16, 0x6, '\x00', [@padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x3f}, @calipso={0x7, 0x28, {0x3, 0x8, 0x80, 0x9b, [0x3, 0x40, 0x738, 0x3f]}}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x8}}, @hopopts_2292={{0x28, 0x29, 0x36, {0x32, 0x1, '\x00', [@padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x3b, 0x2, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @hao={0xc9, 0x10, @remote}]}}}], 0x130}}, {{&(0x7f0000000600)={0xa, 0x4e23, 0x2, @mcast2, 0x6}, 0x1c, &(0x7f0000000d00)=[{&(0x7f0000000640)="ca93b314580bb44d35e8ba20bc75389a030200e7812455c547154584437a3aded9344fad9d68271cf7391dd7f316476b24bb7edc859e8980a7ee069076ed9444305b0ba550a88fdc1c63ecac202747cba1a4675c631eab646342d86b4260f05f72182f176cea3be914d0eeded5", 0x6d}, {&(0x7f0000000840)="701764313f7ed47843a95024e4f2de7057020cd2a922f5bcfe5261ecedc73fec3a5a746933692cc02928bacc0f07bb41c605fa17c8aac1b31d56a27cc16ede099e8545cde6bef12fccd63c612e8e3f9b1a1f7216e13102e8e5f4a70ef691ec3c0835ff079d1d936581fa10c83321b607e310c30fb20da4f6821e359e7ea6bab41c6da9b4c07b7adcd8dc90ee9c0749716cb472f526e18c8d938398d47cac49dae358debb17718783d416a4ec6cccf011766020e3b066433c0b21503b8c21e9d828d1c988e0", 0xc5}, {&(0x7f0000000940)="df3856b2d8a2ebe57622306c43f0e1d8305f53475f5eb97f97702e025e88d8bd619caeada4e76a0df6812605a536e5033aac4d8bf062535c67c3b7a251877a2073d1b99562fff7cff997a210a584d3db714765d373315a8d87bb8b82512bd4dd187f632bde33cbce98fcafb37d889d886eb8bdd033ead9c992e5631b82ade57e93c726700b2e1e2d2a8af2cd286c51962f1617ddbc74cc55d1eded62ee4b0b0841a758fd6467af6c259327d2ce07b98dde149fb804f9ac534286ef", 0xbb}, {&(0x7f0000000a00)="cf34c1f5de9550f37924507a9733de13e609c1222a8d834dfae3b9188dd57ba072a3fd95bb7a0d7cff66c7b75f19c0b27226bbfb8c02cf1dfb3999b6b7d0fc35f0822f1270070fade98e17b3f47f7c309cad9c90a8687dfeaa841c38988a32783772f5b6bf726ad1cb83124a84870d13d60da61bbd6b22dc826e0ff769", 0x7d}, {&(0x7f0000000a80)="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", 0xfb}, {&(0x7f0000000b80)="f99497aa244a072a3812eef9cf30da190e6d37074e6ababdb2ef0269fe5a4051d9a33383aab043814f9890e13ebbe4b7188f0635da1dbf37397a870efa1795bf64039e698defb2d16bbd32f5ee9904ff49b72c27ad19d214638480b20f98644f5880de0bcb081708fb3050ed26e69e61b620d756dca552ae2d2a286bdfe36010c358c1208abecf71799172ebe6764d7be2da83369b736914999989", 0x9b}, {&(0x7f0000000c40)="572066f999c3b4b0d47dce225c27a29b6470e9436672caf7db40cce818b902f08d1cba1285cafff0a3081abb66dd9cc3998c03f0e1f709c084c8b8d0d967653ac61fe7add5ed697ffb01e327edb38093f446c8e200ce98b4b903926aa9292ec563a95ede62045fb10798b71f1a73663b09c64e6bbb52a6b04dd647334c88af8601d74ffff06719bf71ca6a9c7e1a1cf2d9bc817651d0145219c07ff91cac19d64617304f02fbec9a90290905fd99587f9ea2d33b1144854b5bd5aeee", 0xbc}], 0x7}}, {{&(0x7f0000000d80)={0xa, 0x4e24, 0xffff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000dc0)="4d8fbb9ba1cdb48013b5a4b510ff", 0xe}, {&(0x7f0000000e00)="f1cb490225b642229778fee5eb408920a4cfdb4f7dbf749939e3e66a90568d5edffdf3e84559ac0dfdc3b1a1b65eceb06cced9a6f105f4abdbb00c7097c2871101c21ce06e933668ac6ea52d77991ed587cbd3968fea6e4487f44431a303f3d93a179b5f51db1fff30e03f9749c810e6160a95e0cc1c0cd6c67b80ac545d346a26e736faaa036414926f", 0x8a}, {&(0x7f0000000ec0)="2437401a6760db1e6a6f715c6d1297e575f1df787c7291cccaae1f93cda27adb84a7d4b38eecdafc93978986ef0f553a4794b1d6371af78976", 0x39}], 0x3, &(0x7f0000000f40)=[@hoplimit={{0x14, 0x29, 0x34, 0x3}}, @hopopts_2292={{0xc0, 0x29, 0x36, {0x3c, 0x14, '\x00', [@jumbo, @generic={0x9, 0x9b, "324b33af619b5ec7410eae6ba9d1c613fb7f9ce9e0f6035c42478a974a5226dd96f176bf8decba8e3db2b0289500248e9035d7f2d788aee0ca6ded7ff03fd2d8d0f6896850d3d71dba95f503f5a5e5dfbe09bff05d61a83e4db1d88854bf85d14424b64b44b322d6031cec53f7d24a6ac2e3a69e3d04aff91f5a8ca3c51401b00a016f0af8ff07de10c29deefb2459d3d3db4f102659ee228c08e1"}, @ra={0x5, 0x2, 0x1}]}}}], 0xd8}}, {{&(0x7f0000001040)={0xa, 0x4e24, 0x80, @dev={0xfe, 0x80, '\x00', 0x2c}, 0x401}, 0x1c, &(0x7f0000001640)=[{&(0x7f0000001080)="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", 0xfb}, {&(0x7f0000001180)="b1988c20c921b5b7ed7526c55d99a937060492ee540ae7ba1b8568787ac585cef028acbbb730c7fb728519caeb1eb6e17a4b942aa19b8c5da674dd6d9b4f0916dac634e67d0da5a1fdf6af623f4cd540d064cedcf6544dc02ad9cc0a0c7354173cc31d652fa240bfd49dc137af491919e12a3fc827878d27660ccd", 0x7b}, {&(0x7f0000001200)="8f39ba91d71b54e6fe95aa7465626a4a5f6f3e45d4644797e294d385088023b612ba6b63f1c5fe0371f053897d38a847b67868606ee1862aa87e575614c061c5bd7fe531e3a57f5687e6a6793c3cb12d3810554b8bb7dfe58f406795e584350cffbe89c714c2cf0255b0f280ba7e47996138c26086ac7f0a6572a463acb513fe8630eaedb96fb317ef2a3ca6b8a3c4176e5e3d943f2b5dced0afd74701c98b729a594208749ce65312c5cbde2356739e1e58a2cb78bde2101fe9887b664c782319e15ff7aa6dd2ff744b3ddcf7794e153e85c38cfd1f33898c759a4bba2a35f087063b2ece6a7f287b8ff7fe509eb6a14ce165a69f", 0xf5}, {&(0x7f0000001300)="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", 0xfb}, {&(0x7f0000001400)="7466e297155f76cb643b6f3c0a1261565ff4f6a70c591fabedbe5c331b616951690b", 0x22}, {&(0x7f0000001440)="35ece738d2afc3e6a7dc898e520471c43c36cfc7ccd085c830d8c70d8e6c7e8396032aff48dab325636af88726e9de09f8e6646896277c1e1dfc1ae5724e08b2c4705f6b2dfd02c6369363d9f3ccf7bcd7dfefb664583fdd848f4d45e821f0b156f414e1580eb27a6c64648048e9695afcf7277725256fa2799b8de5f91f76ca118fdbe40a3532f97f765f7ac3f3262ef28d7312ef5732d09dba7c829cfed28d8d61c3dbf52fb432f95f57a670297f7e44c578b0330665d6a40a6c2cdf880c35696b4ea5d407b3ce9ff31926295074a4d0306d540ca0cf845d7b0a94119818c2ec899c8b5d386a967f6a0476872cae7538b5ea6a829311", 0xf7}, {&(0x7f0000001540)="43667fdd7e2273a697cf069fbc2ac5ce3c50dd565934eeae3bfd77577250e3c60f121bc79ebc7f676bbf4fd20cb3979a58f0891e637dd335b9cb4b2a4059c49198f4bbac2a33c9c7eedf2166f3bbceeb7ad997f4a687fead39f7554d70f8d1b73fc64dc159ca4c52d67f6ac8ba3baf3ed0f99991ebe8cfe1e9d658bb55b743514a8e8ab420180f1b7435121a03a495d780b4869f16bc81872d9f2c3e94aa08736b96c70a65a3b35e925d1387085cd64bc1099ec84c467db8a718210caa5398763550bb41a93efd743425b775111fdd", 0xcf}], 0x7, &(0x7f0000001840)=ANY=[@ANYBLOB="680000000000000029000fbe000036000000c9f686840000000005020007c910fc000000000000000000000000000000071000000001023f4000eeffffffffffffff07200000000106c10200040000000000000020000000000000000000000000000000c2040000025d"], 0x68}}], 0x4, 0x4800)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000000)=""/41, 0x29, 0x3)
fcntl$setpipe(r3, 0x407, 0x6b5c)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x0, 0x4}, &(0x7f0000000000))

[ 2704.513565] FAULT_INJECTION: forcing a failure.
[ 2704.513565] name failslab, interval 1, probability 0, space 0, times 0
[ 2704.516230] CPU: 0 PID: 13136 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2704.517838] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2704.519761] Call Trace:
[ 2704.520380]  dump_stack+0x107/0x167
[ 2704.521206]  should_fail.cold+0x5/0xa
[ 2704.522088]  ? __io_queue_sqe+0x666/0x9d0
[ 2704.523057]  should_failslab+0x5/0x20
[ 2704.523957]  kmem_cache_alloc_trace+0x55/0x320
[ 2704.525004]  ? lock_downgrade+0x6d0/0x6d0
[ 2704.525967]  __io_queue_sqe+0x666/0x9d0
[ 2704.526906]  ? io_issue_sqe+0x77b0/0x77b0
[ 2704.527872]  ? __fget_files+0x2f8/0x520
[ 2704.528793]  ? io_prep_rw+0x7f5/0x1050
[ 2704.529710]  io_submit_sqes+0x44aa/0x8610
[ 2704.530731]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2704.531885]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2704.533006]  ? find_held_lock+0x2c/0x110
[ 2704.534081]  ? io_submit_sqes+0x8610/0x8610
[ 2704.535317]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2704.536718]  ? wait_for_completion_io+0x270/0x270
[ 2704.538084]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2704.539392]  ? vfs_write+0x354/0xb10
[ 2704.540259]  ? fput_many+0x2f/0x1a0
[ 2704.541112]  ? ksys_write+0x1a9/0x260
[ 2704.541996]  ? __ia32_sys_read+0xb0/0xb0
[ 2704.542933]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2704.544158]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2704.545357]  do_syscall_64+0x33/0x40
[ 2704.546195]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2704.547388] RIP: 0033:0x7fd05c70ab19
[ 2704.548246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2704.552493] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2704.554226] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2704.555883] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2704.557550] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2704.559174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2704.560845] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:13:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc7c0a000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xa, 0x0, 0x0)

05:13:54 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2a00, 0x0, 0x0)

05:13:54 executing program 5:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4300, 0x0, 0x0, 0x0)

05:13:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0018000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc001c000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:54 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3000, 0x0, 0x0)

05:13:54 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b00, 0x0, 0x0, 0x0)

05:13:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xc, 0x0, 0x0)

05:13:54 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x48, 0x0, 0x0, 0x0)

05:13:55 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 41)

05:13:55 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0020000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:13:55 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x10, 0x0, 0x0)

