(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x10, r0, 0x10000000)
syz_io_uring_submit(r1, r5, &(0x7f0000000440)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0xa5c, &(0x7f0000000240)=[{&(0x7f0000000040)=""/30, 0x1e}, {&(0x7f0000000340)=""/250, 0xfa}, {&(0x7f0000000500)=""/246, 0xf6}, {&(0x7f0000000600)=""/151, 0x97}, {&(0x7f00000006c0)=""/219, 0xdb}, {&(0x7f0000000140)=""/46, 0x2e}, {&(0x7f00000001c0)=""/5, 0x5}], 0x7, 0x0, 0x1}, 0x1000)
creat(&(0x7f0000000840)='./file0\x00', 0x18)
syz_io_uring_submit(0x0, r5, &(0x7f0000000880)=@IORING_OP_FALLOCATE={0x11, 0x5, 0x0, @fd_index=0x4, 0x5, 0x0, 0x1}, 0x9)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000800), 0x400000, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x110, r6, 0x10000000)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
signalfd4(r7, &(0x7f00000007c0)={[0x9]}, 0x8, 0x0)

08:26:41 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:26:41 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

08:26:41 executing program 7:
r0 = syz_io_uring_setup(0x3866, &(0x7f00000002c0), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x8, 0x9, 0x0, 0xffd, 0x1, 0x1, {0x0, r9}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:26:41 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbfe, 0x100}}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7d84, &(0x7f0000000240)={0x0, 0x2a7d, 0x0, 0x2, 0x94, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140))
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r9, 0x0, 0x0}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r10, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r10, r2, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@rc={0x1f, @none}, 0x0, 0x80800, 0x1}, 0xffffffff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x44, &(0x7f00000001c0)=0x400, 0x0, 0x4)
signalfd4(r4, &(0x7f0000000440)={[0x3f]}, 0x8, 0x80000)

08:26:41 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
sendfile(r5, r7, &(0x7f00000001c0)=0xfde3, 0x31)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x9, 0x1f, 0x8, 0x1, 0x0, 0x3, 0x28000, 0xa, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x6f7c, 0x0, @perf_bp={&(0x7f0000000040)}, 0x2, 0x9, 0x9e74, 0x0, 0x400, 0x52b0, 0xfffc, 0x0, 0x3, 0x0, 0x54}, 0x0, 0xe, r6, 0x8)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r3, 0x40089413, &(0x7f0000000340)=0x7)

[ 2150.353706] FAULT_INJECTION: forcing a failure.
[ 2150.353706] name failslab, interval 1, probability 0, space 0, times 0
[ 2150.355095] CPU: 1 PID: 11171 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2150.355904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2150.356848] Call Trace:
[ 2150.357152]  dump_stack+0x107/0x167
[ 2150.357560]  should_fail.cold+0x5/0xa
[ 2150.357984]  ? create_object.isra.0+0x3a/0xa20
[ 2150.358516]  should_failslab+0x5/0x20
[ 2150.358958]  kmem_cache_alloc+0x5b/0x310
[ 2150.359448]  create_object.isra.0+0x3a/0xa20
[ 2150.359956]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2150.360557]  kmem_cache_alloc_bulk+0x168/0x320
[ 2150.361107]  io_submit_sqes+0x6fe6/0x8610
[ 2150.361626]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2150.362201]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2150.362763]  ? find_held_lock+0x2c/0x110
[ 2150.363248]  ? io_submit_sqes+0x8610/0x8610
[ 2150.363754]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2150.364291]  ? wait_for_completion_io+0x270/0x270
[ 2150.364867]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2150.365406]  ? vfs_write+0x354/0xb10
[ 2150.365836]  ? fput_many+0x2f/0x1a0
[ 2150.366261]  ? ksys_write+0x1a9/0x260
[ 2150.366709]  ? __ia32_sys_read+0xb0/0xb0
[ 2150.367185]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2150.367795]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2150.368399]  do_syscall_64+0x33/0x40
[ 2150.368845]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2150.369414] RIP: 0033:0x7f9e767a8b19
[ 2150.369854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2150.371987] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2150.372880] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2150.373702] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2150.374488] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2150.375310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2150.376114] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:26:41 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040))

08:26:42 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

08:26:57 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0x100010, r4, 0x8000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pptp={0x18, 0x2, {0x3, @dev={0xac, 0x14, 0x14, 0x18}}}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x102, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:26:57 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x40010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
syz_io_uring_setup(0x12ff, &(0x7f0000000240)={0x0, 0x1d7b, 0x2, 0x0, 0x2a9}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r1, r5, &(0x7f00000001c0)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x100)

08:26:57 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:26:57 executing program 5:
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x674, &(0x7f0000000500)={0x0, 0x1a01, 0x8, 0x2, 0x10b, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x9)
ppoll(&(0x7f00000003c0)=[{r5, 0x1200}, {r6}], 0x2, &(0x7f0000000400)={0x0, 0x989680}, &(0x7f0000000440)={[0x5]}, 0x8)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000009, 0x40010, r0, 0x0)
syz_io_uring_setup(0x39c6, &(0x7f0000000240)={0x0, 0x157a, 0x0, 0x2, 0x1e1, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140), &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000380)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x4000, @fd_index=0x8, 0x732, &(0x7f0000000340)=""/28, 0x1c, 0x1}, 0x7)

08:26:57 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:26:57 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 41)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:26:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040))

08:26:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

[ 2165.779917] FAULT_INJECTION: forcing a failure.
[ 2165.779917] name failslab, interval 1, probability 0, space 0, times 0
[ 2165.782681] CPU: 1 PID: 11206 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2165.784133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2165.785882] Call Trace:
[ 2165.786449]  dump_stack+0x107/0x167
[ 2165.787222]  should_fail.cold+0x5/0xa
[ 2165.788026]  ? create_object.isra.0+0x3a/0xa20
[ 2165.788998]  should_failslab+0x5/0x20
[ 2165.789799]  kmem_cache_alloc+0x5b/0x310
[ 2165.790655]  ? mark_held_locks+0x9e/0xe0
[ 2165.791515]  create_object.isra.0+0x3a/0xa20
[ 2165.792444]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2165.793541]  kmem_cache_alloc_bulk+0x168/0x320
[ 2165.794514]  io_submit_sqes+0x6fe6/0x8610
[ 2165.795418]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2165.796467]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2165.797493]  ? find_held_lock+0x2c/0x110
[ 2165.798358]  ? io_submit_sqes+0x8610/0x8610
[ 2165.799276]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2165.800294]  ? wait_for_completion_io+0x270/0x270
[ 2165.801320]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2165.802324]  ? vfs_write+0x354/0xb10
[ 2165.803139]  ? fput_many+0x2f/0x1a0
[ 2165.803940]  ? ksys_write+0x1a9/0x260
[ 2165.804742]  ? __ia32_sys_read+0xb0/0xb0
[ 2165.805657]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
08:26:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040))

[ 2165.806793]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2165.808127]  do_syscall_64+0x33/0x40
[ 2165.808925]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2165.810003] RIP: 0033:0x7f9e767a8b19
[ 2165.810819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2165.814803] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2165.816426] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2165.817975] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2165.819487] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2165.820993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2165.822518] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:26:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

08:26:57 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:26:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)

08:26:57 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
clock_gettime(0x0, &(0x7f0000000040)={<r5=>0x0, <r6=>0x0})
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000140)={r5, r6+60000000}}, 0x40)
syz_io_uring_setup(0x311f, &(0x7f0000000240)={0x0, 0xe8b7, 0x1, 0x0, 0x1d0, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000380))
r8 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000440)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000)
syz_io_uring_submit(r11, r10, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r7, r10, &(0x7f0000000500)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x0, &(0x7f00000003c0)="09daa0786ea3d1b02b02b20923ab8a1d7f1911b9f9548a539b65938c8d3800a92056f8e029643fa41ddd52eff30b15331f1f4837acaceadef1fcb3c55f87c9e1e0fc3514661836e791d2eafc2a3d8ca4118dacf6e00d6e27c1f5e57ee8a0e0edc6911e65a06c9bff77144343d1b9a871f0bbc4034bc07f82a8afa58f87ef6d1bd110b0444f92f38b0f2576b94e05645ec98fcac6b990bf976cb2b0909615825baa6d8d2111", 0x7, 0x0, 0x1, {0x2}}, 0x5b)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:26:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

08:26:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)

08:26:57 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:26:57 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
memfd_create(&(0x7f0000000000)='\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r5, @ANYBLOB="014000100000001c1bc23d8152d96400"])
r7 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0)
r8 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xf, r8, 0xc)
openat$cgroup_procs(r6, &(0x7f0000000280)='cgroup.threads\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r9=>r7, {0x10001, 0x7fff}}, './file0\x00'})
fsetxattr$security_selinux(r9, &(0x7f0000000340), &(0x7f00000001c0)='system_u:object_r:devicekit_exec_t:s0\x00', 0x26, 0x2)
mq_timedsend(r7, 0x0, 0x0, 0x100000000, &(0x7f0000000040))
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:26:57 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:26:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r5)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)

08:26:57 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000240), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:13 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x8, 0x0, 0x398}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:13 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r4 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x14, 0x4a, 0x40, 0xb1, 0x0, 0x400, 0x8, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x1, 0x10000}, 0x80, 0xfff, 0x3, 0x4, 0x6, 0x6, 0x1, 0x0, 0x40, 0x0, 0x9}, 0x0, 0xa, r3, 0x18)
pwritev2(r4, &(0x7f0000001980)=[{0xfffffffffffffffe}, {&(0x7f0000000640)="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", 0x1000}, {&(0x7f0000000380)="3ae3ca008ef868cf232a2b65fab8ad759f644160fcf89d73346f58a65eb920189c2899bd3155f7160d0d78d7806aa5bbe264009df6a8717c6b98858b02ca2be655002175e26ecb73637633b96b0a21d50250b9bdbaca8b391b4ff10cd82d43cc686e023540e82860f7e4580feb28b77459257b81f78cdbd6cce48756e964346e7a3dc11f3190ce97337cb75664ed85f762b83e6e8acd58f9d29eeddb2f7e0f56079000cbd0af68f3f4f346", 0xab}, {&(0x7f0000000500)="e3b26e60234ee136057621c7d9434b9c9e65b20bf577fa74fc9b9657592487c0c9c0b65aa6254d185b7964f00ac99a8db09789d2f88a1a4f38b25722ee5d6761b885734e86127fa3cbe15be309d8d020fed7ab21df2fa7c1e01b5ec5c39128197f9012d347490b0f02d3a552b4cbfa5b9c2792aa20d627c4f3c112b269e9da953c2dbb0574bf9f9ab22a14db6b8750ad9787092f42cf5c2021d2713ee13d5331a7cb5656fbe51ccfe3b7e5db17962f846f00c0beb7068b33800ca8f83995517dab888d6e9c14ceac14246f7fed20191dbe280a22116a802f255c7d7b34c666aa99b4e38e04083306ff7f", 0xea}, {&(0x7f0000001640)="7b2ac3ecdf33a54844e56f901f20a3fffff6639d3b95b4ca25120c332e63d16e8a90c1492c629ca8e878a500a029bf373a37a10bf7b8c878eb9c8d1b9100a8966bf46ccd91cf96b9dd84db39069392631af751743aca52555f94a865218d6aa5ca1790ff9111a69f9ad6cd85d79df49f82d394313276b3fea5d097249b5964259732a04e84020df90423079be7d3e4cdc7a85567b4caebad2e0e299d", 0x9c}, {&(0x7f0000000140)="26604d40c831f9685ca673e8758ab810cab69261ab7d97c6", 0x18}, {&(0x7f0000001700)="e96f92fb71045295d3dce2ae205789de849f06e21040114fddfa0e64011fb4fe29a7b57c019e974f729547b1272cce6ac6c22231e7576e8bbfd9a18c0ac00712f1ab91f4030637909291eeb50404e677fe7962f669d908864b98ee2fed63020f70a9ab6f12b0d72c392f05aa97ea0b0d3b6c2b12bce059b24836a252dd1e9f74537ccc85b116219f6c0f85347ae8a97c6a254e0eb7fefb597a63304a0e0544aaddd40ba5806e929906a77ccbca1e250ffd9b5914d476d6b4fa426df135f480d1dc44a69e7638ea1f71fae43d6c2bf91acd32baf3b389ad58fb6104dfa833471d7f8100d8ddae675459ecf087c376c77e47dbf57c18758dc1", 0xf8}, {&(0x7f00000001c0)="7f807adc4a3fcad06ec2e99bd79038569e76f5fed9d805ce58bf032d6c1563eeb5f66a6299e158455996db3a6deb048cb985d74678f2eab967e5ea79", 0x3c}, {&(0x7f0000001800)="504d25e6cb681cf0d7fd9d6ea71b2247e3d1cfda1c2833c31cd0d6405a68385de745b0ea20b65ab65e3d0d00098cf54b59ade7f3ee368f7d52a4a8a70155d7c2bd7446acb9b72260dbaa00ddfa77717040c563479ece9aaff948b9787dcc3820f31439821caf7cea5a6eaa3328be455a97d59252eab33afdf4aea48064f636423d3196ef3131432cff2a825e0797fe27a50a991d6c26d27c6e66d6b16f8c2a", 0x9f}, {&(0x7f00000018c0)="b557c787355e32628a1e7d19258d319b9885b822568614933bf8a6b9c994b743dc230b6fe369696022e38d1ec096d7e21e1a51aacf1767c40d45bc2f09c2af0a9d1bc696fd745e327d5735cdba9a66fcaffb8e6a34c82b29265e8490d49fcf7866b3e66f164c15d28d4537b9f6bd98b8a9cc5ab4dda7a9e7c8540008c69fdea928e7d20698c6bf8ed528d62e451a0c089c3ac9a55560986f7e1f4fe68704af5acc9cf217dd45f9534340f674eb", 0xad}], 0xa, 0x1, 0x9, 0x19)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='net/dev_snmp6\x00')
fcntl$addseals(r5, 0x409, 0x2)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r7, 0xf502, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
listen(r7, 0x47)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:13 executing program 2:
r0 = syz_io_uring_setup(0x385b, &(0x7f00000002c0)={0x0, 0x80000, 0x11, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f00000001c0))
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)="3e49bc145b980e66a8468b4f733abff9d8524fa5bd6a72810c01c2d384188171cff25dcb7f4a7244b017ecd64827879811a08fed7131687b6e1ebf926382200202843d117fb42130b92ce3ce255b0ca46971917b0d67caf9a1ccfb7acf5c992dfad86c122dbd57aae08b45eef9368d9bf6b6c0e0082b015231865fcef84e57a132de5021c42c68ca94ba0202", 0x8c, 0x10, 0x1}, 0x2)

08:27:13 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:13 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4306, 0x82004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xf}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:13 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xf5ffffff, 0x0, 0x0, 0x0)

08:27:13 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:13 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 42)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2182.373899] FAULT_INJECTION: forcing a failure.
[ 2182.373899] name failslab, interval 1, probability 0, space 0, times 0
[ 2182.376419] CPU: 0 PID: 11289 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2182.377892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2182.379628] Call Trace:
[ 2182.380186]  dump_stack+0x107/0x167
[ 2182.380951]  should_fail.cold+0x5/0xa
[ 2182.381767]  ? create_object.isra.0+0x3a/0xa20
[ 2182.382721]  should_failslab+0x5/0x20
[ 2182.383527]  kmem_cache_alloc+0x5b/0x310
[ 2182.384378]  ? mark_held_locks+0x9e/0xe0
[ 2182.385241]  create_object.isra.0+0x3a/0xa20
[ 2182.386164]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2182.387227]  kmem_cache_alloc_bulk+0x168/0x320
[ 2182.388173]  io_submit_sqes+0x6fe6/0x8610
[ 2182.389079]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2182.390117]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2182.391123]  ? find_held_lock+0x2c/0x110
[ 2182.391982]  ? io_submit_sqes+0x8610/0x8610
[ 2182.392888]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2182.393920]  ? wait_for_completion_io+0x270/0x270
[ 2182.394933]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2182.395901]  ? vfs_write+0x354/0xb10
[ 2182.396671]  ? fput_many+0x2f/0x1a0
[ 2182.397454]  ? ksys_write+0x1a9/0x260
[ 2182.398256]  ? __ia32_sys_read+0xb0/0xb0
[ 2182.399112]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2182.400208]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2182.401298]  do_syscall_64+0x33/0x40
[ 2182.402091]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2182.403168] RIP: 0033:0x7f9e767a8b19
[ 2182.403953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2182.407825] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2182.409441] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2182.410920] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2182.412411] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2182.413916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2182.415403] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:14 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

08:27:14 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

08:27:14 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:14 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x10, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:14 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:14 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x4}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:14 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f0000000140)={0x2, 0x1, 0x6})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:14 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:14 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 43)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2182.913772] FAULT_INJECTION: forcing a failure.
[ 2182.913772] name failslab, interval 1, probability 0, space 0, times 0
[ 2182.916492] CPU: 1 PID: 11329 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2182.917940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2182.919708] Call Trace:
[ 2182.920277]  dump_stack+0x107/0x167
[ 2182.921056]  should_fail.cold+0x5/0xa
[ 2182.921887]  ? create_object.isra.0+0x3a/0xa20
[ 2182.922860]  should_failslab+0x5/0x20
[ 2182.923667]  kmem_cache_alloc+0x5b/0x310
[ 2182.924530]  ? mark_held_locks+0x9e/0xe0
[ 2182.925402]  create_object.isra.0+0x3a/0xa20
[ 2182.926332]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2182.927419]  kmem_cache_alloc_bulk+0x168/0x320
[ 2182.928386]  io_submit_sqes+0x6fe6/0x8610
[ 2182.929290]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2182.930332]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2182.931326]  ? find_held_lock+0x2c/0x110
[ 2182.932173]  ? io_submit_sqes+0x8610/0x8610
[ 2182.933065]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2182.934085]  ? wait_for_completion_io+0x270/0x270
[ 2182.935076]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2182.936053]  ? vfs_write+0x354/0xb10
[ 2182.936822]  ? fput_many+0x2f/0x1a0
[ 2182.937575]  ? ksys_write+0x1a9/0x260
[ 2182.938354]  ? __ia32_sys_read+0xb0/0xb0
[ 2182.939191]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2182.940253]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2182.941330]  do_syscall_64+0x33/0x40
[ 2182.942090]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2182.943132] RIP: 0033:0x7f9e767a8b19
[ 2182.943893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2182.947692] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2182.949281] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2182.950734] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2182.952251] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2182.953716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2182.955171] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:27 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 44)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:27:27 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

[ 2196.326428] FAULT_INJECTION: forcing a failure.
[ 2196.326428] name failslab, interval 1, probability 0, space 0, times 0
[ 2196.327763] CPU: 0 PID: 11350 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2196.328555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2196.329511] Call Trace:
[ 2196.329817]  dump_stack+0x107/0x167
[ 2196.330237]  should_fail.cold+0x5/0xa
[ 2196.330673]  ? create_object.isra.0+0x3a/0xa20
[ 2196.331199]  should_failslab+0x5/0x20
[ 2196.331635]  kmem_cache_alloc+0x5b/0x310
[ 2196.332100]  ? mark_held_locks+0x9e/0xe0
[ 2196.332570]  create_object.isra.0+0x3a/0xa20
[ 2196.333071]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2196.333658]  kmem_cache_alloc_bulk+0x168/0x320
[ 2196.334187]  io_submit_sqes+0x6fe6/0x8610
[ 2196.334681]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2196.335254]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2196.335818]  ? find_held_lock+0x2c/0x110
[ 2196.336284]  ? io_submit_sqes+0x8610/0x8610
[ 2196.336790]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2196.337350]  ? wait_for_completion_io+0x270/0x270
[ 2196.337919]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2196.338450]  ? vfs_write+0x354/0xb10
[ 2196.338879]  ? fput_many+0x2f/0x1a0
[ 2196.339308]  ? ksys_write+0x1a9/0x260
[ 2196.339744]  ? __ia32_sys_read+0xb0/0xb0
[ 2196.340217]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2196.340822]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2196.341429]  do_syscall_64+0x33/0x40
[ 2196.341865]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2196.342452] RIP: 0033:0x7f9e767a8b19
[ 2196.342889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2196.345010] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2196.345912] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2196.346723] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2196.347538] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2196.348346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2196.349166] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:27 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005dc0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)=""/66, 0x42}], 0x1, &(0x7f0000000340)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f00000003c0), 0x6e, &(0x7f0000000140)=[{&(0x7f0000000500)=""/114, 0x72}, {&(0x7f0000000580)=""/4096, 0x1000}], 0x2, &(0x7f00000001c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000001580), 0x6e, &(0x7f0000003940)=[{&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/4096, 0x1000}, {&(0x7f0000000440)=""/16, 0x10}, {&(0x7f0000003600)=""/198, 0xc6}, {&(0x7f0000003700)=""/255, 0xff}, {&(0x7f0000003800)=""/82, 0x52}, {&(0x7f0000003880)=""/155, 0x9b}], 0x7, &(0x7f00000039c0)=ANY=[@ANYBLOB="30000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c00000000000000010000000200e600", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32], 0xc8}}, {{&(0x7f0000003ac0)=@abs, 0x6e, &(0x7f0000003ec0)=[{&(0x7f0000003b40)=""/62, 0x3e}, {&(0x7f0000003b80)=""/137, 0x89}, {&(0x7f0000003c40)=""/154, 0x9a}, {&(0x7f0000003d00)=""/95, 0x5f}, {&(0x7f0000003d80)=""/252, 0xfc}, {&(0x7f0000003e80)=""/24, 0x18}], 0x6, &(0x7f0000003f40)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000003f80)=@abs, 0x6e, &(0x7f0000004100)=[{&(0x7f0000004000)=""/166, 0xa6}, {&(0x7f00000040c0)=""/21, 0x15}], 0x2, &(0x7f0000004140)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe8}}, {{&(0x7f0000004240)=@abs, 0x6e, &(0x7f0000004400)=[{&(0x7f00000042c0)=""/143, 0x8f}, {&(0x7f0000004380)=""/75, 0x4b}], 0x2, &(0x7f0000004440)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}}, {{&(0x7f0000004540), 0x6e, &(0x7f0000005b40)=[{&(0x7f00000045c0)=""/4096, 0x1000}, {&(0x7f00000055c0)=""/169, 0xa9}, {&(0x7f0000005680)=""/144, 0x90}, {&(0x7f0000005740)=""/30, 0x1e}, {&(0x7f0000005780)=""/242, 0xf2}, {&(0x7f0000005880)=""/12, 0xc}, {&(0x7f00000058c0)=""/147, 0x93}, {&(0x7f0000005980)=""/246, 0xf6}, {&(0x7f0000005a80)=""/171, 0xab}], 0x9, &(0x7f0000005c00)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000005c80)=@abs, 0x6e, &(0x7f0000005d80)=[{&(0x7f0000005d00)=""/101, 0x65}], 0x1}}], 0x8, 0x40000000, &(0x7f0000005fc0)={0x77359400})
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:27 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:27 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x910}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

08:27:27 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:27 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x527b, &(0x7f0000000c00)={0x0, 0x2fa5, 0x20, 0x0, 0x20f, 0x0, r0}, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000c80), &(0x7f0000000cc0))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x80010, r0, 0x0)
syz_io_uring_setup(0x223a, &(0x7f0000000340)={0x0, 0x90ba, 0x1, 0x0, 0x2e9, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140)=<r4=>0x0, &(0x7f00000001c0))
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x6bbb, &(0x7f00000003c0)={0x0, 0x9a31, 0x8, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000440), &(0x7f0000000480)=<r7=>0x0)
r8 = syz_mount_image$nfs(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x9, &(0x7f0000000a00)=[{&(0x7f0000000540)="a19980c1311e0031519cacd4e095081ea193e003559373958a58866055675f49ee0775143a9616a49b3a2db26eb8093923166e1316c9f8cc9ebcca0fb5f075afdb6b1f167004d32a3ddff33dd9866258dd91afd64dd6dc74db75edbd521524ce16cf43d433f8ebc452abb8655b6b341d4ffc891b83b7f5a1a5480162d0b4ebfcfd755342bb1bf1fd4565eec3939c1f2d5ab7c78fb287e584f62322b3cf799375274cdbc601d1f4823eec25a88fe58353765f4f54ef3d07ac7861fe48aaf7ef845832f1b05d53c4a4198165bb837c1872", 0xd0, 0x9}, {&(0x7f0000000640)="c5598bae56bf32a820b8b30e3d13e98ba3f7bae80bd9f7ddd3a2397f85898c6310b7134cd5753285fa4aeb2fa8162f4fb66d5b8ab3b3b4756509e6ac0ed7eca8d7f74d08deedf452ab2180ab1a4658e202d6ff3ea3d10143240314f8d2faceecf891c342a9521f69ddf75f015556af39", 0x70, 0x7}, {&(0x7f00000006c0)="feb39f527a8c02a2912e5b25be6964601df191f6525cc9b5a6a7795e48bc4ae702c4f17382b3cc3d9402afa979480ed542f1a8dac4cdc5c8b7a85483b9352e567c6f55f36c85fb33b5de0366f305059d339d08d590300846a078cb", 0x5b, 0x2b}, {&(0x7f0000000740)="bbd7abbf162556f2036fcf", 0xb, 0x8001}, {&(0x7f0000000780)="d470c5e27febdd4e74b14796aa9c57c5ba51fa21d83a054cfb00a0b6a6e9f5fd92bc25028dab", 0x26, 0x2}, {&(0x7f00000007c0)="1a05e4951a7ef0c1d68721f795f8545b0a519ff5a6008f98f6b941eeec78e936102f7d0154e7d2ff79f001820d4a1b619f56427c4d8630802c2875aba336bca43ce729567994e14a6139f5a7433e75edd842fc7f9acb213587f47c67bfa96e3a1fa5720ef0927d6f7aedf12ba04c2014abab03d3e3cb08fa9efe6c7fbf8471f9a7ef3c4b300000bf9e24a930f1cc6688bd4ae3e1303cdc5be800170e650817eedb96bd9556651e936f25a40658da740adc89ce5ef3bef7a4cc8c67f5112fb7acde06e5bb7cedb9527d9899d3afb2e6e0efcf978469d00f575edb03", 0xdb, 0x8}, {&(0x7f00000008c0)="31c87ab9c645", 0x6, 0x2}, {&(0x7f0000000900)="d866b849c300b6e9e46bd6247955b768455871da8289e048b65c24d5232236781fdcecfa66d306a39950bc0b756ef548a84a47584c6d07ffd743eea8c6461f6a999364f3211bd54c8e82f60874e55da2d6ad2cc707d6d83586405ed096635644fab72573cc4d347dec245917c84a7cbefb7765a50d37ae18f7abb97a76b2abd916504ff5297c4b1c31222f62563486f92eeb9853dbcb30d3e6e893", 0x9b, 0xffffffffffff0465}, {&(0x7f00000009c0)="3ea390a068cd3406c439828b37db73f37e85ad076af506c5096c448bd0b44d7ecb5c8fca2358a5ab55010d7e1bfdb919", 0x30, 0x7fff80}], 0x20000, &(0x7f0000000b00)={[{'\x00'}, {':-^-:{,){@'}, {',].'}, {'\x00'}, {'%/,'}, {'#'}, {'\x00'}, {'\\'}], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000d00)=ANY=[@ANYBLOB="01dbb33f1b00000018000000ab0caaf49c7b7f0ad2a79429067a2a6f2a9f74ff2912b79ac147cbee464981f6c3a5c6bf01ad1152fec9c2131b5f75ad69def8002a03b1", @ANYRES32=<r9=>r3, @ANYBLOB="03000000000000002e2f66696c653000"])
syz_io_uring_submit(r5, r7, &(0x7f0000000bc0)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd_index=0x5, 0x10000, {0x0, r8}, 0x967a, 0x2, 0x1, {0x0, 0x0, r9}}, 0x7fffffff)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, @perf_bp={&(0x7f0000000040)}, 0x5ac02, 0x0, 0xed, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2196.383607] loop5: detected capacity change from 0 to 16776704
08:27:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

[ 2196.439518] loop5: detected capacity change from 0 to 16776704
08:27:28 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:28 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:28 executing program 7:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan4\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, r1, 0xb21, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x30}, 0x1, 0x0, 0x0, 0x4001}, 0x20000010)
r3 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000180)=<r5=>0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r7, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r3, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:28 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x6, 0x5, 0x20, 0xff, 0x0, 0x7, 0x249, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xfffff800, 0x0, @perf_config_ext={0x1, 0x7}, 0x0, 0x10000, 0x0, 0x7, 0x401, 0x3, 0x0, 0x0, 0x8, 0x0, 0xed}, 0x0, 0xd, r5, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2210.996693] FAULT_INJECTION: forcing a failure.
[ 2210.996693] name failslab, interval 1, probability 0, space 0, times 0
[ 2210.999478] CPU: 1 PID: 11401 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2211.000933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2211.002690] Call Trace:
[ 2211.003251]  dump_stack+0x107/0x167
[ 2211.004020]  should_fail.cold+0x5/0xa
[ 2211.004823]  ? create_object.isra.0+0x3a/0xa20
[ 2211.005797]  should_failslab+0x5/0x20
[ 2211.006605]  kmem_cache_alloc+0x5b/0x310
[ 2211.007466]  ? mark_held_locks+0x9e/0xe0
[ 2211.008327]  create_object.isra.0+0x3a/0xa20
[ 2211.009243]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2211.010326]  kmem_cache_alloc_bulk+0x168/0x320
[ 2211.011293]  io_submit_sqes+0x6fe6/0x8610
[ 2211.012196]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2211.013250]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2211.014265]  ? find_held_lock+0x2c/0x110
[ 2211.015129]  ? io_submit_sqes+0x8610/0x8610
[ 2211.016039]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2211.017064]  ? wait_for_completion_io+0x270/0x270
[ 2211.018093]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2211.019073]  ? vfs_write+0x354/0xb10
[ 2211.019858]  ? fput_many+0x2f/0x1a0
[ 2211.020636]  ? ksys_write+0x1a9/0x260
[ 2211.021456]  ? __ia32_sys_read+0xb0/0xb0
[ 2211.022310]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2211.023504]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2211.024665]  do_syscall_64+0x33/0x40
[ 2211.025513]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2211.026650] RIP: 0033:0x7f9e767a8b19
[ 2211.027476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2211.031550] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2211.033445] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2211.035367] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2211.036962] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2211.038564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
08:27:42 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:42 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x400000, 0x0, 0x0)

08:27:42 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x3ae0c7dc0a42e597, 0x0, {0x0, 0x0, r3}}, 0x2)

08:27:42 executing program 7:
r0 = syz_io_uring_setup(0x8003865, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x800}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r3, &(0x7f00000001c0), 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
getsockopt$bt_BT_SNDMTU(r3, 0x112, 0xc, &(0x7f0000000040), &(0x7f0000000140)=0x2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:42 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 45)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:27:42 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2, 0x4000010, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:42 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:42 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

[ 2211.040146] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:42 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x7df0, 0x9977, 0x1, &(0x7f0000000040)={[0x5878]}, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {r3}}, './file0\x00'})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x240, 0x40000000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8, 0x0, 0x40000000000000}, 0x0, 0x0, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:42 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:42 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000, 0x0, 0x0)

08:27:42 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

08:27:42 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x100000000000000)

08:27:42 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:42 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x1000000, 0x0, 0x0)

08:27:43 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 46)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:27:43 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:43 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xc, 0x110, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x208040, 0x8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
pipe2(&(0x7f0000000040), 0xc0800)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x5, 0x0, 0x0, 0x4, 0x12, 0x1, {0x0, r6, r7}}, 0x20)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2211.556937] FAULT_INJECTION: forcing a failure.
[ 2211.556937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2211.559348] CPU: 0 PID: 11454 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2211.560696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2211.562310] Call Trace:
[ 2211.562831]  dump_stack+0x107/0x167
[ 2211.563551]  should_fail.cold+0x5/0xa
[ 2211.564305]  _copy_from_user+0x2e/0x1b0
[ 2211.565090]  move_addr_to_kernel.part.0+0x31/0x110
[ 2211.566068]  move_addr_to_kernel+0x4f/0x70
[ 2211.566904]  io_connect+0x47a/0x610
[ 2211.567623]  ? io_prep_rw+0x1050/0x1050
[ 2211.568434]  ? __lock_acquire+0xbb1/0x5b00
[ 2211.569274]  io_issue_sqe+0x1611/0x77b0
[ 2211.570077]  ? perf_trace_lock+0xac/0x490
[ 2211.570889]  ? SOFTIRQ_verbose+0x10/0x10
[ 2211.571685]  ? lock_chain_count+0x20/0x20
[ 2211.572506]  ? io_connect+0x610/0x610
[ 2211.573265]  ? lock_acquire+0x197/0x470
[ 2211.574049]  ? find_held_lock+0x2c/0x110
[ 2211.574852]  ? __fget_files+0x2cf/0x520
[ 2211.575629]  ? lock_downgrade+0x6d0/0x6d0
[ 2211.576446]  __io_queue_sqe+0x90/0x9d0
[ 2211.577211]  ? io_issue_sqe+0x77b0/0x77b0
[ 2211.578035]  ? __fget_files+0x2f8/0x520
[ 2211.578837]  io_submit_sqes+0x44aa/0x8610
[ 2211.579692]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2211.580673]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2211.581634]  ? find_held_lock+0x2c/0x110
[ 2211.582436]  ? io_submit_sqes+0x8610/0x8610
[ 2211.583278]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2211.584220]  ? wait_for_completion_io+0x270/0x270
[ 2211.585156]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2211.586067]  ? vfs_write+0x354/0xb10
[ 2211.586788]  ? fput_many+0x2f/0x1a0
[ 2211.587497]  ? ksys_write+0x1a9/0x260
[ 2211.588249]  ? __ia32_sys_read+0xb0/0xb0
[ 2211.589046]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2211.590072]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2211.591073]  do_syscall_64+0x33/0x40
[ 2211.591795]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2211.592780] RIP: 0033:0x7f9e767a8b19
[ 2211.593508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2211.597084] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2211.598547] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2211.599933] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2211.601313] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2211.602706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2211.604099] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:56 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 47)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:27:56 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
sendmsg$nl_generic(r5, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f00000001c0)={0x1c, 0x2a, 0x200, 0x70bd28, 0x25dfdbfb, {0x8}, [@typed={0x8, 0x2b, 0x0, 0x0, @uid}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40002}, 0x4080)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x2010, r4, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000380)={0x0, <r6=>0x0})
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x4, 0x20, 0x9, 0x0, 0x6dae5e8b, 0xa8001, 0xb, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, @perf_config_ext={0xffffffff, 0x2}, 0x2, 0x4, 0xba2, 0x2, 0xfffffffffffffffc, 0x2, 0x7f, 0x0, 0x5, 0x0, 0x3}, r6, 0xf, r4, 0x9)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:56 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r9, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r11=>0x0, &(0x7f0000000140)=<r12=>0x0)
r13 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r13, 0x0, 0x0}, 0x0)
r14 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r10, 0x0)
syz_io_uring_submit(r14, r12, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r15 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r15, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r12, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd=r15, 0x101, 0x0, 0x7ff, 0x1, 0x4b46bc432e99a773}, 0xb0ace9)