05:13:55 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_setup(0x4900, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000001c0))
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/41, 0x29, 0x3)
connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e24, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0x80000001}, 0x1c)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$sock(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)="7703b85c13a14b816474a64def5e98c26cec7d92a464b1d4a488cdbfcc52671b436abd62e27e637b332e019a5cd4f005c78ce28d82aed14c53718fed150e3d0e2a1d20b4b1fd3a776d04afb7ee91248b9477c2958ce7b6073a435764ca8965fd349590fc104b137adb229844df560d7e1ed4cfc0d9665fe223fbaaa2d03adcdf14877d809619b68a9be608085d4c555a0bcde86737f3dff6260be535f0ccf759ee4a39cae943a034f234bdb6c49808c011f95b6e7a8ef640d71ae0a37c2c3be52b14ed34ffb2701a2a331c9cde177c1420ad0910e585f19dc62af9763de531a67bf370c08efc43af3036", 0xea}], 0x1, &(0x7f0000000340)=[@timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x1ff}}, @mark={{0x14, 0x1, 0x24, 0x1ff}}], 0x48}, 0x800)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x18}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, r2, {0x10000}}, './file1\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x802c2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)

05:13:55 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3600, 0x0, 0x0)

05:13:55 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x12, 0x0, 0x0)

[ 2705.290173] FAULT_INJECTION: forcing a failure.
[ 2705.290173] name failslab, interval 1, probability 0, space 0, times 0
[ 2705.291432] CPU: 1 PID: 13194 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2705.292222] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2705.293164] Call Trace:
[ 2705.293469]  dump_stack+0x107/0x167
[ 2705.293880]  should_fail.cold+0x5/0xa
[ 2705.294316]  ? create_object.isra.0+0x3a/0xa20
[ 2705.294831]  should_failslab+0x5/0x20
[ 2705.295259]  kmem_cache_alloc+0x5b/0x310
[ 2705.295730]  create_object.isra.0+0x3a/0xa20
[ 2705.296221]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2705.296800]  __kmalloc+0x16e/0x390
[ 2705.297204]  io_setup_async_rw+0x180/0x580
[ 2705.297677]  ? iov_iter_restore+0x195/0x3a0
[ 2705.298164]  io_read+0x775/0x11e0
[ 2705.298561]  ? __is_insn_slot_addr+0x14c/0x290
[ 2705.299082]  ? kernel_text_address+0xf2/0x120
[ 2705.299596]  ? unwind_get_return_address+0x55/0xa0
[ 2705.300159]  ? create_prof_cpu_mask+0x20/0x20
[ 2705.300666]  ? kiocb_done+0xc90/0xc90
[ 2705.301093]  ? mark_lock+0xf5/0x2df0
[ 2705.301520]  ? lock_chain_count+0x20/0x20
[ 2705.301982]  ? __lock_acquire+0xbb1/0x5b00
[ 2705.302472]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2705.303061]  ? SOFTIRQ_verbose+0x10/0x10
[ 2705.303521]  ? kasan_save_stack+0x1b/0x40
[ 2705.303992]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2705.304565]  ? __io_queue_sqe+0x666/0x9d0
[ 2705.305033]  ? __lock_acquire+0xbb1/0x5b00
[ 2705.305513]  io_issue_sqe+0x2e8a/0x77b0
[ 2705.305967]  ? perf_trace_lock+0xac/0x490
[ 2705.306432]  ? SOFTIRQ_verbose+0x10/0x10
[ 2705.306896]  ? io_connect+0x610/0x610
[ 2705.307327]  ? lock_acquire+0x197/0x470
[ 2705.307782]  ? find_held_lock+0x2c/0x110
[ 2705.308248]  ? __fget_files+0x2cf/0x520
[ 2705.308699]  ? lock_downgrade+0x6d0/0x6d0
[ 2705.309169]  __io_queue_sqe+0x90/0x9d0
[ 2705.309609]  ? io_issue_sqe+0x77b0/0x77b0
[ 2705.310074]  ? __fget_files+0x2f8/0x520
[ 2705.310528]  ? io_prep_rw+0x7f5/0x1050
[ 2705.310970]  io_submit_sqes+0x44aa/0x8610
[ 2705.311458]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2705.312034]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2705.312579]  ? find_held_lock+0x2c/0x110
[ 2705.313039]  ? io_submit_sqes+0x8610/0x8610
[ 2705.313527]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2705.314070]  ? wait_for_completion_io+0x270/0x270
[ 2705.314617]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2705.315142]  ? vfs_write+0x354/0xb10
[ 2705.315564]  ? fput_many+0x2f/0x1a0
[ 2705.315980]  ? ksys_write+0x1a9/0x260
[ 2705.316409]  ? __ia32_sys_read+0xb0/0xb0
[ 2705.316870]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2705.317465]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2705.318053]  do_syscall_64+0x33/0x40
[ 2705.318473]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2705.319047] RIP: 0033:0x7fd05c70ab19
[ 2705.319471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2705.321537] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2705.322393] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2705.323187] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2705.324000] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2705.324794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2705.325592] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:13:55 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc003f000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:10 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 42)

05:14:10 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4b, 0x0, 0x0, 0x0)

05:14:10 executing program 5:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xf0, &(0x7f0000000480)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001d004527004000000000000006"], 0x14}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2401, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xff}}, './file0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYRES16, @ANYRES32=r4, @ANYRESOCT=r1], 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NL80211_CMD_LEAVE_OCB(r0, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="08092cbdc01670d9df4bf228a553bd", @ANYRES32=0x0, @ANYBLOB="48263c1156bfbbd9c41588bc396670d2f7728d0a23986079692e8c5cf22a325745cb4f03cbf239fd79125895e991eb46380d1b8d6a0968b58117ba78eba0a463e67ff9c30ed86da02e198b5e9f006668760bb59ca5ad76d597fbd9f70e8692971db6d1c438155b9d475ea0f2ed9f4da88e632c4f173692a1287b4a6d5cd6b8"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x2004c0c0)
r5 = openat(r0, &(0x7f0000000200)='./file0\x00', 0x200143, 0x88)
write$binfmt_elf64(r5, &(0x7f0000000180)=ANY=[], 0xfdef)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000002ec0), 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x16}, 0xff}, 0x1c)
r6 = dup(0xffffffffffffffff)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180), 0xffffffffffffffff)
clone3(&(0x7f0000000900)={0x80000, &(0x7f0000000380), &(0x7f0000000580), &(0x7f0000000700), {0xc}, &(0x7f0000000740)=""/98, 0x62, &(0x7f00000007c0)=""/154, &(0x7f0000000880)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x9}, 0x58)
sendmsg$IPVS_CMD_DEL_DEST(r6, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x30, r7, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x4040045)
read(0xffffffffffffffff, &(0x7f0000000100)=""/153, 0x99)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000340), r3)
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="cc000000", @ANYRES16=r8, @ANYBLOB="00042cbd7000fcdbdf25010000002f0001006e657464657673696d0000000f0002006e657464657673696d300000080001007063690011000200303030303a30303a31302e30000000000e0001006e657464fa9de3783559ef657673696d0000000f0002006e657464657673696d3000000e0001006e657464657673696d0000000f0002006e6574646500010000300000080001007063690011000200303030303a30303a31302e30000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0xcc}, 0x1, 0x0, 0x0, 0x4000}, 0x4)

05:14:10 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x18, 0x0, 0x0)

05:14:10 executing program 7:
r0 = signalfd(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000010000001800000407b94b89c498474e311b3e0af5953256ab4a922c43b0cea68aa97561305c", @ANYRES32, @ANYBLOB="2e2f66696c095fe3e0d429edb86530000000000000004000"])
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000001200)={0x88318d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x6)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x1)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1, 0x5}, &(0x7f0000000000)=':\x15\x00U\x1bT;\xfa4\x8dd\xa0\x9d&\xb0Z\xdfv\x8b\x84\x87\xa8K\xff\xb5\xce\xb4\xa7\xab\xc6\xf1\a\xdb\xc2m\xb2w\b\xb7*v\xfdo\x83\'\xd9[\xee|4P\xa7\xe8\xad\x82,\xf5\xd1\xea\xdb\xf4\xf5F\xc0H\v\x8d\xbc\x9e)&nH\x032\x15\x80\x19\xc0\fn\xdc\x8dk\xf2\xe4\x80\x9aJ\xe7\xdb\x8e\xd3\x80*i\x82CT\xb3j%\x94\x15\xc6\xc1\xc2\x82\x83\xdc\xf6sqF\x9cX', 0x0)
keyctl$set_reqkey_keyring(0xe, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
keyctl$set_reqkey_keyring(0xe, 0x6)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x7f, 0xe1, 0x8, 0x6, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7f, 0x1, @perf_bp={0x0, 0x9}, 0x800, 0x4, 0x1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0xc, r1, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r2)
openat(0xffffffffffffffff, 0x0, 0x2b0480, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

05:14:10 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3c00, 0x0, 0x0)

05:14:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0065000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:10 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c00, 0x0, 0x0, 0x0)

[ 2720.391461] FAULT_INJECTION: forcing a failure.
[ 2720.391461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2720.394499] CPU: 1 PID: 13210 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2720.396264] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2720.398349] Call Trace:
[ 2720.399024]  dump_stack+0x107/0x167
[ 2720.399962]  should_fail.cold+0x5/0xa
[ 2720.400932]  _copy_from_user+0x2e/0x1b0
[ 2720.401944]  iovec_from_user+0x141/0x400
[ 2720.402983]  __import_iovec+0x67/0x590
[ 2720.403976]  ? kfree+0xd7/0x340
[ 2720.404825]  io_import_iovec+0x581/0x1120
[ 2720.405871]  ? io_put_sq_data+0x80/0x250
[ 2720.406902]  ? io_complete_rw+0x230/0x230
[ 2720.407934]  ? io_clean_op+0x30c/0x870
[ 2720.408920]  ? kiocb_done+0x16b/0xc90
[ 2720.409888]  io_read+0xe14/0x11e0
[ 2720.410768]  ? __is_insn_slot_addr+0x14c/0x290
[ 2720.411941]  ? kernel_text_address+0xf2/0x120
[ 2720.413078]  ? unwind_get_return_address+0x55/0xa0
[ 2720.414311]  ? create_prof_cpu_mask+0x20/0x20
[ 2720.415437]  ? kiocb_done+0xc90/0xc90
[ 2720.416396]  ? mark_lock+0xf5/0x2df0
[ 2720.417342]  ? lock_chain_count+0x20/0x20
[ 2720.418390]  ? __lock_acquire+0xbb1/0x5b00
[ 2720.419486]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2720.420812]  ? SOFTIRQ_verbose+0x10/0x10
[ 2720.421821]  ? kasan_save_stack+0x1b/0x40
[ 2720.422861]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2720.424108]  ? __io_queue_sqe+0x666/0x9d0
[ 2720.425161]  ? __lock_acquire+0xbb1/0x5b00
[ 2720.426235]  io_issue_sqe+0x2e8a/0x77b0
[ 2720.427252]  ? perf_trace_lock+0xac/0x490
[ 2720.428313]  ? SOFTIRQ_verbose+0x10/0x10
[ 2720.429347]  ? io_connect+0x610/0x610
[ 2720.430315]  ? lock_acquire+0x197/0x470
[ 2720.431319]  ? find_held_lock+0x2c/0x110
[ 2720.432366]  ? __fget_files+0x2cf/0x520
[ 2720.433344]  ? lock_downgrade+0x6d0/0x6d0
[ 2720.434393]  __io_queue_sqe+0x90/0x9d0
[ 2720.435385]  ? io_issue_sqe+0x77b0/0x77b0
[ 2720.436427]  ? __fget_files+0x2f8/0x520
[ 2720.437441]  ? io_prep_rw+0x7f5/0x1050
[ 2720.438431]  io_submit_sqes+0x44aa/0x8610
[ 2720.439520]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2720.440791]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2720.442012]  ? find_held_lock+0x2c/0x110
[ 2720.443045]  ? io_submit_sqes+0x8610/0x8610
[ 2720.444156]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2720.445376]  ? wait_for_completion_io+0x270/0x270
[ 2720.446591]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2720.447759]  ? vfs_write+0x354/0xb10
[ 2720.448718]  ? fput_many+0x2f/0x1a0
[ 2720.449638]  ? ksys_write+0x1a9/0x260
[ 2720.450601]  ? __ia32_sys_read+0xb0/0xb0
[ 2720.451629]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2720.452940]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2720.454244]  do_syscall_64+0x33/0x40
[ 2720.455187]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2720.456497] RIP: 0033:0x7fd05c70ab19
[ 2720.457435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2720.462037] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2720.463960] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2720.465751] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2720.467544] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2720.469346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2720.471140] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:14:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0a7c000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:10 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6306261f, 0x80000001}, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x64, r2, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000010)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f00000000c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x4, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYRES16, @ANYBLOB="2503f2ffff459d6eb60f0100000060752be90000000000"], 0x28}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={0x0}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), 0xffffffffffffffff)

05:14:10 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1e, 0x0, 0x0)

05:14:10 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

05:14:10 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0480000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:10 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4c, 0x0, 0x0, 0x0)

[ 2734.932749] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=13290 comm=syz-executor.5
05:14:24 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 43)

05:14:24 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x65, 0x0, 0x0, 0x0)

05:14:24 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300))
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0xfd, 0x0, 0xfe, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000500), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x80, 0xfffffffd, 0xffff}, 0x0, 0xa, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001009000500000000000000050000804800"/36], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(r2, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000006c0)="fe09e419c5ee5b4c2cf11557e56a865c80b8758e512b60cb38691b7a7ecee18a15c136fb2948e2d222425cc3f7545add0392505a5fe7b749e9e3a0e197f2aa142ac8a6a8f8d58067f2f0b6f860fdcb0e5cfb0c866fb4bcf77f1558272cc00fac3e68b48f39a1a26c43b8a7c0bfa3d0599f54713eb543335fdd5341e7b30f3f30590fd30711fee17b40a24f608cd1d3a2c3814b8edff65dd694aff072ebb5648c1c25137f35cbf59353331ee4a9884ce4d86c4c9376fafc27fb34258a5c639048ed6decca3260741da334eeeece752a9e0162c4c68b9d0532e1a567816adfef785f3e4c4540de06e8a23aace010ed2b35239a2243f8e7ae0da2275d6739124805")
r3 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4)
sendmsg$nl_generic(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)=ANY=[@ANYBLOB="00000000000000006859371d2bbae4226d0a258550d538f5e00a860b13a07abdecde52e40fa61283385c3c6b0d06518498fd276a03b99da65eb9401cdafd7b75de09217c74793512ceaa697733d8f54fe8d6aa1764cd2815fc50b9624440370ae227bf96610d5362e8a8ebcc26bde9de7ffacc4d54759b009ed0a58ac34ae0571829ec4ebc4cedda3ccb68d64983916a9ba16275c90179e3161064c8d75a90c4e7f1352a7099dff16c818ea1"], 0x1c}}, 0x0)
readv(r3, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1)
sendmsg$NL80211_CMD_GET_STATION(r3, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="55fec4ec2d201e9edd4339046dd7bac0c4ed20b9e5fd5b9f75f801342f66b1e91dbcdff7ec22b0a926ff8bfed51e370b024389862818ce1f13a1b3b395b061bc6ba143e39e0ab9c9e4f607944b8767b4a1107479a5582c79ec28f11260b8fe9a492a7e0f0c058596619ecc05097961dd51e106941e28eb4de9f59e3b54efae", @ANYRES16=0x0, @ANYBLOB="100000040000fbdbdf25110000000c009900000200007d0000000600ed001c060000"], 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x884)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setxattr$security_selinux(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), &(0x7f0000000440)='system_u:object_r:hald_dccm_exec_t:s0\x00', 0x26, 0x2)
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/41, 0x29, 0x3)
fcntl$setflags(0xffffffffffffffff, 0x2, 0x1)

05:14:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc00f0000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4300, 0x0, 0x0)

05:14:24 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x24, 0x0, 0x0)

05:14:24 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6306261f, 0x80000001}, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)={0x64, r2, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000010)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f00000000c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0)
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x4, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYRES16, @ANYBLOB="2503f2ffff459d6eb60f0100000060752be90000000000"], 0x28}}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={0x0}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), 0xffffffffffffffff)

05:14:24 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6500, 0x0, 0x0, 0x0)

[ 2734.951841] FAULT_INJECTION: forcing a failure.
[ 2734.951841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2734.953611] CPU: 1 PID: 13292 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2734.954623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2734.955841] Call Trace:
[ 2734.956248]  dump_stack+0x107/0x167
[ 2734.956794]  should_fail.cold+0x5/0xa
[ 2734.957352]  _copy_to_iter+0x264/0x12d0
[ 2734.957950]  ? seq_read_iter+0xd4d/0x12b0
[ 2734.958556]  ? _copy_from_iter_nocache+0xd60/0xd60
[ 2734.959271]  ? __virt_addr_valid+0x170/0x5d0
[ 2734.959906]  ? __check_object_size+0x319/0x440
[ 2734.960592]  seq_read_iter+0xdcb/0x12b0
[ 2734.961194]  ? proc_reg_get_unmapped_area+0x311/0x400
[ 2734.961974]  proc_reg_read_iter+0x20a/0x2e0
[ 2734.962611]  ? proc_reg_get_unmapped_area+0x400/0x400
[ 2734.963395]  io_read+0x2dc/0x11e0
[ 2734.963934]  ? __is_insn_slot_addr+0x14c/0x290
[ 2734.964647]  ? kernel_text_address+0xf2/0x120
[ 2734.965315]  ? unwind_get_return_address+0x55/0xa0
[ 2734.966063]  ? create_prof_cpu_mask+0x20/0x20
[ 2734.966746]  ? kiocb_done+0xc90/0xc90
[ 2734.967318]  ? mark_lock+0xf5/0x2df0
[ 2734.967884]  ? lock_chain_count+0x20/0x20
[ 2734.968520]  ? __lock_acquire+0xbb1/0x5b00
[ 2734.969177]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2734.969967]  ? SOFTIRQ_verbose+0x10/0x10
[ 2734.970573]  ? kasan_save_stack+0x1b/0x40
[ 2734.971202]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2734.971984]  ? __io_queue_sqe+0x666/0x9d0
[ 2734.972621]  ? __lock_acquire+0xbb1/0x5b00
[ 2734.973263]  io_issue_sqe+0x2e8a/0x77b0
[ 2734.973870]  ? perf_trace_lock+0xac/0x490
[ 2734.974503]  ? SOFTIRQ_verbose+0x10/0x10
[ 2734.975126]  ? io_connect+0x610/0x610
[ 2734.975708]  ? lock_acquire+0x197/0x470
[ 2734.976324]  ? find_held_lock+0x2c/0x110
[ 2734.976969]  ? __fget_files+0x2cf/0x520
[ 2734.977581]  ? lock_downgrade+0x6d0/0x6d0
[ 2734.978227]  __io_queue_sqe+0x90/0x9d0
[ 2734.978823]  ? io_issue_sqe+0x77b0/0x77b0
[ 2734.979457]  ? __fget_files+0x2f8/0x520
[ 2734.980073]  ? io_prep_rw+0x7f5/0x1050
[ 2734.980674]  io_submit_sqes+0x44aa/0x8610
[ 2734.981332]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2734.982080]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2734.982807]  ? find_held_lock+0x2c/0x110
[ 2734.983414]  ? io_submit_sqes+0x8610/0x8610
[ 2734.984089]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2734.984821]  ? wait_for_completion_io+0x270/0x270
[ 2734.985544]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2734.986242]  ? vfs_write+0x354/0xb10
[ 2734.986812]  ? fput_many+0x2f/0x1a0
[ 2734.987367]  ? ksys_write+0x1a9/0x260
[ 2734.987943]  ? __ia32_sys_read+0xb0/0xb0
[ 2734.988579]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2734.989369]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2734.990159]  do_syscall_64+0x33/0x40
[ 2734.990726]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2734.991489] RIP: 0033:0x7fd05c70ab19
[ 2734.992067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2734.994822] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2734.995976] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2734.997053] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2734.998120] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2734.999198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2735.000290] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:14:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000001f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2735.058048] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2735.059877] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2735.064754] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
05:14:24 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2a, 0x0, 0x0)

05:14:24 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0xcf1f)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000001400))
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)
lseek(r0, 0x0, 0x3)

[ 2735.767033] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=13298 comm=syz-executor.5
[ 2740.652459] Bluetooth: hci3: command 0x0409 tx timeout
[ 2742.700004] Bluetooth: hci3: command 0x041b tx timeout
[ 2744.748134] Bluetooth: hci3: command 0x040f tx timeout
[ 2746.160429] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2746.163035] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2746.166421] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2746.205707] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2746.207718] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2746.211013] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2746.369160] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=13784 comm=syz-executor.5
[ 2746.795992] Bluetooth: hci3: command 0x0419 tx timeout
[ 2747.203092] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=13785 comm=syz-executor.5
05:14:52 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd(r0, &(0x7f0000000000)={[0x924]}, 0x8)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)={0x10})
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff8101b914}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, 0x0, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@CTA_PROTOINFO={0x30, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0x2c, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5}, @CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x6, 0x33}}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0x4, 0xff}}, @CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5, 0x3, 0x6}, @CTA_PROTOINFO_TCP_STATE={0x5, 0x1, 0x4}]}}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x5}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4040090}, 0x400c1d1)

05:14:52 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4800, 0x0, 0x0)

05:14:52 executing program 5:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0)
io_setup(0x3, &(0x7f0000000000)=<r1=>0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3, {0x0, 0xffffffffffffffff}}, './file1\x00'})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r4, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r5, 0x200, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
creat(&(0x7f0000000280)='./file1\x00', 0x4)

05:14:52 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6800, 0x0, 0x0, 0x0)

05:14:52 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x30, 0x0, 0x0)

05:14:52 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 44)

05:14:52 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x68, 0x0, 0x0, 0x0)

05:14:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0002000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2762.901205] FAULT_INJECTION: forcing a failure.
[ 2762.901205] name failslab, interval 1, probability 0, space 0, times 0
[ 2762.903660] CPU: 1 PID: 13802 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2762.905097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2762.906791] Call Trace:
[ 2762.907335]  dump_stack+0x107/0x167
[ 2762.908077]  should_fail.cold+0x5/0xa
[ 2762.908862]  ? io_setup_async_rw+0x180/0x580
[ 2762.909770]  should_failslab+0x5/0x20
[ 2762.910553]  __kmalloc+0x72/0x390
[ 2762.911268]  io_setup_async_rw+0x180/0x580
[ 2762.912129]  ? iov_iter_restore+0x195/0x3a0
[ 2762.913028]  io_read+0x775/0x11e0
[ 2762.913740]  ? __is_insn_slot_addr+0x14c/0x290
[ 2762.914674]  ? kernel_text_address+0xf2/0x120
[ 2762.915599]  ? unwind_get_return_address+0x55/0xa0
[ 2762.916605]  ? create_prof_cpu_mask+0x20/0x20
[ 2762.917520]  ? kiocb_done+0xc90/0xc90
[ 2762.918294]  ? mark_lock+0xf5/0x2df0
[ 2762.919063]  ? lock_chain_count+0x20/0x20
[ 2762.919909]  ? __lock_acquire+0xbb1/0x5b00
[ 2762.920806]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2762.921873]  ? kasan_save_stack+0x32/0x40
[ 2762.922718]  ? kasan_save_stack+0x1b/0x40
[ 2762.923563]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2762.924605]  ? __io_queue_sqe+0x666/0x9d0
[ 2762.925461]  ? __lock_acquire+0xbb1/0x5b00
[ 2762.926332]  io_issue_sqe+0x2e8a/0x77b0
[ 2762.927145]  ? find_held_lock+0x2c/0x110
[ 2762.927975]  ? perf_trace_lock+0xac/0x490
[ 2762.928835]  ? io_connect+0x610/0x610
[ 2762.929617]  ? lock_acquire+0x197/0x470
[ 2762.930428]  ? find_held_lock+0x2c/0x110
[ 2762.931266]  ? __fget_files+0x2cf/0x520
[ 2762.932079]  ? lock_downgrade+0x6d0/0x6d0
[ 2762.932938]  __io_queue_sqe+0x90/0x9d0
[ 2762.933737]  ? io_issue_sqe+0x77b0/0x77b0
[ 2762.934584]  ? __fget_files+0x2f8/0x520
[ 2762.935398]  ? io_prep_rw+0x7f5/0x1050
[ 2762.936201]  io_submit_sqes+0x44aa/0x8610
[ 2762.937093]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2762.938109]  __do_sys_io_uring_enter+0x6b2/0x1890
05:14:52 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x36, 0x0, 0x0)