08:27:56 executing program 2:
r0 = syz_io_uring_setup(0x343, &(0x7f00000002c0), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x6000, @fd=r4, 0x80000001, 0x8, 0x4, 0x10, 0x0, {0x3, r9}}, 0x815)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r11 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r11, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
write(r11, &(0x7f0000000140)="b069d6d3356977eb703ff41a8602263aa8182f27922f691d159fe59a5e3e8bbeb6ca826f510adef683fb4734c9b151824794fac335c4dbf18b5ab0af149ef86765a53e114559f1da689095d75372ee6eff727d7d44468406c40254d21b66", 0x5e)

08:27:56 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000006, 0x50, r0, 0x8000000)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_setup(0x7dfc, &(0x7f00000003c0)={0x0, 0xc803, 0x2, 0x3, 0xcc, 0x0, r5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0xe77, &(0x7f0000000240)={0x0, 0x1379, 0x10, 0x1, 0x2ab, 0x0, r5}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140)=<r9=>0x0, &(0x7f00000001c0))
syz_io_uring_submit(r9, r2, &(0x7f0000000380)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000340), 0x1, 0x0, 0x1}, 0x7ff)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r4, r7, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x4, 0x2, 0x0, 0x80000001, 0x5}, 0x80)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:27:56 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x20000000, 0x0, 0x0)

08:27:56 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:56 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

[ 2225.066551] FAULT_INJECTION: forcing a failure.
[ 2225.066551] name failslab, interval 1, probability 0, space 0, times 0
[ 2225.069028] CPU: 1 PID: 11475 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2225.070531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2225.072336] Call Trace:
[ 2225.072908]  dump_stack+0x107/0x167
[ 2225.073704]  should_fail.cold+0x5/0xa
[ 2225.074528]  ? create_object.isra.0+0x3a/0xa20
[ 2225.075513]  should_failslab+0x5/0x20
[ 2225.076333]  kmem_cache_alloc+0x5b/0x310
[ 2225.077206]  ? mark_held_locks+0x9e/0xe0
[ 2225.078099]  create_object.isra.0+0x3a/0xa20
[ 2225.079039]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2225.080137]  kmem_cache_alloc_bulk+0x168/0x320
[ 2225.081125]  io_submit_sqes+0x6fe6/0x8610
[ 2225.082064]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2225.083138]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2225.084175]  ? find_held_lock+0x2c/0x110
[ 2225.085052]  ? io_submit_sqes+0x8610/0x8610
[ 2225.085994]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2225.087027]  ? wait_for_completion_io+0x270/0x270
[ 2225.088067]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2225.089063]  ? vfs_write+0x354/0xb10
[ 2225.089876]  ? fput_many+0x2f/0x1a0
[ 2225.090657]  ? ksys_write+0x1a9/0x260
[ 2225.091475]  ? __ia32_sys_read+0xb0/0xb0
[ 2225.092352]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2225.093474]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2225.094571]  do_syscall_64+0x33/0x40
[ 2225.095353]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2225.096439] RIP: 0033:0x7f9e767a8b19
[ 2225.097238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2225.101105] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2225.102736] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2225.104234] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2225.105741] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2225.107254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2225.108755] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:27:56 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5ffffff, 0x0, 0x0)

08:27:56 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:27:56 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))

08:27:56 executing program 7:
r0 = syz_io_uring_setup(0x385e, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
openat(r4, &(0x7f0000000040)='./file0\x00', 0x0, 0xe1)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
write$binfmt_elf64(r3, &(0x7f0000000640)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x6f, 0x40, 0x94, 0xffff, 0x2, 0x6, 0x20, 0x135, 0x40, 0x2cc, 0x4, 0x1000, 0x38, 0x2, 0x40, 0xf801, 0xa35}, [{0x4, 0x7fff, 0x8, 0x2, 0x8, 0x80, 0x9, 0x900000000000}], "bbf1537150c66063e71aabc73590328490d2130514e799e1341b97f9ed2b9e475e759e4fcada4ea6ab7fb827ee905eb13f2c802b4afeef24b9089607f5950cac8d56d6386b26abc4f802c3aad07b34c225315bfca662eb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x6cf)

08:27:56 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = dup3(r0, r0, 0x0)
r4 = pidfd_getfd(r3, r3, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, r4, 0x0, 0x0, 0x0, 0x40000040, 0x0, {0x0, r5}}, 0x28c633de)
syz_io_uring_setup(0x43bd, &(0x7f0000000240)={0x0, 0x5db2, 0x10, 0x2, 0x18f, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:27:56 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:27:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xfffffff5, 0x0, 0x0)

08:27:57 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 48)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2225.706948] FAULT_INJECTION: forcing a failure.
[ 2225.706948] name failslab, interval 1, probability 0, space 0, times 0
[ 2225.709545] CPU: 0 PID: 11536 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2225.711028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2225.712768] Call Trace:
[ 2225.713336]  dump_stack+0x107/0x167
[ 2225.714119]  should_fail.cold+0x5/0xa
[ 2225.714930]  ? memcg_alloc_page_obj_cgroups+0x73/0x100
[ 2225.716025]  should_failslab+0x5/0x20
[ 2225.716820]  __kmalloc_node+0x76/0x420
[ 2225.717664]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 2225.718746]  memcg_slab_post_alloc_hook+0x1f0/0x430
[ 2225.719815]  kmem_cache_alloc_bulk+0x182/0x320
[ 2225.720792]  io_submit_sqes+0x6fe6/0x8610
[ 2225.721709]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2225.722761]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2225.723784]  ? find_held_lock+0x2c/0x110
[ 2225.724652]  ? io_submit_sqes+0x8610/0x8610
[ 2225.725557]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2225.726591]  ? wait_for_completion_io+0x270/0x270
[ 2225.727615]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2225.728597]  ? vfs_write+0x354/0xb10
[ 2225.729377]  ? fput_many+0x2f/0x1a0
[ 2225.730155]  ? ksys_write+0x1a9/0x260
[ 2225.730959]  ? __ia32_sys_read+0xb0/0xb0
[ 2225.731812]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2225.732933]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2225.734045]  do_syscall_64+0x33/0x40
[ 2225.734839]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2225.735932] RIP: 0033:0x7f9e767a8b19
[ 2225.736722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2225.740611] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2225.742230] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2225.743743] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2225.745245] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2225.746767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2225.748248] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:28:12 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))

08:28:12 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:12 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x40000000000000, 0x0, 0x0)