[ 2762.939093]  ? find_held_lock+0x2c/0x110
[ 2762.940161]  ? io_submit_sqes+0x8610/0x8610
[ 2762.941060]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2762.942046]  ? wait_for_completion_io+0x270/0x270
[ 2762.943030]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2762.943977]  ? vfs_write+0x354/0xb10
[ 2762.944747]  ? fput_many+0x2f/0x1a0
[ 2762.945489]  ? ksys_write+0x1a9/0x260
[ 2762.946265]  ? __ia32_sys_read+0xb0/0xb0
[ 2762.947095]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2762.948160]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2762.949220]  do_syscall_64+0x33/0x40
[ 2762.949981]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2762.951026] RIP: 0033:0x7fd05c70ab19
[ 2762.951785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2762.955551] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2762.957121] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2762.958592] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2762.960060] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2762.961537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2762.963005] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
[ 2762.978816] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 2762.980790] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 2762.982198] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 2762.983541] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00
[ 2762.985110] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 9 prio class 0
[ 2762.987706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2762.989228] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2762.991699] Buffer I/O error on dev sr0, logical block 0, async page read
[ 2762.993676] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2762.995081] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2762.997916] Buffer I/O error on dev sr0, logical block 1, async page read
[ 2762.999855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.001270] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.003882] Buffer I/O error on dev sr0, logical block 2, async page read
[ 2763.005838] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.007234] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.009787] Buffer I/O error on dev sr0, logical block 3, async page read
[ 2763.013150] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.014508] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.016944] Buffer I/O error on dev sr0, logical block 4, async page read
[ 2763.019018] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.020382] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.022770] Buffer I/O error on dev sr0, logical block 5, async page read
[ 2763.024640] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.026003] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.028413] Buffer I/O error on dev sr0, logical block 6, async page read
[ 2763.030149] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2763.031473] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2763.033869] Buffer I/O error on dev sr0, logical block 7, async page read
05:14:52 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0003000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:14:52 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4b00, 0x0, 0x0)

05:14:53 executing program 7:
ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000080))
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)="04", 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
creat(&(0x7f00000004c0)='./file0\x00', 0x13d)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001700)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r4 = syz_io_uring_setup(0x13cb, &(0x7f0000000340)={0x0, 0x0, 0xf36b4eada4898054, 0x100002}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000040))
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000300)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_complete(r5)
bind(0xffffffffffffffff, &(0x7f0000000180)=@ieee802154={0x24, @none={0x0, 0x3}}, 0x80)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r2, @ANYBLOB="020025bd7000fddbdf251b0000000800a20100000000000022fcffffffffffffff08000400000200000800040001000000340022800c00000800030201000000240000800800030002fe38da0900ff0008000700ff00000008000600ff01003b60e07157406a46fbc08d3800080005000080000008009a0010000600000000000000000007002100626200"/166], 0xa0}, 0x1, 0x0, 0x0, 0xc099d2d3b910cc2e}, 0x4000010)

05:14:53 executing program 5:
eventfd2(0x0, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x4001011, r0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0xfff)
syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00')

05:15:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 45)

05:15:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0004000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c00, 0x0, 0x0, 0x0)

05:15:08 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4c00, 0x0, 0x0)

05:15:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x3c, 0x0, 0x0)

05:15:08 executing program 7:
clock_gettime(0x0, &(0x7f0000000080)={<r0=>0x0, <r1=>0x0})
semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)={r0, r1+10000000})
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000200)=""/232, 0xe8, 0x8, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}})

05:15:08 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r4 = syz_io_uring_setup(0x620e, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x1ad}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
r8 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x38401, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x3, 0x0, r8, &(0x7f00000002c0), &(0x7f00000000c0)='./file0\x00', 0x40, 0x0, 0x1}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x1, &(0x7f00000001c0)={0x0, 0x989680}}, 0x8)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58af, 0x0, 0x2, 0x0, 0x0)

05:15:08 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x6c, 0x0, 0x0, 0x0)

[ 2779.143660] FAULT_INJECTION: forcing a failure.
[ 2779.143660] name failslab, interval 1, probability 0, space 0, times 0
[ 2779.146482] CPU: 0 PID: 13851 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2779.148146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2779.150151] Call Trace:
[ 2779.150795]  dump_stack+0x107/0x167
[ 2779.151685]  should_fail.cold+0x5/0xa
[ 2779.152626]  ? create_object.isra.0+0x3a/0xa20
[ 2779.153745]  should_failslab+0x5/0x20
[ 2779.154672]  kmem_cache_alloc+0x5b/0x310
[ 2779.155669]  create_object.isra.0+0x3a/0xa20
[ 2779.156741]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2779.157973]  __kmalloc+0x16e/0x390
[ 2779.158853]  io_setup_async_rw+0x180/0x580
[ 2779.159898]  ? iov_iter_restore+0x195/0x3a0
[ 2779.160954]  io_read+0x775/0x11e0
[ 2779.161806]  ? __is_insn_slot_addr+0x14c/0x290
[ 2779.162932]  ? kernel_text_address+0xf2/0x120
[ 2779.164032]  ? unwind_get_return_address+0x55/0xa0
[ 2779.165242]  ? create_prof_cpu_mask+0x20/0x20
[ 2779.166334]  ? kiocb_done+0xc90/0xc90
[ 2779.167260]  ? mark_lock+0xf5/0x2df0
[ 2779.168189]  ? lock_chain_count+0x20/0x20
[ 2779.169220]  ? __lock_acquire+0xbb1/0x5b00
[ 2779.170285]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2779.171560]  ? kasan_save_stack+0x32/0x40
[ 2779.172572]  ? kasan_save_stack+0x1b/0x40
[ 2779.173583]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2779.174813]  ? __io_queue_sqe+0x666/0x9d0
[ 2779.175842]  ? __lock_acquire+0xbb1/0x5b00
[ 2779.176892]  io_issue_sqe+0x2e8a/0x77b0
[ 2779.177879]  ? find_held_lock+0x2c/0x110
[ 2779.178866]  ? perf_trace_lock+0xac/0x490
[ 2779.179882]  ? io_connect+0x610/0x610
[ 2779.180828]  ? lock_acquire+0x197/0x470
[ 2779.181796]  ? find_held_lock+0x2c/0x110
[ 2779.182786]  ? __fget_files+0x2cf/0x520
[ 2779.183760]  ? lock_downgrade+0x6d0/0x6d0
[ 2779.184782]  __io_queue_sqe+0x90/0x9d0
[ 2779.185738]  ? io_issue_sqe+0x77b0/0x77b0
[ 2779.186750]  ? __fget_files+0x2f8/0x520
[ 2779.187734]  ? io_prep_rw+0x7f5/0x1050
[ 2779.188701]  io_submit_sqes+0x44aa/0x8610
[ 2779.189757]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2779.190968]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2779.192146]  ? find_held_lock+0x2c/0x110
[ 2779.193156]  ? io_submit_sqes+0x8610/0x8610
[ 2779.194215]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2779.195394]  ? wait_for_completion_io+0x270/0x270
[ 2779.196579]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2779.197702]  ? vfs_write+0x354/0xb10
[ 2779.198612]  ? fput_many+0x2f/0x1a0
[ 2779.199497]  ? ksys_write+0x1a9/0x260
[ 2779.200426]  ? __ia32_sys_read+0xb0/0xb0
[ 2779.201428]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2779.202719]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2779.203967]  do_syscall_64+0x33/0x40
[ 2779.204892]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2779.206132] RIP: 0033:0x7fd05c70ab19
[ 2779.207039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2779.211535] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2779.213405] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2779.215149] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2779.216900] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2779.218643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2779.220386] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:15:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0005000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:09 executing program 7:
sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
r0 = perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=<r1=>0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x8, 0x3, 0x1, 0x81, 0x0, 0x6, 0x8, 0x9, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x43a9, 0x4, @perf_config_ext={0xa43, 0x800}, 0x10000, 0x4, 0x7fff, 0x0, 0x200, 0xff, 0xa9, 0x0, 0x0, 0x0, 0x5}, r1, 0x1, r0, 0x7)

05:15:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6500, 0x0, 0x0)

05:15:09 executing program 5:
r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300))
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000680)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r1, 0x0, &(0x7f0000000640)={&(0x7f0000000400)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000500)=""/1, 0x1}], 0x1, &(0x7f00000005c0)=""/98, 0x62}, 0x0, 0x162, 0x0, {0x1}}, 0x6)
r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000700)=ANY=[@ANYBLOB="58e4114b01d10f2272ffffd38f74fa93dbb04186d1ccaf986e338900942e57ab1b014d03c85b9722b156515e7fc56358e55f7ec146e10f6e4a7404609d8831780848a4d7d3c8e28667ab41cd7fa5fc394963084871ac3af039e14d390ed2dd7af96f609b9578a57d94b3e752bbdf0124155847e3dfea", @ANYRES32, @ANYRES32])
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000240)=@v1={0x2, "d68b"}, 0x3, 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
dup(r4)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'})
r5 = socket$netlink(0x10, 0x3, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x80, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r5, 0x10e, 0xa, 0x0, 0x0)
preadv(r5, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x8000, 0x0)
socketpair(0x2c, 0x3, 0x1, &(0x7f00000002c0))
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

[ 2779.295511] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
05:15:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x43, 0x0, 0x0)

05:15:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0006000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:09 executing program 7:
r0 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x100, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x14}}, 0x60c1)
[ 2779.432806] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2779.434729] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2779.436766] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
sendmmsg(r0, &(0x7f0000005e80)=[{{&(0x7f0000000140)=@llc={0x1a, 0x310, 0xd7, 0x40, 0x3f, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x80, &(0x7f00000014c0)=[{&(0x7f00000001c0)="93e4dbad58b3c17d2f7ee8f178e262077e41718cd83a1001562eed6500b24828a59b26db95c4a778d23a01918c43139496e200ee6f08c2fcba9f574f4c466cff553317a2fabf8c518cddaba30d81f5512b7cd2c8da", 0x55}, {&(0x7f0000000240)="0aef68ef4fb63a46f07d4211933865f284ed58fb587f946b261b885793daf51fa4cf6c5e30c9bbfd4e7e0689e5af48f39bfab966a6eb8f02cc671dffe299f08986854765b3d0bc56c5d4c8e69e88730ee86ee910bdba868ae9c5f3e8e89e53e07004ecc78355d227f24bb8de841e4bb9c46bdfbf72fce094f974c10faad4cd85187273d600d53376200b38df4de090c3aab9194c", 0x94}, {&(0x7f0000000300)="8b3e9c379ae3a7fcacb64dc66d4e18f4a075100200fd2babca418186e7bce5f01924ecfa7e7d8987ed890043e3769a5de94531ef78698b3bf21fa46cc7ecbf468989daa4f2836f752179dd93dd0f0165d10da924941cfe05dd02422cd542e667d394b7bd591e078a2619ab8c739a57bdcf88283e44b687a56781141674536048a64b78f447b144fea87f7287b0821282473786077d428e95daf6c819fc95f74aec9713cdd465f5cf7349d851bd9c823b4ff9fb427a78ed6a01d5b8ed0389b5c5a762a57a850d842ab36f809f6553b1c286784daba0c0f051f425df98a9fae4c61d8cb857", 0xe4}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="a2bc24614d6f8ddcf43564ee76061ec4eb196628432bf9b1f226307153144c842553336f8eea8f0d9c457d2bb8afd2213a03bb752204d5497e4a1121d0bdaecf7120a97b1ff30209a118cc00483acb84d61ac676b125a7cc45e864515d1409ab0603daf2c05c88f19a0e459da79977018361a09ccfa50db9945ab9dd74d74013a387f6d04d0d2189f93b6df4db69c9f9f53a51eebedb06a755381dc7eefd3878c185", 0xa2}], 0x5}}, {{0x0, 0x0, &(0x7f0000002680)=[{&(0x7f0000001540)="73e1b5af23b40ccda96576d2efe5e3d034be40196d063e44f808ed66732f886c9bed6b2953fdec3bd3a6f3abee59e51a54ba7ce9303cbd4796fac597fe507094d87122a5f0e8ded53f228914f51f0882d81ec4e76e4a13aba41c116e2abd80d5668fb08e354d0b4990d612397b7e297a13422b0e7105bde72b30327e9c0196dc285f4419723e8bd4bbe832f7b6b84437110db220bda6c6c64228f36f", 0x9c}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000002600)="e86366d99ef80e4c72c8d713d9417869de43d6172dcced99d4bd41ae805dca77389a0eb0055f8c65a049fe8a8c2cc4a8bca4d9fbb6ab002bf05713d36c3bad87e194a40e3a103f298757e4a85b8249ae188beef06e3f4c3f59", 0x59}], 0x3}}, {{&(0x7f00000026c0)=@tipc=@name={0x1e, 0x2, 0x2, {{0x43, 0x3}}}, 0x80, &(0x7f0000002a80)=[{&(0x7f0000002740)="51868cb8f670c3e040cff2e6cf617ec191845495178c755250ec1aede87f015f56f7d8fff967813c5c0be11c3753d1d875ec4d9f9e5f79aade39b769d3fff5e2de1a7afa26c8ce4ffbe18384e4bd46ecf81b0be2dee861c77281fb2a8b78919d746d70af53893a4c7596d8d3af04721884d741de53833ae5cf80230871b418dd3159079b2826bfbec1b5602a1f49e1e304090cc08a8ea19408ee3dc9ab1d6d0b5336053e42888481aa62dd994216c9ea38e660624e7e6336b07ac4fd2962a9f0f32d4c39c83992ee616b353c823c2f83f0108c16869c90de8c", 0xd9}, {&(0x7f0000002840)="1c24a8e4aa1c34281c9a9259b4de17518ab930c719c5dd0d3d1080386cb65612aaeaddc9de20e3b2dc868921e368d84823b4b806355b9f6833c32985f63b73f3b95c79b8309d61c02276d3de8203fc47efaeaae4d8a2f2f89bb7c1cee25e96060623fcc8f48c989e6ae3cbe79ec816881f9f9badcce173124c682ebbe074c11624b99078d42b5f6f52085cb93e76ad72d56d4bbf7717e6cc4f5cb3ab5e66861bff6d", 0xa2}, {&(0x7f0000002900)="10e1b974030014b5c137d09683c4f54e4a71499e9f67eb21b10735c799a935e30a5744ace5b71bb7108f17c08399f5df6cabddd1a2be9f6458d30a86802320a4acc065958202bcda433d63166d0b351153dd9f33c9cc27a656b2a5f225e31982097c1f6f6ffff6b72be42aee8fed80f7835ead91fbde6870e1ab05ea5e7771769922a88476ab8ee97216e3784b34db536a4da85a982b621d9a14d973140bcbdaa2964cf01557cd93314bb21c40b45d618c20aa6e3b01c1cef042498648109d93a2b7f4", 0xc3}, {&(0x7f0000002a00)="542fda71ccbb7187e8b8817d07968c9b10690c5db40c9879ed33589a69830f486e8bd35a9078a37a21fc28c076fbc75bada5586496f1d6cda2b74f16df33d19810b64082be6fd145c36811b07f18edaedf4e6c2a0bcf8c65a310c94597126cee63cca435ecf30e85a150eeec352d0dad2a9cb23b1a8f52210e624f1bfe67", 0x7e}], 0x4, &(0x7f0000002ac0)=[{0x1010, 0x3a, 0x8, "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"}, {0x40, 0x0, 0x1c, "91049d660b19a316b143df4a4554e8878d4a14e80737a124c4b7a5058964fa9052a30c82d877fd661c"}, {0x88, 0x1, 0x7686, "d76cd3eed30653e8ab754626bd438319705c4130a82de67712861be3fd318834d473b7765af63dab54c0ca7374f64feac5a089c058edbe1eadd708fc958967c7a2b2d7040f7a144fe8deeaa51f31c20f8ecb8c9b431b023f84c2e570265430345f1a13a1f946c25ba69e37850231958fe3"}], 0x10d8}}, {{&(0x7f0000003bc0)=@can, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003c40)}, {&(0x7f0000003c80)="4e00b473acb5004093a807b9f821d5a51a23069cef3c9cd5333f7d1a2e71087cd8f86eb10c378e9209f92906d85472b326a4eb45a200581ce3c759eb93626361c6ecf1666b94b2151a77873b0186b7f8ae0b1834355c26c8a8995fe3b7eb703403d0a94f71aba688139bfedea27fd23a1aa8f1e9556623d4549c050d2e6d5c8847e2a7fca50648834556b8282aa3a734d7b6310874e33fa1450b31594c34a870dc09966db338fb36820a1dd837845d7e155092f1e03732772178183103752ffeb189c8b86d7da6e36cb1", 0xca}, {&(0x7f0000003d80)="d56557397c6fdd5a414b49966500b176bcdb9a97d383793ba2512a173512493795e5efad8db0fe7b6c8cdc584a0fff36c1780febf07d0c17c7af239420ef6dd59fafaaae9ff58900b87cc1112469307efab160b54b0f7a3531ac2e1165d0872b19", 0x61}, {&(0x7f0000003e00)="1b9061a2fb223e00117ee24c951bd79cedacdcc38869c57e441758448c2c74327ce60a763b6cd2485cb3cb6046207039f0efb7a3f04d3f7fe6605f39ccf0dd61588399e9ebb7ceb721c57d", 0x4b}, {&(0x7f0000003e80)="d464011222666f3760366c0799ebd0dc52179ee1bb355a72a75c8ab5c545d4aa9b0f8009a63206e8dc085025d46ffe7788ba225d7ff440830f1e8a42bffdfc3c03849fb58c8233da3efafaef1598206868f7452f974291eb106f", 0x5a}, {&(0x7f0000003f00)="6ccea9542b3fd05788cf887206dae91922d2fe0c43c4bafb8cc2bd342849bd461eaa4c5b49a3cb5b523b36ff514f9af9c4d64a3868d8af9bb9efcfacb81e87b6108876b4b928b34571dea222e142e779bf4a864da3d14e4ffef8171d55669504e6452dee8291deeb074133a74131a60dc58ff09c2ecff39fb43f5f29b06c22123746577a75e7f093c0767c00", 0x8c}], 0x6}}, {{&(0x7f0000004040)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e21, @multicast1}, 0x4, 0x9, 0x2, 0x2}}, 0x80, 0xfffffffffffffffd, 0x0, &(0x7f00000040c0)=[{0xa0, 0x167, 0x0, "756833dcc0e0337b586471cf2a9bc997ab1d69e43fd03656ab75880af3a5072edaff071e83f5a8b04a9e42d49e8b15306727dea9301403800b5c48443bc771cd7e3833364dca43da15da316d3387f8403f4522f5ca7b2962acdb95ac9284b3587869809d6ff4d5fcc231911c1860d23c5dd3b2e98c75dfb03128060e86bd283987e1f35d359ae51d20274b8af14f232e"}, {0x70, 0x110, 0x100, "58941e8cf25131ddcf3e9fdb8cabdb0b666463f44a9fdaf8b2e6f105196b70f04b3c388d25e38094a59f96a187a4bac210a06fd7e54e842ca91ecb94e36631ac8cf2b67dd245c37432edca386e252d0a3c8c83095f3fe89c27"}, {0xa0, 0x0, 0x0, "bcb9b8e9d2af27fe6c6d054996df592f50984e77d6c76ca9b0be95d4dcfd5abae26981b8709ae9cd9aa49b57be97ee7a2b053e9be299f2ee6047c04f2c5a772f103372bb1cec237ddaaf120114037a4a23a47a1da30da334c553fefc735926aeb69717ca82051ff1067fad01616817df6cc3ad52677f18bdd85dcc41f1c8d4ae037141f2dc5f1fb835"}], 0x1b0}}, {{0x0, 0x0, &(0x7f0000005380)=[{&(0x7f0000004280)="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", 0x1000}, {&(0x7f0000005280)="8c6c44412031f325364bc41b3afa088ba05949397934250392b9e7f96f5440e2b30486c16d2f0c62bf5c62b015a7d2ebf149848661f87a95ff4c8707eb716ee5e3271d9eb3675ea3ced8e37a9ea675bf6b2c943856be1338be54e1ebac43a1574083546e1e7663719ac168920e91cd412789aaafbb645f38e29c9f2dedaaaed85dfc13c5bc884ef0e96ab4f9b95d49a9d439c1e4a6b1e8e9aeea4885f0382d4bb3cc6f698b7d6840b0c604832072980f5e925bda5bc91d582e021461accaf397a4d38b3490d7135e3ae3cb", 0xcb}], 0x2, &(0x7f00000053c0)=[{0x88, 0x109, 0xf67, "b49062157370d58e460a334c50e20f2326f5639282731ffcf6bad8d1525af88ee44e83751389a914558cd04eec44be27a445318c52cd7fd95c1999e81e0e1829cdc4a68e3951f1d55a57834b84e6e488f64225b284e499b3b9f1eca34cce920ec7f0e88451fa91195d206a34a457bed1f0f158"}, {0xa8, 0x108, 0xfffffff9, "cd156dced3ff19e2e0a65f65a060f9af18b799145faa115db9bb1a87d3990786ca0ea19574663ace6e184945e9f5b67673c2537cb85514401e6a7bbe7c1bfbb20f4b0f2d1a8996a3523c00a03bdcecb3a1cca438e4a0b0279ef2dfb2c4d0d9e3af838377e506bb423d98c564d41ac9be698d90c6e1220b2750c0cbaf99d04477a51fa7637179e516a0323e408690bf7c62"}, {0x58, 0x108, 0x4, "f9c1c27f4904e278d79cf051de7b9010d247ad28e84fcbbd34065f380be32d36638f2cd33fb97b05abd0d296adcb41e235ad22d9be297c5d595165ba3634983baae2f0"}, {0x68, 0x107, 0x100, "23ae3032914d5acd86608a102d387dc0860f097ecec038de8feac223aa85b08edd7019aa526755e85067d75ea0722c191f948ba4f2b3971127ed54415e15e37b294993365963e97a2448685f578353f57941bf7ef503fe7b"}, {0x30, 0x114, 0x7fffffff, "e9d39589e9b5a3daf4c2388b92bfb4739a41958d79e7d93be0347c0d105615"}], 0x220}}, {{0x0, 0x0, &(0x7f0000005880)=[{&(0x7f0000005600)="1445262e44edec532ac30cfc655d967a3b75ba80083b157d54fe89baae2c9ed805ad1a4d1fd785d8ef286f3eaac4e74cacf81c28b2bbb2bfc0610273454d8803ea70ab4fe43a55ecdaf0a0dc2bfdb07887279e030c9717bd0e76ed66b60bda741c3d2ad3b0fd3e199690c2360e32dd0dc06fc4d68fc47ba36ef632d30df1b82bcb86e2adf2980712fc80828d89db3e1c0ad5", 0x92}, {&(0x7f00000056c0)="4cd24d575ef6c38ce7dd23c17714f12a5f0ca8775938b96b9022adf7f610b091488771a2e0108bd73c8e544ca0d925f8c89d6c15ede004eb72b16b0cccba5ae99cb016e47664d5b3d5ee6c06e4040985fa9de3a30038b0b7e90257bdb4bcbdd46998f1331fae23b3f82ea1d892eb989aef9794e3f01cbc36a9ecd7067a7ff49d5d36323d207a826f28b11233908afa9f72b7d4f96ff93bc9f93cccf38e43be9f5cd72614cb1522e077691f304ca844c7a49a6483913be522c9d100e8f12cee8d7c00b9c0f4b95e45b88d7759aa33c554cc62c757dfbb65", 0xd7}, {&(0x7f00000057c0)="3ee595234074e33b7e9f26503e996aa6a8de3555101ec308746531767cd7f06990c7bcd8c02882a8da5aaaa86bdc55997222690eaa7c048335dc8331367c08ed88f4940ec1bc6b4241559a32f6e3e8ee7cfe5db046e42984315393dddd1c0ca482b48673753650ec4c9d487e2d5eb9f811f61cfaf2d7a923c01f6344250e9165d92f2a8e8ab913d70efc4d529f069f3a6a2e1c542fe9ee882c7cd71261bbc5201cf51af0007c1619e128194980a5b1ce343f65", 0xb3}], 0x3, &(0x7f00000058c0)=[{0xe8, 0x119, 0x1, "76fdd1c9c6585c909af11959cdd152e3f16fcd8306f62aef97da876656b86df050f96c2dddc1d4b4f17ab9fdd630645be5450e1f71db7ad02a7dcdf01ebbdb32c9ec142b3b016a4ab7c5e0996a92aaadb8eb00e24218fabc2ba70f65fa0281b652a0fa5d07cbd083c9d667a5bbca5ff35400720bbcfb7e6e82cafa86d3688ccd209ac06d1a4194c292accaeae741577c09c61e68bebffb84d9d117d04028c0f5aeebc333400b5fcdf3288666ebced4386f089633660d3e63e9cc20d508099dd503e794b6d13faaf67a1e1626d10debb52651431bb8e9"}, {0x60, 0x111, 0x2, "31603ecde57870602a0c8c62ea9e491a6cbcce3fe8c919832ece081e34f3571cda01f9bfbb9ff8a8bbee5691c8526f57dc5a01da4ec1f53f339a29c910b6d3aaa1a62c8a586f8e1c22b789ab"}, {0x80, 0x10a, 0x7f, "98e2967533801d3b6160c403bcce12ac0d4af74f60476dee6559760ecaaeb83e4426bf1c6264cf76a1462fbe829ff020d0f6bc3146716ba0e79e493f24ac6635065b114dc8859b5fdb452d609939fb382f778358cc8cf60327cbcd86c2e7a35b19716830f6bdf49562"}], 0x1c8}}, {{&(0x7f0000005ac0)=@ethernet={0x1, @broadcast}, 0x80, &(0x7f0000005d00)=[{&(0x7f0000005b40)="69d3e340d3520413d432249f023edb3864ff2be1575ce9b518bd93758bb25da20ff76cf63e33d6c3e0d3fe504ca3dafa74aabb5f05d8232c0811e9992aeaa61ea44b8e1185b10ffca2b3beea6a7ff742cccef32f447639b66520774d367dedec6813f7fbec9764c2b8c81e337ba05ab8498706e98b946298033c81edc9cfb0f03ed8bdfb5c7446f8ba98f9c9eb67df6f0204e2d2e582dee63a91b22b171be44e527ac732c74b4ea58a9ec95f74d04b1de4ec37223d67273f522f5d808cedb547c0e66eca36b4ad8e87fb585c13ea", 0xce}, {&(0x7f0000005c40)="9a53cc2700f96157afc058e87e2ce081a5ea649e3c130926b5fc68a214a8bebff03bf609872c325a21f90bd2c3a06bac8163822c77d65e262134661c58eb612109ce41489f2387ddaa9aca5acc9ece8c6572379d52db5738e2b71a49f43f2bc3aab8da1080c798558c9ee9388dfa57033ac8231ec4d3a805d928bad953ab9bcc900fc2529011ddefcb3a25d639542fb1d464269651b49c9f32414d55401ac3ef50a7adcd2b415b3dd7de4404888c0fde9aca22a2755b1ee76a7089ac", 0xbc}], 0x2, &(0x7f0000005d40)=[{0x70, 0x3a, 0x83, "b489b0f9dcbfd322bbae9b6115099ad0600a720129537487ed6743f76179f55b28c740a3fa3fed1271fe5c6672ed59269042c15fe86713f922a642c9b03e84037662d0c12a9e7e5994f45962f93946368c689b6742e169ed206d4ec0"}, {0x60, 0x10c, 0x7fff, "c1b73f6a7681e0166e3692170cf3b02104cb67f72e1dde66ac8ec48c48bf530d65f505598e38bbe792e067feaad192d3d0d74e1487b06610e6d5ea43528f773e9cf82423b1c7f4cfdff5"}, {0x60, 0x6, 0x1, "cd05fb7e248422146eb0d1e31556a4e610146a3c63b171b92eddb6bc837f07cd5933a8cdffb3e22aba5c46e6e1a3ee212f3c272be8de8300ba9af9d0fac6a1632fd0049b7452179d49b1af9d3c"}], 0x130}}], 0x8, 0x200008c4)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000006180)={&(0x7f0000006080)={0x10, 0x0, 0x0, 0x10200000}, 0xc, &(0x7f0000006140)={&(0x7f00000060c0)={0x7c, 0x1, 0x7, 0x5, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x100000001}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x80000001}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x6}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x80000001}]}, 0x7c}}, 0x4)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
shutdown(r2, 0x0)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000061c0), 0x20000, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006240), r0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r3, &(0x7f0000006300)={&(0x7f0000006200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000062c0)={&(0x7f0000006280)={0x40, r4, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x4}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x37}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x40}}, 0x4008048)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000006440)={&(0x7f0000006340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000006400)={&(0x7f0000006380)={0x54, r1, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x151}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1e}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1d}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x10)
sendmsg$AUDIT_GET(r0, &(0x7f0000006540)={&(0x7f0000006480)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000006500)={&(0x7f00000064c0)={0x10, 0x3e8, 0x300, 0x70bd27, 0x25dfdbfe, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
getsockopt$inet_udp_int(r0, 0x11, 0xa, &(0x7f0000006580), &(0x7f00000065c0)=0x4)
r5 = openat$cgroup_ro(r0, &(0x7f0000006600)='rdma.current\x00', 0x0, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r5, &(0x7f0000006780)={&(0x7f0000006640)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000006740)={&(0x7f0000006680)={0xa8, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x50, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x200}, @IPVS_SVC_ATTR_SCHED_NAME={0xa, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x32}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3b}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x29}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0xa8}, 0x1, 0x0, 0x0, 0x24004844}, 0x4048)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000006800), r5)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f00000068c0)={'erspan0\x00', &(0x7f0000006840)={'syztnl2\x00', <r7=>0x0, 0x10, 0x7, 0x1ff, 0x10000, {{0x15, 0x4, 0x3, 0x4, 0x54, 0x67, 0x0, 0x20, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}, @dev={0xac, 0x14, 0x14, 0x18}, {[@noop, @timestamp_prespec={0x44, 0x14, 0x16, 0x3, 0x0, [{@dev={0xac, 0x14, 0x14, 0x2e}, 0x2}, {@local, 0x1}]}, @ssrr={0x89, 0x13, 0x4d, [@remote, @dev={0xac, 0x14, 0x14, 0x35}, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast]}, @timestamp={0x44, 0x18, 0x46, 0x0, 0x0, [0x80, 0x4, 0x13, 0x0, 0x1f]}]}}}}})
getsockname$packet(r5, &(0x7f0000006940)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000006980)=0x14)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000006c00)={&(0x7f00000067c0), 0xc, &(0x7f0000006bc0)={&(0x7f00000069c0)={0x1d8, r6, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x18, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_STRSET_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_STRSET_STRINGSETS={0xd4, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}]}, @ETHTOOL_A_STRSET_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_STRSET_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20000000}, 0x8800)
bind(r3, &(0x7f0000006c40)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @private=0xa010101}, 0x2, 0x1, 0x2}}, 0x80)