08:28:12 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 49)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:28:12 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
[ 2240.683703] FAULT_INJECTION: forcing a failure.
[ 2240.683703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2240.687009] CPU: 1 PID: 11550 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2240.688513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2240.690627] Call Trace:
[ 2240.691459]  dump_stack+0x107/0x167
[ 2240.692714]  should_fail.cold+0x5/0xa
[ 2240.693926]  _copy_from_user+0x2e/0x1b0
[ 2240.694976]  move_addr_to_kernel.part.0+0x31/0x110
[ 2240.696262]  move_addr_to_kernel+0x4f/0x70
[ 2240.697369]  io_connect+0x47a/0x610
[ 2240.698348]  ? io_prep_rw+0x1050/0x1050
[ 2240.699431]  ? __lock_acquire+0xbb1/0x5b00
[ 2240.700548]  io_issue_sqe+0x1611/0x77b0
[ 2240.701604]  ? perf_trace_lock+0xac/0x490
[ 2240.702701]  ? SOFTIRQ_verbose+0x10/0x10
[ 2240.703755]  ? lock_chain_count+0x20/0x20
[ 2240.704871]  ? io_connect+0x610/0x610
[ 2240.705990]  ? lock_acquire+0x197/0x470
[ 2240.707194]  ? find_held_lock+0x2c/0x110
[ 2240.708236]  ? __fget_files+0x2cf/0x520
[ 2240.709229]  ? lock_downgrade+0x6d0/0x6d0
[ 2240.710223]  __io_queue_sqe+0x90/0x9d0
[ 2240.711035]  ? io_issue_sqe+0x77b0/0x77b0
[ 2240.711883]  ? __fget_files+0x2f8/0x520
[ 2240.712867]  io_submit_sqes+0x44aa/0x8610
[ 2240.713975]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2240.715234]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2240.716244]  ? find_held_lock+0x2c/0x110
[ 2240.717092]  ? io_submit_sqes+0x8610/0x8610
[ 2240.718012]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2240.719025]  ? wait_for_completion_io+0x270/0x270
[ 2240.720035]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2240.721001]  ? vfs_write+0x354/0xb10
[ 2240.721789]  ? fput_many+0x2f/0x1a0
[ 2240.722550]  ? ksys_write+0x1a9/0x260
[ 2240.723347]  ? __ia32_sys_read+0xb0/0xb0
[ 2240.724188]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2240.725429]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2240.726747]  do_syscall_64+0x33/0x40
[ 2240.727520]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2240.728578] RIP: 0033:0x7f9e767a8b19
sendmmsg(r5, &(0x7f00000077c0)=[{{&(0x7f0000000240)=@un=@abs={0x0, 0x0, 0x4e24}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000340)="0928bdc7e660bac77e38139e6a75b48bb1b5748af83cb0aed366118e168b3204b6482589cea3a3dc22a5e8c9f6c108517b718b4318c6df1df6e50c7e6f09c476fe2698882442afe0e8097ff01e5a1257a3c86b8bb544572b3becda01a9a929a2ec4b933c883e20ca21635afa11c7013503393fea144556fe3e376827b24964c64ec2615791613e6f2911cc9fe9b0dcb4bc115c8509a5ad9c6c46d4373c9d938d376fc1e4353e0dc84123d847bbd634bab4246536566536eacb80f148", 0xbc}, {&(0x7f0000000500)="ef6dcdecb2f24a39b0484928191eb9552d4768e10b1e85f9986a69a52629e866c92fb7b77b2893a529d106552c6284ed392c9e1ace98f25ef32dca5a5ebdd66eda73661e1d7d242321649ec26f76027754855f68f9239a390f2ee9fa70709ec083e77fed42dcc04367067f9aad4eea376fad28e745f000859de14754e2c652097746030a730578293b14f40fdbf3c9064c6d6ec7f4db77869e304a952ff5496820557d5416ba5d2e07b4c2916abae6ad38ecfa4fb2fa4a47fa78efe063258b9bccc9ec7c6d94e9fecfa1fb0d7cfb2f3d7183d29cdf5e94", 0xd7}, {&(0x7f0000000400)="019fb9b2bc18e498946f871eeea7c22ad4170803fd5f8442fd76d88712482c34697e497c97317420c93055bb53053f6b29a405e18cb8964142dce65bc9c9bd65ca3cb222b95fd88c5aa2ae2e190d593a8d3b10e2fc70016089aa0d17824dd70bd7b2bb16eb670acec45f03a7", 0x6c}, {&(0x7f0000000600)="69574a457709be917b296a7107b5c1621411a412b938aa959caf96b1810e64efbc6c978d2126ca1413b1fd21c18dfa6b557b46fa2b7d34e5aef5bdb138e932d76c297ee83c4d2e448dd243bea85d870d4d98ab2dd7a68610752b36ae55963e05d643e800a4a9d51ad5c9074c536b0b026dc551a7f6edeb648111841e559d266a", 0x80}, {&(0x7f0000000680)="d7242ddc163d543095337407f4b4ad7a7c86c0a53b981b5bc0220d74d37fecf2be13c513bcac041f24cc7619e2af04d5c1b22d9f4bcfd63aff17a8dc698f8e6490107dcc35ad5fb4449a11524476d351574f46530658a39a6d479a38f2cf316a2663ff6d1ce9e9e0ab54dbb57aa00ec478ad768aa870226ddf4b254b8ffbe41f6d924aa61b2f34fab569dec200015a9fdcdf4ff92c5e68dc5dbc40660aac3c2ac2cb0e65f2fd7dbab5367aa7cf596192c07588f0f9cbca2d", 0xb8}, {&(0x7f0000000740)="b7cb72aaa7a87f19b66183c9c356a497dc60a2c6883bbfab27a1ababefc0e3cb7eecac1008212f4ffb0b70dd2459488ea66ceed1b4599f652dbd99c30ce40d96d2128108739f922d5c988c6856741edb3a08b2f4427f2a2da5231948c8350d5db01be9c3896e46", 0x67}, {&(0x7f0000000040)="aa5f103638a8aca51d151ce7077ce56939011a", 0x13}, {&(0x7f00000007c0)="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", 0xfb}, {&(0x7f00000008c0)="cc76ad82e90615c190dc96ba33414e6d458dfdeb93f6e8657d93c3e79dca3dded171c942b6124716b7f8c288e952be01bd358d95a1ba00d70c2cc850f234b6a40676058e92e52cfee1f538900ad07d3d75b4de4ce42479caf51558caa3e0e7129ecffee10e", 0x65}], 0x9}}, {{0x0, 0x0, &(0x7f0000000d80)=[{&(0x7f0000000a00)="2699a423c75bb394017bfcafc8bc9e3edd09a895d25f78cdfd3f0e524ce947d1da2d4b81c483bf74f1200d1feb478efa72f0552469f49239a7c292f8093a0152b91f983648f1da18a057c9eb4f3eaa9a0ba773da37ddafdad02712edd1bfcde11576bcc5210f7cd7c36b46d4", 0x6c}, {&(0x7f0000000a80)="450b9bbd993529d274d2357082b7d32896d351a0be263bb1566dba6c9c2af4f91cdfe41dea3c1181170ebcb720b010d80e5e633a56f472e39c549d60b426bd992f7d3f265b04189f7ff306957b92d92c5050f33f5bb90b797b37f99271445d1bdcd0", 0x62}, {&(0x7f0000000b00)="5e6d5177582a294664193f73b0026bee4cb21c23a4afcc347ac65f729124aaff38f381838d53b521295ba19fe92c1431714124575200e726ea63661b96f3e3d3bca84ef41851c8833c809277335f02aac8e1056c3ce85cf1ce30f0f82a4c2ce57d62630e2c08e7832ce61534e26de647b8ba748ab4d45e97bcc801e7b242d5a1a6661e04bd00d93383357819d45adf9a5f36a884c3bf748e18b8b11a80425f8a09f5f1d86b34e103bae8c1e5bbe3df669c73ed769839f30468db584d78a0bbcf983d80684379bab11a6697c5", 0xcc}, {&(0x7f0000000c00)="93906aa57f67307f11fb94a89315ec0aa20472d4bc21b373e01ea0fe07c7620e986306402d46f7a5b242a5e4ba9a6a839eac6db2abac14785fcab6901038d8221a62ca6b050c4a8b3d13039a7e53be683865fa35052ab9705d10118192b3e092f08c36de157976b832b4ed423e6a260ae6a33a83db6a99169f1eadeb506d54f4a009493defaf1928d5af05d085acea040821ce70975269e73de706c0fac8a789a1995bae4833a6d2dd9885b0b914ca7f8417b79c82e8bf137769b534278057669cfc5afb207fbab0a1ef217356227df0b1fad803a6c4d211c17860", 0xdb}, {&(0x7f0000000d00)="ccc3230ec96ae2f87954cc4b48e334d61108495b2ead94392b31fc3f6a2e126d11d704c0725521c00d6509efc401a36ca6d61370404575a77a1d50d1c875bd0ad1b12bb2804998", 0x47}], 0x5}}, {{&(0x7f0000000e00)=@in6={0xa, 0x4e23, 0x3, @empty, 0x3}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000000e80)="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", 0x1000}, {&(0x7f0000000140)="0328d05171afd305fb4577a668ee187d8336603e400a10849911113d6b01aa532f5a7522f4632266", 0x28}, {&(0x7f00000001c0)}], 0x3}}, {{&(0x7f0000001ec0)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x80, &(0x7f0000003140)=[{&(0x7f0000001f40)="9a8148ee1d277d086b66422d188304dca89baa84892cc41864ffcc55cb5c3ca51e098293aa287c3e26fc9fbe0058e126", 0x30}, {&(0x7f0000001f80)="818eb8734fb7bb95306abb8a0f57af7fd85748b612053e32a82e79732d9407c561a0551de384f59d623a64078996ccbe60f0cc3531ca058fa9d72c90e2a8e3327e6ae9316c0de06c8c0dc2a6d76b393cfb5a8e6bfdcc0f2c84501ab5befd5e84531071715ae0216d552f", 0x6a}, {&(0x7f0000002000)="2c5899811a9dfce0d666b3f7ae8cff922d4884c952321791d50225b9a798c2ccd6d40d0a1c3bac276086b3689ede97d8b7fd99e281f7aa927f23453fe0972feac2b94afe0bc7a7fd2e3a3564982a76f19096b5770453a05f05339f7a9a99f1541a8cd222a5447964f7c5c4ff4366ca0ff8ce70db2a9e1d1ac506c84d8f220537f6125b1be02cf9020406b748ae2a6ecc85527d7fa838e5a3", 0x98}, {&(0x7f00000020c0)="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", 0x1000}, {&(0x7f00000030c0)="c3002e9d96fdbab4da8bd16e1ba53379e69a13237503e38467a7b193a1fb3442475a0c1d0de3109e65d4e502aa0e190e5186a1f0d6bbc310293a6defdef00611e21171333be675cba2714ec0245b5f987c219b", 0x53}], 0x5, &(0x7f00000031c0)=[{0x100, 0x112, 0x80000001, "0838816c9dc3822cd8d6a13aa78401b2c517df31ac64164a1660ffb09c5c024c9e3eb28d8c55e99009b3e8fd2252fa1a44b39ac164bd7c457bd9158eae428df3cfd0bd2efff7c2926179a1a0890f81aa5a33ff00700b9e8a073743aa8295ebd90a07d74819661b9e88e68bdfc42711fb497ee1c005ff1162cc8b30d9a4e9fb863a3f7845fb4c0e34a00a8ed9ac2275a9cc3a6f6834e61644f8cdc712ae7c60c8da9c2b2061d278ffde29aae440231db93a1bf3de94737677f55c75f8590449818a78b1fc9628d1cae41836d77b8ce649270a9617ee2365bd812e3e9bee2147a1ea843538273c1540dd"}, {0x80, 0x104, 0x7f, "f5fbee1514ce164c6c33f62d0cf3ed18e230bb4b4d978997658846d8a445818a6fa1a9af43704950169b63350dc3d1a075c5b8a505bf3fd88d0522dd3bd9c27c8289d2d9d1b60b924d89ba6e5b233baca9490eedc62d85470caf8eacede1b7b279ca7256298c8a0b2c265d29d9e2ea"}], 0x180}}, {{&(0x7f0000003340)=@ll={0x11, 0xf7, 0x0, 0x1, 0xfa, 0x6, @remote}, 0x80, &(0x7f0000005480)=[{&(0x7f00000033c0)="cfdfdfffd37fe9ce408a0dc902eec1131db98bfb7b9a7c854adf17b68f8bd8ab57ea318143bf85f8546ba67a5b253fb694615b0620851ebd3f7855b74daeb7d650c327ba7dc64dc931e83967d99c19ceb9616898a3c543c0b468df1aad139849f2d33e611dc6a7ab3590fdc2cd953af2c3bebf207c95734af3e7181a83ea643bb60836bc6e4a81cc5d31b9018f3307471aa210d7717f89e14eed49cccbdec09563e6885620ef4387ab5a528a57a29c3c530bc987e1caaf33a784f5c550ba9e775619224e8d1ef4d892fd2c16a40e6e240777e35fd830e00af57e7c3638b5f6b8c62e5a7f7b34a5a348f764330f0ddfeb74080a8e4fa67da551723ebf9a769a1c509e60a1a76c0644668be80ffb3b07ac4a69a144bd50c465a75619bb0c90e191e3dbe78af23d2dddffec80a1c6103532df57eba18de14a8c2f9716280f47ff4abe6baa756c3b23a7a3cb581adf5faa005431832cba8e28195561c1de51d522530e32a764e5b2fae3ca42418c3c22bc6583623c7347330a9f78fca3ac3e2e5d158eefde21f2f59451749dcc593ea1a39e56a9e7cb2fe5c17629d2291205d9b592bfcb9ea6ff434a6df984c4c559b128e79ff9fd767985adc5b5eaf541ac9f4387c18943f0c4f70a8d1925b41d2a5cd311b058d39144880d0aed60137983d7049c30fa64fc4108eb2c588c07139cc1fbcf5c0bb0e4ee1ddd55e6b941b449aa7014f938daab04145f22aa10b1164c9f9878582960dd24313edf161d967a5d84f675086ea54ded065eb12cd4dc61c8bb1e8d7ec5939903bdaf83068c768bceec6e5f0cc1417bd31bd3bd1952d58b778d59ea1dd3bc2deba7efc69290749a0746f67ae0343157aca45d69a4622ac4cc12e8400c992d22fe613845c3e2f8d11714ce1350b4e47f33cc2c5e0b1f77ffd17ee5f276eaf5fea610b2d4caca541a08f578f4627e6364927caff25e623a03af1ea76ef32863426c4304ffd6d99f72d8f2fa1abadd5a1b3c2031e356b3adc3d7e691074580a9c0863742fd75324038078e98891ae61442dcc6546a3ba661a3ac8a1f1f3f40d2d67ccbea3919a259d3f25c565eb6e562d0d432a489b039449956e6e7c420c2bfbc75b34706a6a0d601d1eb16ef917a78edfc1909d1dd43343b89cba8fdececcd7e7ece115430a80b1516bf73e4bcd9450ecea960f87b6ac08699add7e2681750902251c1252f57116f0111aaa9887e75649af1ec56517ba06fd60ff341e38178eea7700905c0be1e3754aea3cc1bf42320602c3e38314383bfe14d47ad6b3b5571617d595bf621478747d1c9a45d215f623acab8569f22e43379b2f6cc26e5ab1ef2ba9605541f418bd8d172b6a19b8c48f56627cf421865db9594577d7cf650a24f47c0aae0fa5febf135fb20f624a19bb51b89b79b418b7edaab2dee3301b243289d3d7e3d65b9677d611ddeeadde7d21ac739e4bedd67b2841a43f558b45bdc5581f75974a57bf1389a6da84e63b384b38041612c5bbd005ea5fcc747640cbd760923f731f0bcb8128d68d9f851e80f8769fa6ae138bba7d6118fd0f06cbd342babff47b2bc1f0a300ac1d11b42c254a581736c36e06e5e0f9a8a02d3e85b9a95d8d10274e8f5fdf3cc84fbaf89cf66f5062235d99d1fe7f3733c2291af8e26de10b045c4a7cf51ab50ad546facb6298d353b72aeccacbe14a0bbe6771a4e4b092a914ae613bceb7a702cd701573d57c250243b677fe40e9ec1127f4fcfbd8baa2eabebb13ae97df063a8a8326076846f7ba5cbc957f9316ad727720aec2348ac68f05381ef5c947452a08f6c966544c0d8909be17768688625d011064e2053151ec610be5d5040a47f34fdd3b3cf97fd87644d0d216952d7caa1b329f7243abbf67eb6946c94c48ff62e16ad5ba7e883cb745e9d9394694331aca719ca2864da71a3130d3a0cae032d7046b5523c9266d035af81f65576f017cee194dbff3808ed881a0c0ce23f4926891b7c4bd657b39fa9ae46a8237fc99bc971e77c074d34075a53dee4b236a76757f8fbd7bd5cd03f082bb0842e68fe8333156bc03dd97a4e5a6acac03baed0be4a4465ed7ee83df680e3c6868392fb6db110587945e5c8cc55e5f986b638bd418d2e7372ef1eb7e966dc2e35f9cbcb381113e387d1d802c8d79ced11de4102337b85946a4e5e1364be8f756523d6466b1fc67518b458ff56dde4bb2203413af8db71ac929616ba3ded08282439e5d5fcfdb1f324551fdebd3244476c0d5b88d3ea98d8cb92da5544ad19f81feb6f70bde462175f9ecf86c049b1c457fa11ca60109785009c422b145662f175ed90c84623c9fa112e92135d2aa955fce78d105ec01d45475fb2b8494fb476c90d40e446edd18089084c61d696db9f0360360d3175c2c3d08b8eb72f713b8c998c894837384864b90be908cf86bae7cf8e5e72c0544e582e14e35aeeba904b381e4b495ac11d2dc18714c10ef8f4ccbc84765f7f69609a28df3aebeb022f82196eaaabf9641fdd0299ce2e672e2a84fd86a51b788c81c09ab15e0d3d3b85689acff3e2be1af3a0e2b55888a5afa5a332519d467342201db36f77a8239145639f31a1024c772a406a1d414465289f4311a12a497da42f126aa8c49a8488fb9c419d7732b046f584fc143f4245972f0854b45fc1104d51f87da45fa8175c2a292dc081369b7116e5a554b261f22414bf41b59110fd44f67ccaa92c1978ab37cbbe4fbf57b212e91469811aa93600e3200a8e9d37135d9b2c27718c17d635336e346ca368b9d88e8ceb3466005a427f7698478fb6b87dee9ba14b71b93d7f08b13c457f7641a2e82957671dd0e208c69d2e786871d3763e6803193bb36bbc3f9df03b4d1229f150dda1751441463ee014344f151103f25ff69a5e690d3692deafb26685284e8df841fe742bad67a80545a448a0b22c027fe01fcbf24e0988752b27c54c0bf7849b9a63983743fd098acc1ad8eee3907beb9c3088d52aab4256d43ddc6c635a9188b6e342ab8c7120750c7a82a0aaae36da5fd25a27a301d50d952c2afbcbe1d7c369add5a3b585fc184c2c6efa79120c1ea97cbc0eef4efa4c38f9278a8e0dae381bd2e987e94bbdf3a3d81ad893424aebb4a743d75f5650f8030b79fe5b1c7574facbf7f84d6187f98b6945370478515d8f292d607a56bc34f4632910d6d98277ffca335fcfe3e7d40598ca56dd365ee830880a20661f977f90ab6f5dae5fa4f6c771507a1149465b42fe26487e87ebb42068302c43b382cb7aa0be974d494b57180284663894f17aae3d11d9467c9ce52656e1ce1a67f8f43e64ef92fa734a2f4168338d0147fd5431b09d24cc74581fc3799e8422452d8ba43ac483e847af58ed35feb63c58d6c7545ae2f7e4efdb522368424fe8c8f7890fdc6d645ec4a1d7bd152be2cd53a6793fe6c9716e0e02f476d9257dc746cb60b87ecd7147f13c4d88c7bd017318ee3e5dda247008333cc0a2c497840c71475934414f4d88d937cfe7c9e6861df785594db76b3b0fa86e6ef19f2a9f0fa98bb0264bea7cd2758f3603e3dc8e539e6a7c76aaf5390d1ad0ff42a8f64dd87a1ab29355582208f0207352b2a3b3576702b8891e48a6710cfad01e39fd6850467db58faea28f02571678a055cf30878632f863c1307450ca37e6f864733da4b79ca2b7f4bd871ae964c63d8e73b2b1232e9522b7cc616571b1b3335aa3e6f8bd869b446cfdb04dbec535c0398ddfcb612541c0f350d587dba6a6f34c9f0ceccf37857abbe00a4672e81d509794efb790cd3d2d587c1f91614482f689077aeb55c8d2a10533d469f3a99c570f10687bd0d1977a906cb101c2ddd87d109ce7acb66fc27b3a4787cb9abcf3a4e46f24f62de754d4b7e1f9fbbeb496a141f18a87f3041b8578b2371de66cd71cc742df250cc2d8dd9546648ede9339b3bff1ccdd4eeaa3769d358347bc53ecd12c30df99956ebe8aad2deb6553dbd51a9689030aa75f05c4031da3c3e780f59c15314ac9d840081ed5e5a60853b4a6a1cdb6498744ba275c8dd2064ed24237b02cc343218b8ca13b824b9abe79d1954f47aedad248a2bf4091157bc00a67792483d5b5303f19c9996bb47c383873e69ef166d1934d2c9fe17e8b9d1fd232bfa877b3d7a0de49e6c38c942687e3580f733266ae57b0840ca11ceb7793dc9185ea2a1708c1e9aafa823e290049c1126d15f69433aea85c75d13f1454f8b11bcb0e7cc6d940827ec41d5e322b77a7eddf5be73458ecedb6f730411c40be9c9572abcd24bedd2e6d44014fe921451fdbe3b041450926f06c7a56aa078e56cb2b1b0171c065e4cb8c487e9a0e3db6847df5b168b03d51e0eea2ffd9fab6c59c22c29e011da7fa9000acbc303f2d4c31567294c7b541f4558967540952b71c988ab7897d5c0ae7f2c130d151c6e0211ed284e0a6799cbe3b3e1ff793a4538bdeec2447f3fb0541d5002bdd89388687badb85b222ec26fbadf4a9773bfab6d34eb0133c6d21ee57c546906111f3db6757b92b241cb5578f3d8001db8013af10eca9959de6e517d18646a7c36e7e50e8448fc4df8e110fc64884ee667fef76be0ef7d3a7a3d55f95d3ea1c6922159b309f580e17ae88b3a97808f97ffe69789e5fc43d77efd7ece9b92be450ad61aea1021e8cfbb3471014a6000e4935245214efbb33f2c1aac1daf887e70bc35c095134a4a92c9d596d1c538e0883c521d9d8737722da208da66a3934c35ae1d3f5757933c4048f8ba49bffab86246f675c14b808733ad6a7da4eb72d66fd9b6de196b0d13d777b493958d29537ce06d50e9d740ba3b0108612312cfac8cd247e09a766b307bad1f605aca1dbc52ffb2dfb6e08b0779be46db5fe3cb6137e5de1030a87f452e1f3b7a93211eca21d341841aeaa8e6a57e85fd6e31cdfbb83261bd229e181f8dd4bc0b86073458738d8ea3e5a50beb348b543414fdf111e5a1bfb27af32f496c50d7469adc173cb9af4bf346e625f0086ca862991f25fcc851325f05bf66e3770de9e2e9c6ec6cd003b24f58a338809b712bc09f9bea1824d72366d13275dd12987f5586a366e59261f1854bb6cffb226f27799f09a17ac67b5f19880c552d3090e79799421316505762292920bebdf91284e69d30844add50e90ad7bef9bb9b47fe0cdcaba3184110429c4acc2ccd2ae38e12e05e51b13d1dc448b921a6abc0c614ed7f220cef9a2c8da43a6c9295108d778f195ad4d98f56e28792cc47b443e5026620a88a30a1cd115fe9b943f7ed03dfd9f9bf342bef4e4143a60802f6e11d1841d12213bd64e287aa7b01606c8ecd850018d619f2310705f72f936d570d634db3fee4389895955d2ce7660453004e6fbcb2ff352d5dd8ed0278c278e831c3c22156611f43a4c99c335dd058c0c1d56f56fb5e3158a3b7e8c0c3a19f76897c82283517ead08023de9f57c0bfb0475ffe68a2c5452d87b3cbb48f4137b1761afa52012f89397aad02e8ff84403cac3e1fb6233bf0581126724c394b097e793d9386210d3178de2f960a49d37238e7b5f40bac652a23d476d0e7bf8506cf87007a5fd8294ee9ed9f3b51cfe0a3d44dd9907b81127e329db76be4fbdd98d2de1937c14f1403372075cca3d313437b51be52a741938eea0a58ab2acae6cd2b6fa1a765671302b11c4c9f2b1af6b24e07f97e3b5490cea09facd32210d631dc099e2ddfda26926cf1f3d6bce7ba9ad715543eada7ba45708e63b58dd566bb22623bb902edd1c966f09f6cf7fd11a91e66b7c13053145cd7760686bec175efd69", 0x1000}, {&(0x7f00000043c0)="56e3fb6a4e6226bde75cf8cd401d", 0xe}, {&(0x7f0000004400)="62639c0723fe64982770a1c012e968934ca01fedcc3b7129aa531302e2e7d8361371c518abd0c18a86677c74a8610f98d0f98c06bd375caff71dba4ffa4fe23220b1566500186774ccfa094d1570b8aaf034acc95d5fc2c9e7f70392eae7a1959899405554ca8b36e251de475356129bda", 0x71}, {&(0x7f0000004480)="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", 0x1000}], 0x4, &(0x7f00000054c0)=[{0x18, 0x94, 0x4, "312da3"}, {0x80, 0x104, 0x9, "77e872dc391de3948bea68507e11b088494f25192f4c373a1db905a8b95b38d985e65a3fe483a4264b0a3c77156463dd3190d35a2ff42f5e88d132a47aa0ec35b146b84b269e6cad4642622cb5a8555807915a7a07732dabb4e704860b4a7f4f8333a938919770ab37d9"}], 0x98}}, {{&(0x7f0000005580)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2}}, 0x80, &(0x7f0000006700)=[{&(0x7f0000005600)="96b10a1f6a698ca7fba588fe6d6f23f21c2bc98da9e86a14cd30637777a0afe852a7f02bf0013a9a56e3a506638f152d7158679ed8a9474885623dd741137bae5fae6234696a00d765eadbdac62f87ff07333c07c34f332dcc1643d1e63233add71c24243ee7cef55141ccff7c155cfebbc28b59b07842c481f196ff19aa730259ca7a9a745f14ccfdc9d267447b83be3de9cd99eed60d3cd3b0b2bfbfdd49a0ca7a853644bc5d72cbefb3674fbee97d01b6a909e346fd1580b98778bb50fb934aaeb7078e36b012bb83a062e733779b7e5e36de6ca857e157500a9cd92c06572f61a7", 0xe3}, {&(0x7f0000005700)="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", 0x1000}], 0x2, &(0x7f0000006740)=[{0x1010, 0x112, 0x0, "91e319483d58dc4385fa562232618d483ff098b670d346ea539cdc6b1f84126d3d863ad4c9ed8928c9b32625d0597b96a6907ef151de88b653d9cebc0721759a0962f542431911f5814ffa319971d3a1da09fa3b334799418fc68f166a18a02e156f4c6c0914dd655756c77b533ab17542b16380291193023ff7147f8cb7ee7a776671da23fb0f5ed99b4cfee32262ac447c4dd864aad118bae1f3c51d2db177eaa434e6868f99c6673b88fc11b9aaab80e2aadf4d1c0ea4e87ea7eb493aaaf910940884a754dbc01945795ec4c1604c6c3163af2ff79cd419f47ea818d386dc6ba67aa6fe86abedb1dcbf0903c3955d356081df9c5bd5856e25d2869d77b53db01e7ff7fb1f4e4e3062b013e06068d90dd75b853f83da86706a4ffdc9fad5df4ec3f5b8dce66c500af7f545f044764f248d1e5fcbafeb97cc43ea2067f9566684208308f1635bae0eb3e6c839d822785ba9b6f3d4b6c16caf030f96bc20e0cde1630b4fc3b9b4f47cafcc7c5b75e0c1525d058a8bb6f7b71d9318decb008edb5fb6ccfcfb157e0f0ba70b53ce48ac03e45aef7623aa76fd45b5d359baef1f4e19f4e970b9e1fa395bbcce48d4c40a8a92f122ac8019fb4392568934dfa46587462936c59f17ed3ce9507e3fa943648548dd2347769f0555bb1060885ef9cbc4aa94521b9f625deb59c3f3201b7f97ca3a0ec23e86e58a43316df862f718c00b9d7b79a5608ada21c2a7e45daf4268a1f9b0f50fd98a6ab1acaffd51e4772a2b2fb45202fc90354a06bce65fa26a6b7dbeea64e35c727ebf62c0411ad7406d18084a211de8ee3fcb8948f6ca14a25f6d4cc0bf7798589899143f597b2e4511b35b75f2f34cb0fa4766062641f7496820bd7a1a7b220aa40790581beb016de21e488c32cf7814dec16a44b8e8384796346bdea81eda84cbd1e8d964137444e2b566da9d3290349ff84d3fe66cca8e91fa5813301cb753238a00ead2386174f320f9df5e2bc05d7f539959d1dd6e9019a738a9a960d7321a2d33fdd00bf798bddcebb9b7464285fddef0070e44aac0a60f40f86db6c6707b17cc4c89114dcdf7816e6ef448ce1fabf17eba69091ba2c341ed485bc7c26e2fc2a06a922e985a3c783502359d64b44b84f6250dc21244c4975d926381fa99654f3e8565ff322846d72438906269085f2f9b22ca44de6d9ea3798929be79bd74adf05bce9341c9e00f8ccbb8ba97e7a6c9fcc55239dc961f1e8ab6fb317627376bb1b603f03ccc29b7e3b232f6618f5aaeff859e0b3077bd06ac66ecfd7e63acaa04546420e28fae1a54eee799813532da85cea19deb96bc3e5f1cce71e951a04ffc5cd5a38cab5b735d6362f4d66c479f3acd672dae4236467dff6ae9e1b7159de7b1379dddfc6c795e05a5a575554225d53e509f53a39ba236da30daf1b9824293c361c933ca0fbf0429692698c1aad6d39a955ed658588a73911a7562ca623d4808ee48ad802a0a6a240dfbdeb0aa19131ea93c72fddf8455594aab3c6909069457ae6bbbdd086f2cafae02e45884be1232a5817fcaf280e5e6771648f34b919c9384c25c9e793b1ff22e8a4953df3654d5b87ed6aa6bd9bf81da914401995379f91636b106c24ed2dcb9f7c1ac713e289815a65aa849e8a248968f68df4ebc6f40a0754c9e8fc551ce84d4ecbd2e35f3fa1f78c341fcfadb136680f11acf4619df4acfe3fd4a17b351101b22e3980755229ecdedf5cb19ed77de85fe7a73d8f855b8689b90607ed3afcee2fec07880e1a09a6fe57431d85706237f2a41262afe3952c5e33659017dd30dc00f91b2cf817a2f2c57c4c468d334462079bb4baac1a6d3f6d2c9785169d1bcdbd3e11dfc9619e55dd9c72862b31484e42ef9dddd16e329a0d42fd9ca3e0da08c313948fa0ea39b592c61ec4867996674725f6f510b9c43f34f774b61efda2f4536f3e5ca4c069ca06420df66837ab9f1f879167fa0e70351d81222a1dcf51e3f468f868f7986bb287a759e1fe1365db39127fbb0c38d9847cea17f6e2032aaff97c80feade39857ee3ea41084f7a8cfd92606b1f90c28e6142a35089c593cefe6798e4cb0c6b182766021cd5ceae8287425a4e4abd5912da9917adafcc206e40155829735e9661e9df59970de5bfad4c46aa6b7dd545c07cff938f86c73fa0a5b55c1babf9a0d63e5c9f74b81e4b45f612afe1ae2c571dbcd7b33822cb36281c8cc15b867729d48139080ff650d3bb9e92e97e05aeceb7c35a4641866859b9f939701eb21c67827d4470d20fa56fe89146b37bdbbd6f6ccf233c21f172d0c0ff351c3643eca0fa194ca701bff20a50911099302ed23a4e4a218e2a498b917598a1a3922a9e4a23764eb79678fa27a05ba84f961ae727f2770683e4cacf9038410b16e50ee2690f1812c12165559849f3f3e259ac7d63fce11c5c2660fb7e04d6517197c0f44840640bae7c100aa025120001ec5dc522a1ca2e2851efb187a64433b49876e3d2ff6c83e3ff4ff762b0d720631598b3fe0cad876f1ee8db6993990a74df5e78f4bd83befb8d6a9a2ebf92bf84a3348a4470ba3ba6b7280a2e6668daabb737d1ca240ab2a3cd259aaabb2696009954db30916f129a86e2a51fb5ba5f0b695fa5483e9c378b1e998d8bd9e33b609b1deb6e2d66b39d714fe2b330f723f883fd56ed9bc494e8a4f425b8f13aba81c7f7eabf97cde3c4f96a91afe523732d95c747b798281149f1dd5d0f76a3917f81a90dc7ebf8a52782d5869ab4d194f04aa4bd82811fd9f3cc4c633604aba17b67f1aa265d5f8f5d22114084de80e6d9ada5b21a036002fcc3aadbb56ffd4f67f138a7f89918762e4f590529e06ba2869065e3814b1c40cc4833250f3b386b2e655c047b1ace0d02511f82a262479f2f4ef3d2397def98c9786e62686626f975947020065500260e8453fe682c262aa44fb0a0a36bd6bc577b85d78db5a9c229f67491e3a5bd215f53994608ebd17fc073f7ea3c1a71c8a9a76ca1526bfb64ca893ea466c53d2fc612e5d82d318e40560b94bdc2ad89062756909b28a942a705a6b05473aa7377cc0a702a4ed47efb16073f21be41d0d5f3ba4a3e4c4e780cf1324395fe7bf26e53d059371709b014b0329e1190442f68783628446e2cfa8510cc07142a52a55bfbe43e1d243539c8d7bf5391a540a907901d151b9016ee1916077fe0016524ef2c454e3b504d11a0e2928f83cb6ee8d00da74a80a68488bb39a1788dd6f852a0259617c35e51474e513d48c614932c8f2f67a7b8cc95562af9dbcb57ce1a9a4bbe2973ec673eb897913689b8606b61aea31f8ff4247b2d27170115d2426e9aff0e472d0d7ed2e85d5ba0d947905028a120ae4bfcf6e00b34945827f6f7e9a1e1e79183d535ec76704428013262ea8339bc31ac1497bff013e48b96d92e7ce830bd5060be019084ee5e3c787a787d5c1745f1a41be6756b7f946ae270b22e536a5cd66069f407ad847650d88cd49ab27e8cec5de510fb4510afce1e0d3ef7f8cddac719db746650f3090d22f5b0eee68d00ef0af60e5ef0ba90cfa9132872236e00fbaec501b4891caede4f377829776ee00aa35eb2f4df90218ba0576ec3140f52e22de53478197905dd5ffa0ef5d2456c72fa4ec70af2c2b542e76e2374238ab241a72b974c7c30d79f8ee65b2f1c960f6905295b648e2089c9de825279e18ffefd25b9d4901eb3b87ce5961e5fae6647416c3d48b63d17c3b8a455615f5e2bf34030ed5e3d7f3b83882b6073e6826b5955f4ec3c5be6eb05b4490888621192be10301540beea9463942b3945043940ab4327ee73ab53ade4d3cd5c20369fbb6adf37ad06b7f42bf38c551f8a24f7fd12c878b3d5f06c770db4f43e5211ca799072c48b169e3b9b1c448ce0bac8fd1f236a624284b70d5599b962969f2366b298711a58cb8d5906c2cff06855f94817294b39fb1379c17b4ff2734eb26b98ca3e3a41ba67620890c2c09d309c9e2b8d467a269c122ffd2a460df2894cb451cd2aab8f1f8301d2ca8109d48daecc7bb3a7c85d374285659337577f8f4b7f1e49dc5da456766d0570b2194ca9f03a49ef37497ecb3e5d4c57553109bb8f70ffd4fd5f05cb8e8f048f540b7eb9e98eee8e929af9fc83b56879164edffa7b0d324095cd415b2bf4f377228e6daa73ea11b5b24e0555906de6019678676da8df044787d951a5c05c09af4dbd1a5ead49d8c06ab5db2d8d11ec89841a824c092c05de8e969eada04b60b0a00fe75728d64a87ab3d865b4b07b12027b21dba5da2f8ba6f842864d208a56c911234db14fc3baba43c8c01ce370cee71a440a396a864a4ed8ab42e02c0fd37cb277f47e965e925b69c2051b5ac72b75ee0cddb27946c055560559b03632206386803a278334151bd34a29e7d73bc629a2b1dfdffd23b7baf568d5eeccca21471878ef8b9c2eeff537fbc564a56fd27fc5270bb6c054a9cd1652fb34358d65235b42b18b162b66c46f8aecdd58152bad23c79a12d0c18a1d039c69049ffe54018a5353a2998a441a99af69dc0b9147d400010c023557910b2d707d9e5ae219e7e7b0e85cd56464c89f416995bfe74cc67f2137cbd0b74cb009aa33a6b0d4c6f11b07bf6338b975f348282da0986376565e91770ba39680997dc52c719359c15b453ec62bf97e3a4fe97729c0f26b68a3f5f6e5411b3b7a68adce992b9c362ff7bc6c3cac88da5776d653e8a1e6e380bebc066d159b3de7a987b2736f0f1488efbeac187a425b48f6fb8a2da5210b9bcc09afea2c6dee5d9c3d88d6e2bd77a7e328a9372f647e964c6e952a0d7ad47f206e5d64063528d2d39953923b953e6bfe799830d5998939016f80142e241821d5f273e78cc0230e017d51731cfa84cd4c4a6c9286ea8bfc0692d710916ae921d97983480ba48e1809f4ef06d0ac52ac6968da901fb6d44b15a31a24637310576d088379ef6cc2b43ab8fc0a429608dc8d7e5acfc0aac9a0666f99727efd38663bef0aaf70465cc2c2d76deaecefdfd59f4d3938b5acbee1a579c31e2350037328d1bc19441c3df6a7d4f3c32f818d503485abd1b9eea73215b660976a4a64ce71afe12ccf6cd6c340d0b13ded57e1fd81ad3178ea7a43b89b71ed6733ea211704119a51f2a9ce02414981c75e3f87d4bcef475139f018a89164fda5ca537c6eb22722e2a1b5becd6ee7b175561d5e51319862dbfa54d7743ca59e6efd02b0b44a0b475aba1c69ee8f16c9304a50548ba8563c9b6ab0e54ed15ba7395a58b0be6ffe1a4c8faa9246f17f68b5ed5b8c203a42591ee43a94735ff5ba53ac308ed2619074816074509151689e4e69e0e843a2bfba1e800ac39713c5a5c95267c1b60045186d908234e6a402c8ae027d4139f08f42bd48fa8a776c623139e67e37a3e590493b7e0d4dca1f15f761791569fb6ae9ca18eeb870f685f93e998306de43cf65bd67b2713b574bcffa07584f1165d9795f445588d2da0b690e61c640ce485c13243d1c810add26509e6f0a8dab7c5c42e7b64b60d40debb86342c9b9982bdaa3c4987c656a71565ffe1941f083641b2e63cf6b7c1d25a3c2c0535c499e1d1d38057867384c70fbef290d6e019ba072f613c19d056550ea09447e6155ec108558406909491e817c6a3289e6c20093e7093549b10e40deb586997630b1daac9e97a66f440d0d681ca397f5e8eaac8d4bf9c14a2af9ad6200e18cbc728212be46269746deb308d5146538b2b3e7250e007ce79f482c8e3b797b235a08fb9f1ab383d75e61c712847c4b791"}, {0x48, 0x10b, 0x7, "d294a5ad4897cd6f3ee63a975b16cbbbf81f3813f9be35bc21a257e128c1191b6d54268f490a54d54e428df8ab24ba5a16953eb51a62"}], 0x1058}}], 0x6, 0x10)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:12 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:12 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))

08:28:12 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r4}, './file0\x00'})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x40010, r5, 0x0)

[ 2240.729346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2240.733547] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2240.735164] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2240.736666] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2240.738173] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2240.739678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2240.741167] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:28:12 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0xfdeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x10)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:12 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:12 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

08:28:12 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:12 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r5, 0xc0505350, &(0x7f0000000d00)={{0x0, 0x7}})
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f0000000040), &(0x7f0000000140)=0xc)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:12 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))

08:28:12 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x80}}, './file0\x00'})
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x118, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8}}]}, 0x118}, 0x1, 0x0, 0x0, 0x24000000}, 0x80)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r12, 0x0, 0x0}, 0x0)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r13, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r6, r11, &(0x7f0000000280)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2000, @fd=r4, 0x200000000000000, 0x0, 0x0, 0x1, 0x0, {0x2}}, 0x9afc)

08:28:30 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:30 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:30 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:30 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))

08:28:30 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x100000000000000, 0x0, 0x0)

08:28:30 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x5, 0x4}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:30 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:30 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 50)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2259.270943] FAULT_INJECTION: forcing a failure.
[ 2259.270943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2259.273655] CPU: 1 PID: 11612 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2259.275164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2259.276970] Call Trace:
[ 2259.277546]  dump_stack+0x107/0x167
[ 2259.278353]  should_fail.cold+0x5/0xa
[ 2259.279188]  _copy_from_user+0x2e/0x1b0
[ 2259.280060]  move_addr_to_kernel.part.0+0x31/0x110
[ 2259.281131]  move_addr_to_kernel+0x4f/0x70
[ 2259.282107]  io_connect+0x47a/0x610
[ 2259.282903]  ? io_prep_rw+0x1050/0x1050
[ 2259.283793]  ? __lock_acquire+0xbb1/0x5b00
[ 2259.284723]  io_issue_sqe+0x1611/0x77b0
[ 2259.285593]  ? perf_trace_lock+0xac/0x490
[ 2259.286502]  ? SOFTIRQ_verbose+0x10/0x10
[ 2259.287381]  ? lock_chain_count+0x20/0x20
[ 2259.288290]  ? io_connect+0x610/0x610
[ 2259.289125]  ? lock_acquire+0x197/0x470
[ 2259.289996]  ? find_held_lock+0x2c/0x110
[ 2259.290888]  ? __fget_files+0x2cf/0x520
[ 2259.291754]  ? lock_downgrade+0x6d0/0x6d0
[ 2259.292661]  __io_queue_sqe+0x90/0x9d0
[ 2259.293517]  ? io_issue_sqe+0x77b0/0x77b0
[ 2259.294428]  ? __fget_files+0x2f8/0x520
[ 2259.295311]  io_submit_sqes+0x44aa/0x8610
[ 2259.296245]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2259.297324]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2259.298398]  ? io_submit_sqes+0x8610/0x8610
[ 2259.299336]  ? recalibrate_cpu_khz+0x10/0x10
[ 2259.300292]  ? ktime_get+0x158/0x1f0
[ 2259.301107]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 2259.302048]  ? clockevents_program_event+0x131/0x360
[ 2259.303151]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2259.304287]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2259.305454]  ? trace_hardirqs_on+0x5b/0x180
[ 2259.306403]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2259.307594]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2259.308720]  do_syscall_64+0x33/0x40
[ 2259.309528]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2259.310659] RIP: 0033:0x7f9e767a8b19
[ 2259.311464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2259.315475] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2259.317129] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2259.318687] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2259.320260] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2259.321806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2259.323359] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:28:30 executing program 0:
r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r3, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x8, 0x3, &(0x7f0000000340)="1786eb725bd606c9f81875c5d63c458627985318e950f0c8c5804e766dbf6f3d02d80963f47c94b8269b3f3a53265e900722f9dabde6a99aa19ff47b73a61eb04c2400538f429ea49fe32255c2f902301f67e913051505c8fbe8e4b0c81875410062f72808b4fd46ca4cec37b23a3f6e1dfd4cb4bfe9f43979eb8b2538d8900b8227389c592e725e41a91622705f661a318aaa5a77c8d3ac6542873597920799faa577e62510591310e95576fca28f71df7a051b9a28746ee0ce94ebae104f9b3b4ce402caaf148236f52e80e3128b180c6c2d", 0x0, 0x0, 0x1}, 0x80000000)
r4 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000180)=<r6=>0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:31 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

08:28:31 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:31 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x0, &(0x7f00000001c0))

08:28:31 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x0, 0x805, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:31 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x9)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:31 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:28:31 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 51)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2259.782720] FAULT_INJECTION: forcing a failure.
[ 2259.782720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2259.785307] CPU: 1 PID: 11654 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2259.786767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2259.788506] Call Trace:
[ 2259.789062]  dump_stack+0x107/0x167
[ 2259.789830]  should_fail.cold+0x5/0xa
[ 2259.790648]  _copy_from_user+0x2e/0x1b0
[ 2259.791489]  move_addr_to_kernel.part.0+0x31/0x110
[ 2259.792521]  move_addr_to_kernel+0x4f/0x70
[ 2259.793412]  io_connect+0x47a/0x610
[ 2259.794192]  ? io_prep_rw+0x1050/0x1050
[ 2259.795052]  ? __lock_acquire+0xbb1/0x5b00
[ 2259.795944]  io_issue_sqe+0x1611/0x77b0
[ 2259.796787]  ? perf_trace_lock+0xac/0x490
[ 2259.797654]  ? SOFTIRQ_verbose+0x10/0x10
[ 2259.798511]  ? lock_chain_count+0x20/0x20
[ 2259.799386]  ? io_connect+0x610/0x610
[ 2259.800192]  ? lock_acquire+0x197/0x470
[ 2259.801027]  ? find_held_lock+0x2c/0x110
[ 2259.801897]  ? __fget_files+0x2cf/0x520
[ 2259.802742]  ? lock_downgrade+0x6d0/0x6d0
[ 2259.803616]  __io_queue_sqe+0x90/0x9d0
[ 2259.804439]  ? io_issue_sqe+0x77b0/0x77b0
[ 2259.805296]  ? __fget_files+0x2f8/0x520
[ 2259.806150]  io_submit_sqes+0x44aa/0x8610
[ 2259.807047]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2259.808083]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2259.809087]  ? find_held_lock+0x2c/0x110
[ 2259.809938]  ? io_submit_sqes+0x8610/0x8610
[ 2259.810849]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2259.811852]  ? wait_for_completion_io+0x270/0x270
[ 2259.812854]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2259.813818]  ? vfs_write+0x354/0xb10
[ 2259.814608]  ? fput_many+0x2f/0x1a0
[ 2259.815366]  ? ksys_write+0x1a9/0x260
[ 2259.816158]  ? __ia32_sys_read+0xb0/0xb0
[ 2259.817008]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2259.818104]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2259.819182]  do_syscall_64+0x33/0x40
[ 2259.819956]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2259.821023] RIP: 0033:0x7f9e767a8b19
[ 2259.821796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2259.825633] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2259.827222] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2259.828700] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2259.830197] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2259.831669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2259.833141] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2261.302453] Bluetooth: hci7: command 0x0405 tx timeout
08:28:48 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