05:15:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6800, 0x0, 0x0)

05:15:24 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 46)

05:15:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6c00, 0x0, 0x0)

05:15:24 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4, 0x7})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0)
r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
close(r2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000a, 0x13, 0xffffffffffffffff, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0xe0115cc7a015ab20, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r5, 0x40383d0c, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x4, 0x0, @fd=r5, 0x6, &(0x7f0000000600), 0x0, 0x0, 0x1}, 0x5)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x5000)=nil, 0x5000, 0x4, 0xabe023afc5a1eeb9, r2, 0x10000000)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000100)={'TPROXY\x00'}, &(0x7f0000000140)=0x1e)
open_tree(r5, &(0x7f0000000180)='./file2\x00', 0x100)
syz_io_uring_submit(r4, r6, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x7}, 0x80000001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x56, 0xc}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
lseek(r1, 0x0, 0x2)
r7 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128)
copy_file_range(r7, 0x0, r1, 0x0, 0x200f5ef, 0x0)

05:15:24 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x74, 0x0, 0x0, 0x0)

05:15:24 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x19b5, &(0x7f0000003480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB])
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
r5 = syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3be}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x2, 0x2}, 0x4a)
signalfd(r5, &(0x7f0000000140)={[0x4]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

05:15:24 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7400, 0x0, 0x0, 0x0)

05:15:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0007000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:24 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x48, 0x0, 0x0)

[ 2794.789745] FAULT_INJECTION: forcing a failure.
[ 2794.789745] name failslab, interval 1, probability 0, space 0, times 0
[ 2794.792355] CPU: 1 PID: 13904 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2794.793922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2794.795790] Call Trace:
[ 2794.796390]  dump_stack+0x107/0x167
[ 2794.797229]  should_fail.cold+0x5/0xa
[ 2794.798100]  ? __io_queue_sqe+0x666/0x9d0
[ 2794.799046]  should_failslab+0x5/0x20
[ 2794.799906]  kmem_cache_alloc_trace+0x55/0x320
[ 2794.800947]  ? lock_downgrade+0x6d0/0x6d0
[ 2794.801895]  __io_queue_sqe+0x666/0x9d0
[ 2794.802804]  ? io_issue_sqe+0x77b0/0x77b0
[ 2794.803745]  ? __fget_files+0x2f8/0x520
[ 2794.804666]  ? io_prep_rw+0x7f5/0x1050
[ 2794.805553]  io_submit_sqes+0x44aa/0x8610
[ 2794.806527]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2794.807646]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2794.808743]  ? find_held_lock+0x2c/0x110
[ 2794.809671]  ? io_submit_sqes+0x8610/0x8610
[ 2794.810660]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2794.811750]  ? wait_for_completion_io+0x270/0x270
[ 2794.812847]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2794.813896]  ? vfs_write+0x354/0xb10
[ 2794.814737]  ? fput_many+0x2f/0x1a0
[ 2794.815555]  ? ksys_write+0x1a9/0x260
[ 2794.816414]  ? __ia32_sys_read+0xb0/0xb0
[ 2794.817351]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2794.818532]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2794.819709]  do_syscall_64+0x33/0x40
[ 2794.820560]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2794.821749] RIP: 0033:0x7fd05c70ab19
[ 2794.822587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2794.826764] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2794.828487] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2794.830105] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2794.831720] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2794.833351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2794.834980] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:15:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0008000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7400, 0x0, 0x0)

05:15:24 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4b, 0x0, 0x0)

05:15:24 executing program 7:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000040)={[{@utf8}]})
unlink(&(0x7f0000000080)='./file0\x00')

05:15:24 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0018000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:24 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7a00, 0x0, 0x0)

[ 2795.129637] ISOFS: Unable to identify CD-ROM format.
[ 2795.211177] ISOFS: Unable to identify CD-ROM format.
05:15:40 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc001c000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:40 executing program 7:
r0 = syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000001800), 0x0, &(0x7f00000018c0)={[{@iocharset={'iocharset', 0x3d, 'cp737'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="000000000000001e112f66696c653000"])
openat(r1, &(0x7f0000000040)='./file0\x00', 0x200001, 0x10a)