08:28:48 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:48 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0xff50, &(0x7f0000000080)=@qipcrtr={0x2a, 0x4, 0x7fff}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x16, 0xffffffffffffffff, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r10 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
mkdirat(r3, &(0x7f0000000640)='./file0\x00', 0x24)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r13=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r11, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r13], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r12, 0xa, 0x0, r14)
syz_io_uring_submit(0x0, r7, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r9, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@tipc=@id, 0x80, &(0x7f0000000140)=[{&(0x7f0000000340)=""/215, 0xd7}, {&(0x7f0000000500)=""/205, 0xcd}, {&(0x7f0000000040)=""/28, 0x1c}], 0x3, &(0x7f00000001c0)=""/3, 0x3}, 0x0, 0x2001, 0x0, {0x0, r14}}, 0x101)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

08:28:48 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3, @out_args}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
bind$packet(r4, &(0x7f0000000040)={0x11, 0xf6, 0x0, 0x1, 0x7, 0x6, @broadcast}, 0x14)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000240)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:48 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x0, 0x0)

08:28:48 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 52)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:28:48 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/block/loop7', 0xc0080, 0x1a0)
r4 = syz_io_uring_setup(0x19dd, &(0x7f0000000340)={0x0, 0x7e32, 0x2, 0x1, 0x38, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000400), &(0x7f00000003c0))
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x6, 0x9, {0x0, r5}, 0xfffffffb, 0x0, 0x0, {0x0, 0x0, r6}}, 0x3)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000080)=@hci}, 0x0)
openat(r5, &(0x7f00000001c0)='./file0\x00', 0x40340, 0x180)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
ioctl$BTRFS_IOC_BALANCE(r4, 0x5000940c, 0x0)

08:28:48 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5ffffff00000000, 0x0, 0x0)

[ 2277.095826] FAULT_INJECTION: forcing a failure.
[ 2277.095826] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.098483] CPU: 1 PID: 11681 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2277.099973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.101765] Call Trace:
[ 2277.102350]  dump_stack+0x107/0x167
[ 2277.103143]  should_fail.cold+0x5/0xa
[ 2277.103971]  should_failslab+0x5/0x20
[ 2277.104794]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2277.105768]  io_submit_sqes+0x6fe6/0x8610
[ 2277.106704]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.107770]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.108808]  ? find_held_lock+0x2c/0x110
[ 2277.109685]  ? io_submit_sqes+0x8610/0x8610
[ 2277.110629]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2277.111664]  ? wait_for_completion_io+0x270/0x270
[ 2277.112699]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.113695]  ? vfs_write+0x354/0xb10
[ 2277.114510]  ? fput_many+0x2f/0x1a0
08:28:48 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 2277.115295]  ? ksys_write+0x1a9/0x260
[ 2277.116419]  ? __ia32_sys_read+0xb0/0xb0
[ 2277.117296]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.118440]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.119550]  do_syscall_64+0x33/0x40
[ 2277.120348]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.121447] RIP: 0033:0x7f9e767a8b19
[ 2277.122328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.126298] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2277.127928] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2277.129460] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2277.130999] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.132529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2277.134057] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:28:48 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000280)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x3, 0x90, 0x0, 0x5}, 0x6)
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r10, 0x0, 0x0}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r11, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r4, r9, &(0x7f0000000940)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2004, @fd=r0, 0x4, 0x0, 0x0, 0xa, 0x1, {0x2}}, 0x3d8)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r12=>0x0, &(0x7f0000000440))
syz_io_uring_submit(r12, r9, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x8801, 0x8}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x23456}, 0x9)
r13 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0)
execveat(r13, &(0x7f00000003c0)='./file0\x00', &(0x7f00000006c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)='\x00', &(0x7f0000000600)='!%\x00', &(0x7f0000000640)='\x00', &(0x7f0000000680)='\x00'], &(0x7f0000000900)=[&(0x7f0000000700)='\x00', &(0x7f0000000740)='\x00', &(0x7f0000000780)='\x00', &(0x7f00000007c0)='\xadQ\x00', &(0x7f0000000800)='^.\x00', &(0x7f0000000840)='\x00', &(0x7f0000000880)='-]$]+&{-\x00', &(0x7f00000008c0)='\x00'], 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:48 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:28:48 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

08:28:48 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000340)=0x7, 0xffffffffffffff00)
r9 = openat2(r7, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)={0x2537724c2e33e462, 0x91, 0x8}, 0x18)
io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000140)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd=r10, 0x80000000, 0x0, 0x1, 0x0, 0x0, {0x0, r11}}, 0x5)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r12, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r13 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x81f8943c, &(0x7f0000000500))

08:28:48 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r11, &(0x7f0000000040)={0x800, 0x4, 0xa}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r10}}, 0x8001)

08:28:48 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000003, 0x180052, r4, 0x193cd000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = dup2(r4, r0)
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f00000001c0)={<r7=>r0, 0x5, 0x7d, 0x8})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000000340)={{0x1, 0x1, 0x18, r6, {r7}}, './file0\x00'})
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10000000, 0x0, 0x5}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x4, 0x0, 0x1, 0x3, 0x57, @private2={0xfc, 0x2, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x7, 0x20, 0x7f, 0x401}})

08:28:49 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x5, 0x4}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:28:49 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 53)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:28:49 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
setsockopt$sock_int(r4, 0x1, 0x20, &(0x7f0000000040)=0x8001, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
creat(&(0x7f0000000140)='./file0\x00', 0x90)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2277.637041] FAULT_INJECTION: forcing a failure.
[ 2277.637041] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.640049] CPU: 1 PID: 11728 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2277.641719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.643728] Call Trace:
[ 2277.644369]  dump_stack+0x107/0x167
[ 2277.645254]  should_fail.cold+0x5/0xa
[ 2277.646186]  ? create_object.isra.0+0x3a/0xa20
[ 2277.647290]  should_failslab+0x5/0x20
[ 2277.648208]  kmem_cache_alloc+0x5b/0x310
[ 2277.649199]  create_object.isra.0+0x3a/0xa20
[ 2277.650269]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2277.651495]  kmem_cache_alloc_bulk+0x168/0x320
[ 2277.652601]  io_submit_sqes+0x6fe6/0x8610
[ 2277.653637]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.654837]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2277.655999]  ? find_held_lock+0x2c/0x110
[ 2277.656975]  ? io_submit_sqes+0x8610/0x8610
[ 2277.658016]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2277.659185]  ? wait_for_completion_io+0x270/0x270
[ 2277.660343]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.661455]  ? vfs_write+0x354/0xb10
[ 2277.662357]  ? fput_many+0x2f/0x1a0
[ 2277.663243]  ? ksys_write+0x1a9/0x260
[ 2277.664155]  ? __ia32_sys_read+0xb0/0xb0
[ 2277.665133]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.666399]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.667635]  do_syscall_64+0x33/0x40
[ 2277.668527]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.669753] RIP: 0033:0x7f9e767a8b19
[ 2277.670655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.675021] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2277.676817] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2277.678510] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2277.680201] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.681890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2277.683591] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:04 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 54)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:29:04 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

08:29:04 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000340)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe2(&(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet(0x2, 0x4, 0x3f)
accept4(r6, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000040)=0x80, 0x80800)

08:29:04 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:04 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r5}}, 0x3ff)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:04 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r9 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r9, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})

08:29:04 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$sock_SIOCADDRT(r3, 0x890b, &(0x7f0000000940)={0x0, @can={0x1d, <r6=>0x0}, @nl=@unspec, @xdp={0x2c, 0x7, 0x0, 0x2c}, 0x3, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)='ip_vti0\x00', 0x101, 0xc7, 0x8})
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/block/loop1', 0x101000, 0x8c)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, &(0x7f00000005c0)={0x7ff, 0x20, [0x8, 0xba, 0xe666, 0x5], &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000540)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
sendmsg$inet6(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000740)="db4edaebf204951d15547d973b2c49918ec31154ffd72ebee7be1021a2c6582ca4191d14f2a0bc5d2fe41018a7bcbe613a65443fa6cc1f37f61c6a4e273afdd42f88f2c381d20637427cd459689fc668dc0aada352ff819d1abccd69fcfcb7d75d24c3eb969c51e4665b145ee8a9cd1af4bd7cebb8cbc2a262126bc7bdba69a564f47d3b780b5775a304563560", 0x8d}, {&(0x7f0000000800)="bcd1b4f2d77b055e106b0825f20a94dea01b93a65e0f165f024a9ba14bb75bee9a671bf5bda7c1ee6c0b8143566db5061ecbce808294a6edc71911844e259fa4635174c68f84ac0081dfce5d1b8995b13fadb2c55516409a1e3ac0c5ecd72aa64df3b02ebcdb1299e0175f468cc13dcb30392a4d950017c11c45a2", 0x7b}, {&(0x7f0000000880)="2aee2e2453d594007b075d60f8dd0a2986b6f7d6a7e0c1ee8d4e9797604f793535e2d4c34ad40790a4eee449b5dbb194c27cf232e2e3e56ad3c69e7cdac8d891e5cafd164d0069c08bbc61049832f9c0601e724f58567991c840b837f0c3702ea5cca0b822aa563de3053ca24d15aa529ad8554c654c", 0x76}], 0x3, &(0x7f00000009c0)=[@pktinfo={{0x24, 0x29, 0x32, {@remote, r6}}}, @hoplimit={{0x14, 0x29, 0x34, 0x8}}], 0x40}, 0x4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r8, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r8, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@rc={0x1f, @any, 0x4}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000340)="0b488a05a6a421d4442f6ed7d8d4bf3daea7a5417aab1f16f7938da25e2d257066754617a3fe47a92bd928debb14876e69cf14e33f84bde9af59ed5ba1594574648c55d032a733cab18f7ac7c9f2467080d97fdd7a1cd3ce047fa7bc0a214fe1baecdcb119f62b42a82675ee05", 0x6d}, {&(0x7f00000003c0)="45ff68e1f2a992bb2c02d978b59f51023c00c5f7b920853938c895480b229c57a812ec4007a50d1747839dc0d6f8662a73ed60828479f11c6a8918b5d99aee591206e8a1ae3b29a576cd31725f8c6901d608c40f4ab38c5c55d3a6711d2185b179c50c9fd69c4cc4678a53893af6f7ab1495c2d52b60cc7e3c992408e9cd", 0x7e}], 0x2, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x228}, 0x0, 0x0, 0x1, {0x0, r9}}, 0x1000)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:04 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2293.036073] FAULT_INJECTION: forcing a failure.
[ 2293.036073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2293.038859] CPU: 1 PID: 11747 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2293.040374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.042109] Call Trace:
[ 2293.042677]  dump_stack+0x107/0x167
[ 2293.043442]  should_fail.cold+0x5/0xa
[ 2293.044252]  _copy_from_user+0x2e/0x1b0
[ 2293.045086]  move_addr_to_kernel.part.0+0x31/0x110
[ 2293.046108]  move_addr_to_kernel+0x4f/0x70
[ 2293.047002]  io_connect+0x47a/0x610
[ 2293.047763]  ? io_prep_rw+0x1050/0x1050
[ 2293.048619]  ? __lock_acquire+0xbb1/0x5b00
[ 2293.049510]  io_issue_sqe+0x1611/0x77b0
[ 2293.050365]  ? perf_trace_lock+0xac/0x490
[ 2293.051228]  ? SOFTIRQ_verbose+0x10/0x10
[ 2293.052078]  ? lock_chain_count+0x20/0x20
[ 2293.052953]  ? io_connect+0x610/0x610
[ 2293.053763]  ? lock_acquire+0x197/0x470
[ 2293.054599]  ? find_held_lock+0x2c/0x110
[ 2293.055464]  ? __fget_files+0x2cf/0x520
[ 2293.056302]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.057176]  __io_queue_sqe+0x90/0x9d0
[ 2293.057999]  ? io_issue_sqe+0x77b0/0x77b0
[ 2293.058872]  ? __fget_files+0x2f8/0x520
[ 2293.059729]  io_submit_sqes+0x44aa/0x8610
[ 2293.060642]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.061691]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2293.062715]  ? find_held_lock+0x2c/0x110
[ 2293.063581]  ? io_submit_sqes+0x8610/0x8610
[ 2293.064492]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2293.065507]  ? wait_for_completion_io+0x270/0x270
[ 2293.066526]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2293.067499]  ? vfs_write+0x354/0xb10
[ 2293.068282]  ? fput_many+0x2f/0x1a0
[ 2293.069050]  ? ksys_write+0x1a9/0x260
[ 2293.069856]  ? __ia32_sys_read+0xb0/0xb0
[ 2293.070718]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.071825]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2293.072923]  do_syscall_64+0x33/0x40
[ 2293.073707]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2293.074786] RIP: 0033:0x7f9e767a8b19
[ 2293.075570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.079440] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2293.081034] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2293.082547] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2293.084035] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.085527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.087041] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:04 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)

08:29:04 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:04 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd=r5, 0xe2f9, &(0x7f0000000340)="4bde566b196e46654e10531cd53083bcaf625a925e5fc21a702006ab39f503d22ea5780ed58c4ccc8542ddf7946425b9f0d02cc12f8b10c6d1bd088f79dae51100af79abdf29fd80abffbb9719804f83fa019702d164ec3de35e738e2b5f3c3725e0775aa6007102018081002492692e28f67f2a16ce8429324054e353584472e5c647326057a5595ed9ceac6187563fe6e45f71036300fcacfefd2a4318471223192b901f03cd17d0935ad6fe09038c490c3e5f9d94981d6a1f8be0ce4f75202ae5374b064066b550aa93cb4bb6d1239906a84471ab092611e92fed61377cac27583798198186ee10bceee40164a19ed66e9a7a9137d07357cdda", 0xfb, 0x16, 0x1, {0x0, r10}}, 0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:04 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

08:29:17 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x4004, @fd=r0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000340)=""/139, 0x8b}, {&(0x7f0000000500)=""/184, 0xb8}, {&(0x7f0000000040)=""/21, 0x15}], 0x3, 0x2, 0x1, {0x0, r4}}, 0x7f)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:17 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

08:29:17 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x400000)

08:29:17 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x1afd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = socket$unix(0x1, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r3, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@l2={0x1f, 0x1, @none, 0x6, 0x2}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000340)="0fed2b564b927fb999293a78d2ac03e66b49d38f522fc787f2239bfdd3949da6bf520aa1de87f6e2320447889b176e86e2b9403b95850f0bf79c07bc71f5bc007d313982effd4509cee5bfdb04f4c64ba97169bbbc12747afb7aeade2121d5662b35898fa64ca4018f3b8c4183a10e96c5de64b9315eb1e86789cdf60905fdac510017df3eaab29f", 0x88}], 0x100001e4, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x158}, 0x0, 0x4}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000040)={0x2b, 0x80, 0x8, 0xbb34, 0x98})
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:17 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x0, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:17 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:17 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 55)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:29:17 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x200}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x8a3, &(0x7f00000002c0)={0x0, 0x493d, 0x0, 0x1, 0x8b, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380))
r4 = dup3(r3, r0, 0x80000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'macsec0\x00'})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6307, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x29fd3f73484fea76}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0), 0x111101, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
io_uring_enter(r6, 0x5daa, 0x143e, 0x0, &(0x7f0000000400)={[0x9]}, 0x8)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3000000, 0x11, r5, 0x8000000)
openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x8a000, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x3, 0x3, 0x5, 0x5, 0x0, 0x7, 0x10430, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x362b, 0x4, @perf_bp={&(0x7f0000000440), 0x1}, 0x54281, 0x9, 0x8, 0x4, 0x4, 0x1f, 0x3000, 0x0, 0x8, 0x0, 0x20}, 0x0, 0x3, 0xffffffffffffffff, 0x13)

[ 2306.176028] FAULT_INJECTION: forcing a failure.
[ 2306.176028] name failslab, interval 1, probability 0, space 0, times 0
[ 2306.179087] CPU: 1 PID: 11802 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2306.180712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2306.182666] Call Trace:
[ 2306.183289]  dump_stack+0x107/0x167
[ 2306.184158]  should_fail.cold+0x5/0xa
[ 2306.185060]  ? create_object.isra.0+0x3a/0xa20
[ 2306.186135]  should_failslab+0x5/0x20
[ 2306.187040]  kmem_cache_alloc+0x5b/0x310
[ 2306.188011]  ? mark_held_locks+0x9e/0xe0
[ 2306.188975]  create_object.isra.0+0x3a/0xa20
[ 2306.190014]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2306.191234]  kmem_cache_alloc_bulk+0x168/0x320
[ 2306.192318]  io_submit_sqes+0x6fe6/0x8610
[ 2306.193332]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2306.194500]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2306.195626]  ? find_held_lock+0x2c/0x110
[ 2306.196570]  ? io_submit_sqes+0x8610/0x8610
[ 2306.197581]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2306.198705]  ? wait_for_completion_io+0x270/0x270
[ 2306.199824]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2306.200900]  ? vfs_write+0x354/0xb10
[ 2306.201765]  ? fput_many+0x2f/0x1a0
[ 2306.202625]  ? ksys_write+0x1a9/0x260
[ 2306.203514]  ? __ia32_sys_read+0xb0/0xb0
[ 2306.204461]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2306.205676]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2306.206881]  do_syscall_64+0x33/0x40
[ 2306.207744]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2306.208946] RIP: 0033:0x7f9e767a8b19
[ 2306.209809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2306.214061] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2306.215832] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2306.217484] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2306.219144] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2306.220805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2306.222447] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:17 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x0, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:17 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:17 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:18 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r6, 0x0, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r10, 0x0, 0x0}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r11, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r12 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r12, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r6, r9, &(0x7f0000000140)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r12, 0x0, &(0x7f0000000040)="03db78aa791cb7fe012c7030f22dd07fa94a38ea836b8b9d750af0ca", 0x1c, 0x8000, 0x1}, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:18 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r8, r2, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x9, &(0x7f0000000040)={0x0, 0x989680}, 0x1, 0x1}, 0xb259)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:18 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:18 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

08:29:18 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)={0x16}, r0, 0x3, 0x0, 0x1}, 0x57)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:18 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x0, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:18 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:18 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x9110, r0, 0x8000000)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x4004, @fd=r5, 0x81, 0x0, 0x0, 0x3, 0x0, {0x2, r10}}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:18 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 56)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:29:18 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_setup(0x235f, &(0x7f0000000240)={0x0, 0x21fd, 0x0, 0x1, 0x8, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:18 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x1000000)

08:29:18 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2306.805993] FAULT_INJECTION: forcing a failure.
[ 2306.805993] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2306.808885] CPU: 0 PID: 11860 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2306.810364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2306.812143] Call Trace:
[ 2306.812712]  dump_stack+0x107/0x167
[ 2306.813499]  should_fail.cold+0x5/0xa
[ 2306.814323]  _copy_from_user+0x2e/0x1b0
[ 2306.815194]  move_addr_to_kernel.part.0+0x31/0x110
[ 2306.816246]  move_addr_to_kernel+0x4f/0x70
[ 2306.817154]  io_connect+0x47a/0x610
[ 2306.817933]  ? io_prep_rw+0x1050/0x1050
[ 2306.818826]  ? __lock_acquire+0xbb1/0x5b00
[ 2306.819738]  io_issue_sqe+0x1611/0x77b0
[ 2306.820597]  ? perf_trace_lock+0xac/0x490
[ 2306.821490]  ? SOFTIRQ_verbose+0x10/0x10
[ 2306.822357]  ? lock_chain_count+0x20/0x20
[ 2306.823256]  ? io_connect+0x610/0x610
[ 2306.824084]  ? lock_acquire+0x197/0x470
[ 2306.824937]  ? find_held_lock+0x2c/0x110
[ 2306.825815]  ? __fget_files+0x2cf/0x520
[ 2306.826676]  ? lock_downgrade+0x6d0/0x6d0
[ 2306.827571]  __io_queue_sqe+0x90/0x9d0
[ 2306.828413]  ? io_issue_sqe+0x77b0/0x77b0
[ 2306.829296]  ? __fget_files+0x2f8/0x520
[ 2306.830165]  io_submit_sqes+0x44aa/0x8610
[ 2306.831099]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2306.832165]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2306.833203]  ? find_held_lock+0x2c/0x110
[ 2306.834074]  ? io_submit_sqes+0x8610/0x8610
[ 2306.835010]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2306.836050]  ? wait_for_completion_io+0x270/0x270
[ 2306.837090]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2306.838091]  ? vfs_write+0x354/0xb10
[ 2306.838905]  ? fput_many+0x2f/0x1a0
[ 2306.839690]  ? ksys_write+0x1a9/0x260
[ 2306.840507]  ? __ia32_sys_read+0xb0/0xb0
[ 2306.841383]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2306.842519]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2306.843627]  do_syscall_64+0x33/0x40
[ 2306.844423]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2306.845519] RIP: 0033:0x7f9e767a8b19
[ 2306.846316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2306.850268] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2306.851910] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2306.853439] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2306.854972] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2306.856502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2306.858032] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:18 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:18 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x0, {0x0, r10}}, 0x9)
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
readv(r11, &(0x7f0000000040)=[{&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000240)=""/109, 0x6d}, {&(0x7f0000000500)=""/97, 0x61}, {&(0x7f0000000580)=""/189, 0xbd}], 0x4)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:18 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:18 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:31 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 57)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:29:31 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x41108, 0x0, 0x0, 0x8, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:31 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:31 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

08:29:31 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:31 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:31 executing program 7:
r0 = syz_io_uring_setup(0x76c9, &(0x7f00000002c0)={0x0, 0x4bed, 0x0, 0xfffffbfd, 0x203}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:31 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x3, 0x2, 0x3, 0x3f, 0x0, 0xf9f, 0x10100, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000140), 0x1}, 0x108, 0x7, 0x6, 0x4, 0x4, 0x3ff, 0x170, 0x0, 0x1, 0x0, 0x3}, r8, 0x8, 0xffffffffffffffff, 0x4)

[ 2320.343795] FAULT_INJECTION: forcing a failure.
[ 2320.343795] name failslab, interval 1, probability 0, space 0, times 0
[ 2320.345812] CPU: 1 PID: 11901 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2320.346999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2320.348391] Call Trace:
[ 2320.348838]  dump_stack+0x107/0x167
[ 2320.349450]  should_fail.cold+0x5/0xa
08:29:31 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x2, 0x2, 0xfffffffb, 0x386}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140)=<r6=>0x0, &(0x7f00000000c0))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, {0x504}, 0x0, {0x0, r7}}, 0x40000000)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x7b5a, 0x6471, 0x2, &(0x7f0000000040)={[0x1]}, 0x8)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2320.350081]  ? create_object.isra.0+0x3a/0xa20
[ 2320.351026]  should_failslab+0x5/0x20
[ 2320.351643]  kmem_cache_alloc+0x5b/0x310
[ 2320.352308]  ? mark_held_locks+0x9e/0xe0
[ 2320.352990]  create_object.isra.0+0x3a/0xa20
[ 2320.353712]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2320.354556]  kmem_cache_alloc_bulk+0x168/0x320
[ 2320.355320]  io_submit_sqes+0x6fe6/0x8610
[ 2320.356032]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2320.356855]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2320.357656]  ? find_held_lock+0x2c/0x110
[ 2320.358340]  ? io_submit_sqes+0x8610/0x8610
[ 2320.359081]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2320.359876]  ? wait_for_completion_io+0x270/0x270
[ 2320.360684]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2320.361461]  ? vfs_write+0x354/0xb10
[ 2320.362081]  ? fput_many+0x2f/0x1a0
[ 2320.362696]  ? ksys_write+0x1a9/0x260
[ 2320.363329]  ? __ia32_sys_read+0xb0/0xb0
[ 2320.364006]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2320.364879]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2320.365743]  do_syscall_64+0x33/0x40
[ 2320.366372]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2320.367234] RIP: 0033:0x7f9e767a8b19
[ 2320.367854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2320.370938] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2320.372192] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2320.373395] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2320.374580] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2320.375777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2320.376984] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:31 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:32 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:32 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:32 executing program 7:
r0 = syz_io_uring_setup(0xf5, &(0x7f00000002c0)={0x0, 0x4, 0x0, 0x0, 0x3b8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
syz_io_uring_submit(0x0, r2, &(0x7f0000000580)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1, r7}}, 0x8)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r9 = open_tree(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x100)
syz_io_uring_setup(0xdca, &(0x7f0000000400)={0x0, 0xb476, 0x0, 0x0, 0x36, 0x0, r9}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2427, &(0x7f0000000240)={0x0, 0xbf12, 0x0, 0x0, 0x2dc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000380))
r10 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r10, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
getsockopt$IP_VS_SO_GET_INFO(r10, 0x0, 0x481, &(0x7f0000000040), &(0x7f0000000140)=0xc)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:46 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x40000, 0x0, 0x0, 0x2e5}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
r3 = dup2(r0, r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r3, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x2, 0x3, @fd, 0x9, &(0x7f0000000280)=""/44, 0x2c, 0x11}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4, 0x4000110, r3, 0x8000000)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000007, 0x2010, r5, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
getsockopt$bt_sco_SCO_OPTIONS(r7, 0x11, 0x1, &(0x7f0000000340)=""/194, &(0x7f0000000440)=0xc2)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r8)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x280e00, 0x152)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'gre0\x00'})

08:29:46 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x593, &(0x7f0000000240)={0x0, 0x4f0b, 0x1, 0x3, 0x1ec, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140))
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = open(&(0x7f0000000340)='./file0\x00', 0x2, 0xb1)
syz_io_uring_setup(0x4b67, &(0x7f0000000380)={0x0, 0x79c, 0x2, 0x1, 0x28b, 0x0, r10}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000400), &(0x7f0000000440))
syz_io_uring_submit(r5, r8, &(0x7f00000001c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456}, 0x200)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:46 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 58)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:29:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf5ffffff)

08:29:46 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x4}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x5, 0x80, 0x7, 0x9, 0x20, 0x0, 0x0, 0x8, 0x4081, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x3}, 0x19a4, 0x0, 0xffffffff, 0x0, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x80000003, 0x0, 0x1}, 0x0, 0xf, 0xffffffffffffffff, 0xb)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd_index=0xa, 0x1ff, 0x0, 0x2, 0x3, 0x1, {0x0, r9}}, 0x4)

08:29:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000440)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

[ 2334.895966] FAULT_INJECTION: forcing a failure.
[ 2334.895966] name failslab, interval 1, probability 0, space 0, times 0
[ 2334.898602] CPU: 1 PID: 11955 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2334.900085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2334.900092] Call Trace:
[ 2334.900119]  dump_stack+0x107/0x167
[ 2334.900141]  should_fail.cold+0x5/0xa
[ 2334.900163]  ? create_object.isra.0+0x3a/0xa20
[ 2334.900181]  should_failslab+0x5/0x20
[ 2334.900200]  kmem_cache_alloc+0x5b/0x310
[ 2334.900220]  ? mark_held_locks+0x9e/0xe0
[ 2334.900244]  create_object.isra.0+0x3a/0xa20
[ 2334.900260]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2334.900287]  kmem_cache_alloc_bulk+0x168/0x320
[ 2334.900315]  io_submit_sqes+0x6fe6/0x8610
[ 2334.900370]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2334.900398]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2334.914964]  ? io_submit_sqes+0x8610/0x8610
[ 2334.916012]  ? recalibrate_cpu_khz+0x10/0x10
[ 2334.917083]  ? ktime_get+0x158/0x1f0
[ 2334.917996]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 2334.919047]  ? clockevents_program_event+0x131/0x360
[ 2334.920278]  ? tick_program_event+0xa8/0x140
[ 2334.921336]  ? hrtimer_interrupt+0x771/0x9b0
[ 2334.922415]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2334.923672]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2334.924921]  do_syscall_64+0x33/0x40
[ 2334.925815]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2334.927050] RIP: 0033:0x7f9e767a8b19
[ 2334.927940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2334.932333] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2334.934179] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2334.935908] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2334.937637] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2334.939352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2334.941045] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:29:46 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000440))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:29:46 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040))
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r5, 0x8983, &(0x7f0000000140)={0x8, 'ipvlan0\x00', {'virt_wifi0\x00'}, 0x2})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:29:46 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x8000000)

08:29:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xfffffff5)

08:29:46 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0xd, 0x0, 0x0, 0x6, &(0x7f0000000340), 0x1, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
creat(&(0x7f0000000040)='./file0\x00', 0x3a)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000100)={0x1, 0x3, 0xffffffff})
r4 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8000)
sendfile(r4, r3, &(0x7f0000000080)=0x1, 0x2)
r5 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x355200, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001)
fcntl$getownex(r6, 0x10, 0x0)
ioctl$SG_IO(r6, 0x2285, 0x0)
ioctl$SG_SET_RESERVED_SIZE(0xffffffffffffffff, 0x2275, &(0x7f0000000040)=0x5)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)=ANY=[@ANYBLOB="a67220000000000018000003", @ANYRES32=r5, @ANYBLOB="72ab0000000000b35722dc5f57ff682f66696c653000"])
r8 = fcntl$dupfd(r6, 0x0, r7)
writev(r8, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400b300006531c8fc5e562a53dfbdfa43bc6a50ea037b170e10e7742e04210706006dff0043a9d7cceb", 0x2e}, {&(0x7f0000000440)="7f0aa0e5a4df30d41c045503000000000001ed45e92ed2616f72657d044129471d4fd47924fd09e8df9e0068deec125f2400113680b0eb4d4627baf31afc6413da00240bc010a92f59c3f0b30000", 0xffffff58}], 0x2)
perf_event_open$cgroup(&(0x7f0000000240)={0x1, 0x80, 0x84, 0x7f, 0x82, 0x4, 0x0, 0x24, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_config_ext={0xfffffffffffeffff, 0xff}, 0x228, 0x935, 0x1, 0x0, 0x3ff, 0x100, 0x3, 0x0, 0x200, 0x0, 0x81}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa)

08:29:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

[ 2335.206405] sg_write: data in/out 11730944/4 bytes for SCSI command 0x6-- guessing data in;
[ 2335.206405]    program syz-executor.5 not setting count and/or reply_len properly
[ 2335.260214] sg_write: data in/out 11730944/4 bytes for SCSI command 0x6-- guessing data in;
[ 2335.260214]    program syz-executor.5 not setting count and/or reply_len properly
08:29:46 executing program 1:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)

08:29:46 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x20010, r4, 0x0)
syz_io_uring_setup(0x32e2, &(0x7f0000000240)={0x0, 0xc43d, 0x1, 0x0, 0x2af, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000000140), &(0x7f00000001c0)=<r9=>0x0)
r10 = dup(r4)
syz_io_uring_submit(r8, r9, &(0x7f0000000340)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x6000, @fd=r10, 0x8, 0x80, 0x5, 0x12, 0x1, {0x2}}, 0x1)
syz_io_uring_submit(r1, r6, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x4}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:29:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x40000000000000)

08:30:02 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 59)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:30:02 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x24102, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:02 executing program 0:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$BTRFS_IOC_DEFRAG(r5, 0x50009402, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
connect$inet6(r7, &(0x7f0000000140)={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c)
syz_io_uring_submit(r6, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x11}, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:02 executing program 1:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:02 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f0000c00000/0x400000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x30, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:30:02 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)

08:30:02 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

08:30:02 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:02 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

[ 2351.071660] FAULT_INJECTION: forcing a failure.
[ 2351.071660] name failslab, interval 1, probability 0, space 0, times 0
[ 2351.074731] CPU: 0 PID: 12031 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2351.076455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2351.078393] Call Trace:
[ 2351.079030]  dump_stack+0x107/0x167
[ 2351.079889]  should_fail.cold+0x5/0xa
[ 2351.080779]  ? create_object.isra.0+0x3a/0xa20
[ 2351.081848]  should_failslab+0x5/0x20
[ 2351.082738]  kmem_cache_alloc+0x5b/0x310
[ 2351.083705]  ? mark_held_locks+0x9e/0xe0
[ 2351.084661]  create_object.isra.0+0x3a/0xa20
[ 2351.085690]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2351.086883]  kmem_cache_alloc_bulk+0x168/0x320
[ 2351.087973]  io_submit_sqes+0x6fe6/0x8610
[ 2351.088979]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2351.090142]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2351.091277]  ? find_held_lock+0x2c/0x110
[ 2351.092245]  ? io_submit_sqes+0x8610/0x8610
[ 2351.093261]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2351.094394]  ? wait_for_completion_io+0x270/0x270
[ 2351.095534]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2351.096612]  ? vfs_write+0x354/0xb10
[ 2351.097474]  ? fput_many+0x2f/0x1a0
[ 2351.098325]  ? ksys_write+0x1a9/0x260
[ 2351.099222]  ? __ia32_sys_read+0xb0/0xb0
[ 2351.100170]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2351.101383]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2351.102579]  do_syscall_64+0x33/0x40
[ 2351.103455]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2351.104648] RIP: 0033:0x7f9e767a8b19
[ 2351.105507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2351.109773] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2351.111540] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2351.113193] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2351.114842] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2351.116495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2351.118143] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:30:02 executing program 1:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:02 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r5 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x1, 0x6, &(0x7f0000001880)=[{&(0x7f0000000340)="51b14290e3e085cd32d9653bfdc5a6c75a0eb7b671db5517f39ad340030e81539a5278f80622df3400993448ceb677f61e59cff10e403988730497c1998fb87f6f7f6cb34e47ecbfd33db23bdd29309d56498b44c7dd938026639b919c30271d93d95c7ad39dc0d291e098814db55f3356790466c220167df98a653b2fa329ce6864e6e00408efc037bf38f7846f8b611ffa737aa926eb6707c1fe36a4f6dcc42771689275d16cdcc084f83e46e01079848aabeee552c28dbf8f16d34b244a53f399e8538a18de980c092bea7b9a64c95f69e2f8507804e61b65806f50079d17684f031b169cee51e63e08583df8720d83f49dc876e175", 0xf7, 0x6}, {&(0x7f0000000500)="e25160d3505b416618c5f751bcc9921efcd3cdd77dabb4bb04aee826c44c30b200b30f6ebabdf461b158c6e56e2f740281e398fb70e7a16484298297bca9f933b7910ae7de9b70c78fa9819031eb6263c09407ea514de6102c2e23bb6742070e9c1dfb84598b60cdfd5883161cfae005f7bb8d8ff52cd91667055d9551555512b9437b", 0x83, 0x45e}, {&(0x7f00000005c0)="6c6753c1c5f7eb6e316502d78d583d0e025d4c6728eafe0f92a23d8b622636e2c92efef48824f9bfe10420213c0760d88aab0c6e8a56b489a97be04d696dd26e071569bd971ad8c2b359a529e83638ad998a3be6ff57742539b2397f5d325bfe0ec187b751296505d833aba5d79468539d391082475ebbcfa14cd7b833d211f0d45580e275c45e9b51ca6bbf9cb7827f1182d8af15ea8d54c02d8e695ff612058b20b6ae4d12a63bb11945012e90a88e5a5b17c55cf83a6d54eb5316130729f5ab9334d902251ed2c4e1e15ed781744e9b19905b1246497a342e6cdd5f07", 0xde, 0x3f}, {&(0x7f00000006c0)="3acb67b6e4f0f2575620096159920e0587fc4fb94b689e92de1f0bcc08d89d4a904bf25f5a16e598f677fc1fd23145649ebd7951c1abcb0b79eb2b8eeabd717642d66f35beb2c5c2c87efa561b88628173937fc5f2b31da0e126400b3fc5045a1a4bca925e47f3d20d9daa3e3825fb01b9c7bb486661a86f2f3208169d05f9caefce5f9da0861f3092a2059d4cdfc292f77aaa9f88655c8da69a7e4a8907d209aab5f40e6477c2e8e53bf9a0d4d60eacb1256a", 0xb3}, {&(0x7f0000000780)="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", 0xfa, 0x9}, {&(0x7f0000000880)="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", 0x1000, 0x4}], 0x100010, &(0x7f0000000240)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'local', '', @val={0x3a, [0x31]}}}}, {@huge_advise}, {@huge_within_size}], [{@hash}, {@dont_appraise}, {@appraise}, {@dont_hash}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x00'}}]})
fallocate(r5, 0x10, 0x6, 0x5)