05:15:40 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x3, 0xffffffffffffffff}, 0x9)
r2 = mq_open(&(0x7f0000000100)='wfdno', 0x801, 0x83, &(0x7f0000000200)={0x6, 0x4, 0xb0, 0x7})
write$binfmt_elf64(r2, &(0x7f00000003c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x4, 0x0, 0x1, 0xc000000000000000, 0x3, 0x3, 0x18c, 0x109, 0x40, 0x3a7, 0x8000, 0x4, 0x38, 0x2, 0x7, 0x101, 0x5}, [{0x70000000, 0x0, 0x8, 0x9, 0x1, 0x1, 0x3d, 0x9}, {0x6474e551, 0x1, 0x4, 0x0, 0x0, 0x3, 0x1, 0x6}], "4f96338ba86e5cdfe44ee0f43ab046f63282228a899c796de403b7cdc51e00bd5222da942c52349e338c9f38cf00864cec4c272653ef65cfc48b4a049be7f0e33406e7c056006b104e6bd0d9b03d1734627bcf5e67a9bbda831e1dd7d8ae93c8038162605cd2ad2e5d9e7bc449c8b941d8f05aa7544be2f4c333ce52065cc196dffa62f6265d5d8cda213114f428de04e2404de639d40ea3a405b71b4aaf5f52c8152fb492d4f94fd9027300d931185efd044aee2b9937b6cf911e1fd0a2b3f1761c2274e0899b33cde9a27706f7a33304ac5188604c684acdc763a8795c537bef3a5ee28d49bd280b", ['\x00']}, 0x299)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
r3 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r6=>r3, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f0000000080)=0xc0)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$packet_int(r4, 0x107, 0x8, &(0x7f0000000140)=0x1, 0x4)
ioctl$HIDIOCINITREPORT(r7, 0x550c, 0x20000000)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e21, 0x6, @local, 0x9}, 0x1c)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})

05:15:40 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xeffd, 0x0, 0x0)

05:15:40 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 47)

05:15:40 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a, 0x0, 0x0, 0x0)

05:15:40 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4c, 0x0, 0x0)

05:15:40 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x7a00, 0x0, 0x0, 0x0)

[ 2810.762290] FAULT_INJECTION: forcing a failure.
[ 2810.762290] name failslab, interval 1, probability 0, space 0, times 0
[ 2810.765053] CPU: 1 PID: 13945 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2810.766665] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2810.768575] Call Trace:
[ 2810.769196]  dump_stack+0x107/0x167
[ 2810.770044]  should_fail.cold+0x5/0xa
[ 2810.770930]  ? __io_queue_sqe+0x666/0x9d0
[ 2810.771905]  should_failslab+0x5/0x20
[ 2810.772801]  kmem_cache_alloc_trace+0x55/0x320
[ 2810.773862]  ? lock_downgrade+0x6d0/0x6d0
[ 2810.774834]  __io_queue_sqe+0x666/0x9d0
[ 2810.775768]  ? io_issue_sqe+0x77b0/0x77b0
[ 2810.776722]  ? __fget_files+0x2f8/0x520
[ 2810.777648]  ? io_prep_rw+0x7f5/0x1050
[ 2810.778562]  io_submit_sqes+0x44aa/0x8610
[ 2810.779552]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2810.780686]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2810.781798]  ? find_held_lock+0x2c/0x110
[ 2810.782732]  ? io_submit_sqes+0x8610/0x8610
[ 2810.783717]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2810.784824]  ? wait_for_completion_io+0x270/0x270
[ 2810.785927]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2810.786991]  ? vfs_write+0x354/0xb10
[ 2810.787839]  ? fput_many+0x2f/0x1a0
[ 2810.788669]  ? ksys_write+0x1a9/0x260
[ 2810.789545]  ? __ia32_sys_read+0xb0/0xb0
[ 2810.790478]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2810.791675]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2810.792866]  do_syscall_64+0x33/0x40
[ 2810.793720]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2810.794880] RIP: 0033:0x7fd05c70ab19
[ 2810.795728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2810.799932] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2810.801686] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2810.803307] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2810.804938] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2810.806566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2810.808184] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:15:40 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0065000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2810.886723] ISOFS: Unable to identify CD-ROM format.
05:15:40 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x65, 0x0, 0x0)

05:15:40 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5ff, 0x0, 0x0)

05:15:40 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc00f0000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:40 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 48)

05:15:40 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x68, 0x0, 0x0)

[ 2811.041023] FAULT_INJECTION: forcing a failure.
[ 2811.041023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2811.043772] CPU: 1 PID: 13980 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2811.045382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2811.047307] Call Trace:
[ 2811.047925]  dump_stack+0x107/0x167
[ 2811.048783]  should_fail.cold+0x5/0xa
[ 2811.049684]  _copy_from_user+0x2e/0x1b0
[ 2811.050608]  iovec_from_user+0x141/0x400
[ 2811.051554]  __import_iovec+0x67/0x590
[ 2811.052453]  ? kfree+0xd7/0x340
[ 2811.053236]  io_import_iovec+0x581/0x1120
[ 2811.054197]  ? io_put_sq_data+0x80/0x250
[ 2811.055143]  ? io_complete_rw+0x230/0x230
[ 2811.056095]  ? io_clean_op+0x30c/0x870
[ 2811.057007]  ? kiocb_done+0x16b/0xc90
[ 2811.057897]  io_read+0xe14/0x11e0
[ 2811.058696]  ? __is_insn_slot_addr+0x14c/0x290
[ 2811.059746]  ? kernel_text_address+0xf2/0x120
[ 2811.060777]  ? unwind_get_return_address+0x55/0xa0
[ 2811.061907]  ? create_prof_cpu_mask+0x20/0x20
[ 2811.062927]  ? kiocb_done+0xc90/0xc90
[ 2811.063798]  ? mark_lock+0xf5/0x2df0
[ 2811.064667]  ? lock_chain_count+0x20/0x20
[ 2811.065622]  ? __lock_acquire+0xbb1/0x5b00
[ 2811.066609]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2811.067816]  ? kasan_save_stack+0x32/0x40
[ 2811.068753]  ? kasan_save_stack+0x1b/0x40
[ 2811.069693]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2811.070836]  ? __io_queue_sqe+0x666/0x9d0
[ 2811.071790]  ? __lock_acquire+0xbb1/0x5b00
[ 2811.072757]  io_issue_sqe+0x2e8a/0x77b0
[ 2811.073674]  ? find_held_lock+0x2c/0x110
[ 2811.074593]  ? perf_trace_lock+0xac/0x490
[ 2811.075552]  ? io_connect+0x610/0x610
[ 2811.076436]  ? lock_acquire+0x197/0x470
[ 2811.077348]  ? find_held_lock+0x2c/0x110
[ 2811.078283]  ? __fget_files+0x2cf/0x520
[ 2811.079190]  ? lock_downgrade+0x6d0/0x6d0
[ 2811.080137]  __io_queue_sqe+0x90/0x9d0
[ 2811.081034]  ? io_issue_sqe+0x77b0/0x77b0
[ 2811.081968]  ? __fget_files+0x2f8/0x520
[ 2811.082872]  ? io_prep_rw+0x7f5/0x1050
[ 2811.083758]  io_submit_sqes+0x44aa/0x8610
[ 2811.084733]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2811.085864]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2811.086950]  ? find_held_lock+0x2c/0x110
[ 2811.087872]  ? io_submit_sqes+0x8610/0x8610
[ 2811.088858]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2811.089944]  ? wait_for_completion_io+0x270/0x270
[ 2811.091032]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2811.092085]  ? vfs_write+0x354/0xb10
[ 2811.092936]  ? fput_many+0x2f/0x1a0
[ 2811.093760]  ? ksys_write+0x1a9/0x260
[ 2811.094617]  ? __ia32_sys_read+0xb0/0xb0
[ 2811.095540]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2811.096728]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2811.097905]  do_syscall_64+0x33/0x40
[ 2811.098746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2811.099904] RIP: 0033:0x7fd05c70ab19
[ 2811.100744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2811.104910] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2811.106627] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2811.108232] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2811.109835] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2811.111432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2811.113047] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:15:41 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000000)=""/41, 0x29, 0x3)
sendmsg$AUDIT_GET_FEATURE(r0, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x10, 0x3fb, 0x400, 0x70bd2d, 0x25dfdbff, "", ["", "", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040000)
r1 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f0000000340)='\x00', 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000400), 0x20000, 0x0)
dup2(r3, r0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x4e23, 0x81b, @private1={0xfc, 0x1, '\x00', 0x5d}, 0x401}, 0x1c)
ptrace(0x10, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000740)={{0x1, 0x1, 0x18, <r4=>r0, {0x5}}, './file0\x00'})
perf_event_open(&(0x7f00000006c0)={0x2, 0x80, 0x6, 0x4, 0x40, 0x6, 0x0, 0xf7, 0x9140b, 0xc, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_config_ext={0x8001, 0x502}, 0x180b4, 0x7ff, 0x20, 0x0, 0xffffffff, 0x9, 0x200, 0x0, 0x10001, 0x0, 0x8}, 0x0, 0x9, r4, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000580)=ANY=[@ANYBLOB="218470db6b502a9621", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="d3670000beedc0868875eb0e1d628c93ab43f866ccb4131fbbaec1139953c336b9aa2f272a92f89fe123601894f15bfef7f93d09ee4c000000003ef4d8a84ac48fc5e04d484bd01f95a52359c58574fa3bdf3ecdcdb5299676d072164a10da5d336ad954a16602d28ac7d10848c60b2dda9f548b121f9c2e704b28b44b6ef1e97b46cd05d1be563c5b0dd871e5a3df7922d571041f27f2d48c87e59f668eeea679ae90057b52b580a26f64603b11eab928079d4ee600000000000000000000c7425adb009836c30ae03e376bb904b15f17c3476c870600ed264a3ae73cba7adeb48fc32459d2210b1f82873a034ca95a46829046ee22af"])
pwritev2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)='Z', 0x1}], 0x1, 0x0, 0x0, 0x0)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
finit_module(r2, 0x0, 0x0)
perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x0, 0x3d, 0x40420, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfffffffb, 0x1, @perf_config_ext={0x0, 0x401}, 0x2000, 0xfffffffffffffffd, 0x5342, 0x9, 0x1200000, 0x48b9, 0xffff, 0x0, 0x6, 0x0, 0x1000}, 0xffffffffffffffff, 0x2, r1, 0x1)

[ 2811.124607] ISOFS: Unable to identify CD-ROM format.
05:15:41 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000030f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:41 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xfdef, 0x0, 0x0)

05:15:41 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x6c, 0x0, 0x0)

05:15:41 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xeffd, 0x0, 0x0, 0x0)

05:15:41 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0080040f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:41 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xfff5, 0x0, 0x0)

[ 2811.229887] Module has invalid ELF structures
[ 2811.253252] Module has invalid ELF structures
05:15:41 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000050f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:54 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ff, 0x0, 0x0, 0x0)

05:15:54 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5, 0x0, 0x0, 0x0)

05:15:54 executing program 5:
r0 = openat(0xffffffffffffffff, 0x0, 0x100, 0x10e)
fspick(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x60, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f00000003c0), 0x6}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000340)={0x0, 0x4, 0x4, 0x2})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2})
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000008, 0x20010, r2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec46065bf6e5c2fd748b7382cb035aee7d07675"]})
getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000000300)={'icmp6\x00'}, &(0x7f0000000380)=0x1e)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/consoles\x00', 0x0, 0x0)
syz_io_uring_setup(0x4d4f, &(0x7f0000000480)={0x0, 0x2560}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000002c0))
unshare(0x48020200)

05:15:54 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000040)=ANY=[@ANYBLOB="0004040000000000fe80"], 0x28)
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000080), 0x8)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000440)={0xa, 0x4e20, 0x0, @private1}, 0x1c, 0x0}}], 0x1, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
r2 = syz_open_dev$sg(0x0, 0x0, 0x2001)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000dc0)={0x0, 0x0, {0x0, @usage, <r3=>0x0}, {0x0, @struct}, {0x0, @struct}})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x5, 0x6000, @fd_index=0xa, 0x6, &(0x7f0000000100)="040cc7e3e36f88f9667502c8f3e470294c0dcc7dd749a5c4d026d94a0e5f619bf15efab27a95f2046b33ece7fe68c01bfede76d3c8024071c3932391381547cbb17f948013236ad8ad069ab93613d16eff03e02ea814137a2a87dac2e368ece9952add7a2f3a69884d3dffebeca6594bb8aed358f2e2e86b9aceffece5", 0x7d, 0x1a}, 0x74)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f00000008c0)={r3, 0x5, 0x80000001})
ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f0000000480)={r3, "a1813e70fd6dde4df696a5c2171636c2"})
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/time\x00')

05:15:54 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000, 0x0, 0x0)

05:15:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x74, 0x0, 0x0)

05:15:54 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 49)

05:15:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000060f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

[ 2824.538352] FAULT_INJECTION: forcing a failure.
[ 2824.538352] name failslab, interval 1, probability 0, space 0, times 0
[ 2824.541170] CPU: 0 PID: 14018 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2824.542871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2824.544901] Call Trace:
[ 2824.545559]  dump_stack+0x107/0x167
[ 2824.546452]  should_fail.cold+0x5/0xa
[ 2824.547391]  ? __io_queue_sqe+0x666/0x9d0
[ 2824.548408]  should_failslab+0x5/0x20
[ 2824.549348]  kmem_cache_alloc_trace+0x55/0x320
[ 2824.550466]  ? lock_downgrade+0x6d0/0x6d0
[ 2824.551486]  __io_queue_sqe+0x666/0x9d0
[ 2824.552464]  ? io_issue_sqe+0x77b0/0x77b0
[ 2824.553483]  ? __fget_files+0x2f8/0x520
[ 2824.554459]  ? io_prep_rw+0x7f5/0x1050
[ 2824.555408]  io_submit_sqes+0x44aa/0x8610
[ 2824.556450]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2824.557671]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2824.558848]  ? find_held_lock+0x2c/0x110
[ 2824.559835]  ? io_submit_sqes+0x8610/0x8610
[ 2824.560882]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2824.562055]  ? wait_for_completion_io+0x270/0x270
[ 2824.563223]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2824.564345]  ? vfs_write+0x354/0xb10
[ 2824.565256]  ? fput_many+0x2f/0x1a0
[ 2824.566135]  ? ksys_write+0x1a9/0x260
[ 2824.567053]  ? __ia32_sys_read+0xb0/0xb0
[ 2824.568034]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2824.569308]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2824.570563]  do_syscall_64+0x33/0x40
[ 2824.571459]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2824.572693] RIP: 0033:0x7fd05c70ab19
[ 2824.573599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2824.578052] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2824.579886] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2824.581600] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2824.583310] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2824.585035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2824.586747] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:15:54 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000070f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:15:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x7a, 0x0, 0x0)

05:15:54 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = syz_io_uring_complete(0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4ea0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x0, 0x1, 0x3ff, 0x21, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x20, 0xde99, 0x3}})
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000280)={@empty, 0x3d, r2})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000))
fcntl$setflags(r1, 0x2, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r4)
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000500)='z', 0x1}, {&(0x7f0000000040)='Z', 0x1}], 0x2)
ioctl$sock_inet6_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x74})
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4)
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000300)={0x2, 0x8})
socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x3, @empty}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)="10", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000140)="7f", 0x1}], 0x1}}], 0x3, 0x1080)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x5080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x401}, 0x0, 0x0, 0xfffffffe, 0x7, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

05:15:54 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5, 0x0, 0x0)

05:16:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc007c0a0f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:16:08 executing program 0:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfdef, 0x0, 0x0, 0x0)

05:16:08 executing program 6:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 50)

05:16:08 executing program 4:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0)

05:16:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x300, 0x0, 0x0)

05:16:08 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x14, 0x0, 0xd0c, 0x0, 0x8}, 0x14}}, 0x0)
recvfrom(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0xfffc, 0x0, @empty}}}, 0x80)

05:16:08 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x100000, 0x0, 0x0)

05:16:08 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x40000, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='nfs\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x82040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x8000, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pivot_root(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)='./file0\x00')
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000000, 0x110, 0xffffffffffffffff, 0x8000000)
clone3(&(0x7f0000000540)={0x50000, &(0x7f0000000100), &(0x7f0000000180), &(0x7f00000001c0), {0x17}, &(0x7f00000002c0)=""/229, 0xe5, &(0x7f00000003c0)=""/76, &(0x7f0000000440)=[0xffffffffffffffff], 0x1}, 0x58)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f00000018c0)}, 0x8616)
ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f00000000c0)={'veth0_to_bridge\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'})
syz_io_uring_setup(0x495b, &(0x7f0000000240)={0x0, 0x4012, 0x10, 0x21, 0x1a4}, &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000080))
io_uring_setup(0x6f92, &(0x7f00000006c0)={0x0, 0xd929, 0x0, 0x2, 0x176})
openat2(0xffffffffffffffff, &(0x7f0000001840)='./file0\x00', &(0x7f0000001880)={0x109002, 0xdb}, 0x18)

05:16:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x500, 0x0, 0x0)

[ 2838.962060] FAULT_INJECTION: forcing a failure.
[ 2838.962060] name failslab, interval 1, probability 0, space 0, times 0
[ 2838.964833] CPU: 0 PID: 14070 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2838.966529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2838.968544] Call Trace:
[ 2838.969201]  dump_stack+0x107/0x167
[ 2838.970087]  should_fail.cold+0x5/0xa
[ 2838.971015]  ? io_setup_async_rw+0x180/0x580
[ 2838.972079]  should_failslab+0x5/0x20
[ 2838.973003]  __kmalloc+0x72/0x390
[ 2838.973854]  io_setup_async_rw+0x180/0x580
[ 2838.974877]  ? iov_iter_restore+0x195/0x3a0
[ 2838.975928]  io_read+0x775/0x11e0
[ 2838.976769]  ? __is_insn_slot_addr+0x14c/0x290
[ 2838.977895]  ? kernel_text_address+0xf2/0x120
[ 2838.979022]  ? unwind_get_return_address+0x55/0xa0
[ 2838.980208]  ? create_prof_cpu_mask+0x20/0x20
[ 2838.981310]  ? kiocb_done+0xc90/0xc90
[ 2838.982227]  ? mark_lock+0xf5/0x2df0
[ 2838.983137]  ? lock_chain_count+0x20/0x20
[ 2838.984144]  ? __lock_acquire+0xbb1/0x5b00
[ 2838.985197]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2838.986459]  ? kasan_save_stack+0x32/0x40
[ 2838.987457]  ? kasan_save_stack+0x1b/0x40
[ 2838.988456]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2838.989729]  ? __io_queue_sqe+0x666/0x9d0
[ 2838.990734]  ? __lock_acquire+0xbb1/0x5b00
[ 2838.991795]  io_issue_sqe+0x2e8a/0x77b0
[ 2838.992761]  ? find_held_lock+0x2c/0x110
[ 2838.993778]  ? perf_trace_lock+0xac/0x490
[ 2838.994824]  ? io_connect+0x610/0x610
[ 2838.995796]  ? lock_acquire+0x197/0x470
[ 2838.996796]  ? find_held_lock+0x2c/0x110
[ 2838.997822]  ? __fget_files+0x2cf/0x520
[ 2838.998824]  ? lock_downgrade+0x6d0/0x6d0
[ 2838.999872]  __io_queue_sqe+0x90/0x9d0
[ 2839.000855]  ? io_issue_sqe+0x77b0/0x77b0
[ 2839.001875]  ? __fget_files+0x2f8/0x520
[ 2839.002842]  ? io_prep_rw+0x7f5/0x1050
[ 2839.003831]  io_submit_sqes+0x44aa/0x8610
[ 2839.004893]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2839.006160]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2839.007381]  ? find_held_lock+0x2c/0x110
[ 2839.008409]  ? io_submit_sqes+0x8610/0x8610
[ 2839.009507]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2839.010716]  ? wait_for_completion_io+0x270/0x270
[ 2839.011923]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2839.013100]  ? vfs_write+0x354/0xb10
[ 2839.014040]  ? fput_many+0x2f/0x1a0
[ 2839.014963]  ? ksys_write+0x1a9/0x260
[ 2839.015924]  ? __ia32_sys_read+0xb0/0xb0
[ 2839.016954]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2839.018270]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2839.019564]  do_syscall_64+0x33/0x40
[ 2839.020499]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2839.021785] RIP: 0033:0x7fd05c70ab19
[ 2839.022712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2839.027325] RSP: 002b:00007fd059c80188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2839.029202] RAX: ffffffffffffffda RBX: 00007fd05c81df60 RCX: 00007fd05c70ab19
[ 2839.030987] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2839.032765] RBP: 00007fd059c801d0 R08: 0000000000000000 R09: 0000000000000000
[ 2839.034554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2839.036338] R13: 00007ffc4350d9df R14: 00007fd059c80300 R15: 0000000000022000
05:16:08 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x600, 0x0, 0x0)

05:16:08 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000180f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:16:09 executing program 2:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x700, 0x0, 0x0)

05:16:09 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x810008, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x0, 0x0)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x0, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xc9000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x84d00, 0x0, 0xfbd, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000002180)=""/4090, 0xffa)

05:16:09 executing program 1:
r0 = syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1f8, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f0000000040), 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x200000, 0x0, 0x0)

05:16:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc00001c0f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:16:09 executing program 5:
msgrcv(0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x42, 0xe0, 0x79, 0x0, 0x0, 0x10001, 0x400, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1000, 0x4, @perf_config_ext={0x7, 0xd7}, 0x8000, 0x2, 0x3, 0x4, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0xe9}, 0x0, 0xffffffffffffffff, r1, 0x9)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004600), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000380)={'ip6gre0\x00', 0x0, 0x2f, 0x1f, 0x36, 0xe8, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private2={0xfc, 0x2, '\x00', 0x1}, 0x10, 0x7, 0x9, 0x1}})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0)
msgsnd(0x0, &(0x7f0000000280)=ANY=[], 0x8, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000100)={'wg1\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r3 = msgget$private(0x0, 0x24)
msgctl$IPC_RMID(r3, 0x0)
msgrcv(r3, &(0x7f0000000200)={0x0, ""/100}, 0x6c, 0x1, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x28010, r2, 0x10000000)
fstatfs(0xffffffffffffffff, &(0x7f0000000280)=""/54)
msgget$private(0x0, 0x60a)
copy_file_range(r0, 0x0, r2, &(0x7f0000000040)=0x7fff, 0xa1, 0x0)

05:16:09 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000200f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f00000000000000000100000000000002063f7f000001000028020000028401", 0x63, 0x400}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000025", 0x39, 0x53e}], 0x0, &(0x7f0000012800))

05:16:09 executing program 5:
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0x80000000})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = fork()
ptrace(0x10, r2)
syz_open_procfs(r2, &(0x7f00000000c0)='stat\x00')
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000200)={0x401, 0x4, 0x4, 0x3, 0x7d911379})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x40, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}, {@version_L}, {@loose}], [{@dont_appraise}]}})

[ 2839.267999] EXT4-fs warning (device sda): verify_group_input:146: Cannot add at group 2147483648 (only 16 groups)
[ 2862.316067] Bluetooth: hci3: command 0x0406 tx timeout

VM DIAGNOSIS:
05:21:17  Registers:
info registers vcpu 0
RAX=ffffffff83e93390 RBX=0000000000000000 RCX=ffffffff83e7af2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e93998 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85678908 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9339e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffdbcbae7c8 CR3=000000000d754000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000dd060a
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000004166aac000000000 XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e93390 RBX=0000000000000001 RCX=ffffffff83e7af2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e93998 RBP=0000000000000001 RSP=ffff888008987e70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85678908 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9339e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd331453010 CR3=000000000d754000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00fa02fe016c6c6f502e726567616e61
XMM02=61746f7420636578650a0a0100010101 XMM03=6578650a006e6567206365786508006c
XMM04=6f74756365786511006873616d732063 XMM05=63657865090073747261747365722072
XMM06=646e616320636578650e007a7a756620 XMM07=6169727420636578650b006574616469
XMM08=6e6567206365786508006c61746f7420 XMM09=786511006873616d7320636578650a00
XMM10=00737472617473657220726f74756365 XMM11=636578650e007a7a7566206365786509
XMM12=636578650b006574616469646e616320 XMM13=696d20636578650d0065676169727420
XMM14=6e696820636578650a00657a696d696e XMM15=0000736465657320636578650a007374