08:30:02 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x77e8, &(0x7f0000000240)={0x0, 0xabcb, 0x8, 0x0, 0x199, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8003)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, 0x0, 0x202, &(0x7f0000000400)={&(0x7f0000000500)=""/191, 0xbf})
syz_io_uring_setup(0x3881, &(0x7f0000000340)={0x0, 0x8fb5, 0x4, 0x2, 0x350}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0))
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x20010, r6, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5228, &(0x7f00000005c0)={0x0, 0x9c58, 0x8, 0x3, 0x34b}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000640))

08:30:02 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x100000000000000)

08:30:02 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:02 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)

08:30:02 executing program 1:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2351.349623] loop7: detected capacity change from 0 to 4096
[ 2351.440523] loop7: detected capacity change from 0 to 4096
08:30:15 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 60)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:30:15 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:15 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x3, 0x2, 0x3, 0x3f, 0x0, 0xf9f, 0x10100, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000140), 0x1}, 0x108, 0x7, 0x6, 0x4, 0x4, 0x3ff, 0x170, 0x0, 0x1, 0x0, 0x3}, r8, 0x8, 0xffffffffffffffff, 0x4)

08:30:15 executing program 7:
r0 = syz_io_uring_setup(0x3864, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2007, @fd_index, 0x0, &(0x7f0000000340)=""/231, 0xe7, 0x3, 0x1, {0x0, r4}}, 0x3ff)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x44d3, 0x373e, 0x0, &(0x7f0000000040), 0x8)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:30:15 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:15 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x6, 0x11, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:15 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

08:30:15 executing program 1:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2364.375665] FAULT_INJECTION: forcing a failure.
[ 2364.375665] name failslab, interval 1, probability 0, space 0, times 0
[ 2364.378281] CPU: 0 PID: 12078 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2364.379841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2364.381722] Call Trace:
[ 2364.382324]  dump_stack+0x107/0x167
[ 2364.383156]  should_fail.cold+0x5/0xa
[ 2364.384035]  ? create_object.isra.0+0x3a/0xa20
[ 2364.385084]  should_failslab+0x5/0x20
[ 2364.385951]  kmem_cache_alloc+0x5b/0x310
[ 2364.386884]  ? mark_held_locks+0x9e/0xe0
[ 2364.387834]  create_object.isra.0+0x3a/0xa20
[ 2364.388835]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2364.389994]  kmem_cache_alloc_bulk+0x168/0x320
[ 2364.391044]  io_submit_sqes+0x6fe6/0x8610
[ 2364.392046]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2364.393182]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2364.394294]  ? find_held_lock+0x2c/0x110
[ 2364.395226]  ? io_submit_sqes+0x8610/0x8610
[ 2364.396218]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2364.397315]  ? wait_for_completion_io+0x270/0x270
[ 2364.398401]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2364.399452]  ? vfs_write+0x354/0xb10
[ 2364.400293]  ? fput_many+0x2f/0x1a0
[ 2364.401113]  ? ksys_write+0x1a9/0x260
[ 2364.401965]  ? __ia32_sys_read+0xb0/0xb0
[ 2364.402889]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2364.404075]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2364.405234]  do_syscall_64+0x33/0x40
[ 2364.406067]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2364.407268] RIP: 0033:0x7f9e767a8b19
[ 2364.408113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2364.412253] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2364.413977] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2364.415598] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2364.417211] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2364.418819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2364.420439] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:30:15 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:16 executing program 1:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:16 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x0, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x13}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x14}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x440, &(0x7f0000000340)={0x0, 0xe289, 0x1, 0x3, 0x2f8}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f00000003c0)=<r6=>0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r2, r6, &(0x7f0000000400)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r7, 0x0, 0x0, 0x0, {0x2}}, 0x9)

08:30:16 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:16 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf5ffffff00000000)

08:30:16 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mknodat$loop(r4, &(0x7f0000000040)='./file0\x00', 0x800, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
openat(r6, &(0x7f0000000140)='./file0\x00', 0x0, 0x40)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8, 0x13, r0, 0x8000000)

08:30:16 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:16 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:33 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x3, 0x2, 0x3, 0x3f, 0x0, 0xf9f, 0x10100, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000140), 0x1}, 0x108, 0x7, 0x6, 0x4, 0x4, 0x3ff, 0x170, 0x0, 0x1, 0x0, 0x3}, r8, 0x8, 0xffffffffffffffff, 0x4)

08:30:33 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 61)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:30:33 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:33 executing program 2:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:33 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

08:30:33 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, r3, 0x0, &(0x7f0000000bc0)={&(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000005c0)="f489ec042c8625f148aa260757bdd7c2d27f40c74dbd68cdd73298c4aec82ead6f9642620a66119fcd12be529d05b8af546d3240f272f1ca5cf867eb9055104a8472e8e6880e274213a758d817e8df01349f8ab92e4d50f7feb663fcec1a93446f3df3e232a947fbded40b30080af4e0859c54ac4ae5e1abd63fe081aca9dc3f5204db6e866e80d62789cc6951a1b4bb2a23528d2b37bed6282f804d7be4f4", 0x9f}, {&(0x7f0000000800)="8f9bd6b5214b317e3310bbf06453f57c9fcebb5d52545e2d4f1b79f8475b816a6ea274769b4ca77d706c069440cbdbe82152bf20814480809f4ec753faf6feda1d282841f739d955fa73866ced8c6a88552b2e0f89d7bb677edcc1dd82602909ecab7dbce7eae4f3e5f76bd3a006d6a88c306e29898ec6dac8e0014a8b1b90f57856b4ca4fe5fc367d1de43075aeae22fba32c6300bd00d025228d73766b0fd4b9d109f63323ddae", 0xa8}, {&(0x7f0000001600)="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", 0x1000}], 0x3, &(0x7f00000008c0)=[{0x90, 0x111, 0x4, "dd97656066d6f6b07888abc41273320832f3f9928b8b5dd7d12ee3eaf1dbe5f3ddeecfa279ecf7bc6e897eb52bc9ffc8a8f8113b60c4f8e422054b8dc92fac1ef95b17e6bb597bb619205c94a96d5ec589dd0f6890165c36b4132b7847e4f81c9393829fe598afcd18bdb55e74a7c016b23509495d64033c5b37c5a21b16e278"}, {0xe0, 0x3a, 0xffffffe1, "4750b55793bfc0f296d8b7e9016c49b3e18565ab5bf70904f581ca4d60ce2125adc26bb850e436bd318f3a2a78049fbaf08d0d581cdc8c9444c59e6723bbb124dcebbf8690e641ddba187ad560f093fca72e86110b2535b9d0e3df92b2d5502e40539c05cff66c59e4fab17d4598e490cec971a6863d67ef9b4c896683aca1cc434bc681c0de8982d7e08fae22ca526afd28345013714c42d4db24a534a3d7773108a7607d7da900b3ea6de63ff547c10b30219274d6ba87662b33e09564db961b87c75fc0012b83ef7a334be98e97d4"}, {0xf8, 0x103, 0x8, "31a2110d6ce21a648eb2c33b1d852c14ac0414113d01eaf96cf773b6e5a9272d2f2cd4cd355a3fc043d0c18036bde96cd7aa8370d3d779ee3c1155a1e7aa2c0a59241cdc0383b36ba75e356967db244ffe4e336bb2799b3b13abf6b5abedfa8e49e7fc231075afa2b1aa9c5f1fc9a7f002fe7ccf96fa936605905932731017234b30ba52f6413e201f5711722ee2455b689e7122272569eda686ea66297569bc173ed4333f83fd7cd0063e044a97007194881f243560b37c69a49bf5f33c89bcca0dcec903063c5cdc4b7d501df18c3cab0ebc32b12d45065200"/231}, {0x48, 0x1e4, 0x5, "42bad85e3c14c25f86fcfe47c80d417c8265b4097de9833583c93d0600b3a16409ae16a9a20b503478619764065dba9ee7a83b8f39a085"}, {0x38, 0x119, 0x5, "be32fe0763bf0c58da282eaf63419af27d29d404263dda9161f85a2bbe116b73b1"}], 0x2e8}, 0x0, 0x10, 0x1}, 0x0)
syz_io_uring_setup(0x44b8, &(0x7f0000000240)={0x0, 0xcb5e, 0x0, 0x2, 0x250}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140))
syz_io_uring_setup(0xc22, &(0x7f0000000340)={0x0, 0xe935, 0x10, 0x1, 0x35d}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000680)=<r5=>0x0)
r6 = syz_open_dev$loop(&(0x7f0000000400), 0x15, 0x22800)
r7 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = syz_io_uring_setup(0x6f49, &(0x7f00000002c0)={0x0, 0x577e, 0x1, 0xfffffffc, 0x388}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000000)=<r11=>0x0, &(0x7f0000000700))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r9, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r11], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r8, 0xc0189373, &(0x7f0000000540)={{0x1, 0x1, 0x18, <r13=>r9, {0x10000}}, './file0\x00'})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r13, 0x8983, &(0x7f0000000580)={0x0, 'dummy0\x00', {0x3}, 0x141})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0xa, 0x0, r12)
r14 = syz_open_dev$loop(&(0x7f0000000440), 0x3, 0x90200)
syz_io_uring_submit(r4, r5, &(0x7f0000000500)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r6, 0x0, 0x0, 0x5, 0x0, 0x1, {0x0, r12, r14}}, 0x4)
r15 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r15, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:33 executing program 5:
r0 = syz_io_uring_setup(0x23b9, &(0x7f00000002c0)={0x0, 0x1, 0x1, 0xfffffffd, 0x100}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x5, 0x4000, @fd_index=0x5, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r6, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x23456}, 0xe8)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ad0000/0x3000)=nil, 0x3000, 0x1000000, 0x4010, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r9, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index=0x8, 0x5, 0x0, 0x81, 0x5, 0x1}, 0x588)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x32f2, &(0x7f0000000340)={0x0, 0x375c, 0x8, 0x0, 0x39}, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000f07000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000280)=<r11=>0x0)
r12 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r12, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r13 = dup(r0)
syz_io_uring_submit(r10, r11, &(0x7f0000000400)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x2, &(0x7f00000003c0)=[r12, r13, r7], 0x3, 0x0, 0x1}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:33 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x5570, &(0x7f0000000240)={0x0, 0xad35, 0x20, 0x3, 0xde}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000140)=<r3=>0x0, &(0x7f00000001c0))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x5, 0x6000, @fd=r0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000340)="0365aaebfbfe92c077aecafca4247dc9bd85aee0c00ecee22ea74dd5a3108ae2bf0fceb75792234407d0997f7c6f9985423f44a1e5a7a8183c39a23dc68523527d", 0x41}], 0x1, 0x0, 0x1, {0x1, r4}}, 0x767)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x3}}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x7]}, 0x8, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r7, 0x82307202, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@local}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32, @ANYBLOB="00010700000001000000056b482000670000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f0000010a01010264010100e00000027f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00000000"]})
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'lo\x00', <r9=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@local, r9}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32=r9, @ANYBLOB="00010700000001000000056b482000670000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f0000010a01010264010100e00000027f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00000000"]})
sendmsg$TEAM_CMD_NOOP(r7, &(0x7f00000012c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001280)={&(0x7f0000000c80)={0x5c8, 0x0, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x401}}}]}}, {{0x8}, {0x16c, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x800}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x80, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xc60f4c6}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x9, 0x2, 0x7, 0x6}, {0x2, 0x41, 0x3f, 0x5}]}}}]}}, {{0x8}, {0xa8, 0x2, 0x0, 0x1, [{0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x200, 0x41, 0x1f, 0xffffffff}, {0x6, 0x7, 0x0, 0x10001}, {0xff, 0x8, 0x0, 0x1}, {0x8, 0x5, 0x8, 0x9}, {0x2, 0x40, 0x80, 0x3}, {0x6, 0x3f, 0x6, 0x3ff}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xb6}}, {0x8}}}]}}, {{0x8}, {0x1a8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x96}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x40}}}]}}, {{0x8}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}]}}]}, 0x5c8}, 0x1, 0x0, 0x0, 0x1}, 0x404c010)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2382.154734] FAULT_INJECTION: forcing a failure.
[ 2382.154734] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2382.157600] CPU: 1 PID: 12132 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2382.159172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2382.161067] Call Trace:
[ 2382.161672]  dump_stack+0x107/0x167
[ 2382.162495]  should_fail.cold+0x5/0xa
[ 2382.163371]  _copy_from_user+0x2e/0x1b0
[ 2382.164289]  move_addr_to_kernel.part.0+0x31/0x110
[ 2382.165409]  move_addr_to_kernel+0x4f/0x70
[ 2382.166407]  io_connect+0x47a/0x610
[ 2382.167249]  ? io_prep_rw+0x1050/0x1050
[ 2382.168165]  ? __lockdep_reset_lock+0x180/0x180
[ 2382.169225]  ? lock_acquire+0x197/0x470
[ 2382.170132]  ? __lock_acquire+0xbb1/0x5b00
[ 2382.171104]  io_issue_sqe+0x1611/0x77b0
[ 2382.172035]  ? perf_trace_lock+0xac/0x490
[ 2382.172988]  ? SOFTIRQ_verbose+0x10/0x10
[ 2382.173967]  ? lock_chain_count+0x20/0x20
[ 2382.174928]  ? io_connect+0x610/0x610
[ 2382.175829]  ? lock_acquire+0x197/0x470
[ 2382.176757]  ? find_held_lock+0x2c/0x110
[ 2382.177700]  ? __fget_files+0x2cf/0x520
[ 2382.178608]  ? lock_downgrade+0x6d0/0x6d0
[ 2382.179571]  __io_queue_sqe+0x90/0x9d0
[ 2382.180469]  ? io_issue_sqe+0x77b0/0x77b0
[ 2382.181409]  ? __fget_files+0x2f8/0x520
[ 2382.182339]  io_submit_sqes+0x44aa/0x8610
[ 2382.183329]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2382.184470]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2382.185579]  ? find_held_lock+0x2c/0x110
[ 2382.186517]  ? io_submit_sqes+0x8610/0x8610
[ 2382.187519]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2382.188623]  ? wait_for_completion_io+0x270/0x270
[ 2382.189732]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2382.190797]  ? vfs_write+0x354/0xb10
[ 2382.191700]  ? fput_many+0x2f/0x1a0
[ 2382.192537]  ? ksys_write+0x1a9/0x260
[ 2382.193410]  ? __ia32_sys_read+0xb0/0xb0
[ 2382.194358]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2382.195565]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2382.196752]  do_syscall_64+0x33/0x40
[ 2382.197603]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2382.198777] RIP: 0033:0x7f9e767a8b19
[ 2382.199647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2382.203874] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2382.205617] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2382.207279] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2382.208913] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2382.210536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2382.212176] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:30:33 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:33 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000040))

08:30:33 executing program 2:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:33 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2384.166226] Bluetooth: hci7: command 0x0405 tx timeout
08:30:49 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x3, 0x2, 0x3, 0x3f, 0x0, 0xf9f, 0x10100, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000140), 0x1}, 0x108, 0x7, 0x6, 0x4, 0x4, 0x3ff, 0x170, 0x0, 0x1, 0x0, 0x3}, r8, 0x8, 0xffffffffffffffff, 0x4)

08:30:49 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r2 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r6, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:49 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xfffffffe}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r8 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000380), 0x101000, 0x0)
r9 = fcntl$dupfd(r8, 0x406, 0xffffffffffffffff)
syz_io_uring_setup(0x6d3a, &(0x7f00000003c0)={0x0, 0xed4e, 0x4, 0x2, 0x2e4, 0x0, r9}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000140)=<r10=>0x0)
r11 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r11, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r12 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r12, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r7, r10, &(0x7f0000000340)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x8, &(0x7f00000001c0)=[r11, r12], 0x2}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r13, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:49 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:49 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x4d6c, &(0x7f0000000240)={0x0, 0x71d4, 0x1, 0x1, 0x347, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140)=<r3=>0x0, &(0x7f00000001c0))
syz_io_uring_submit(r3, r2, &(0x7f0000000800)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@xdp, 0x80, &(0x7f0000000400)=[{&(0x7f0000000500)=""/213, 0xd5}, {&(0x7f0000000600)=""/236, 0xec}, {&(0x7f00000003c0)=""/15, 0xf}], 0x3, &(0x7f0000000700)=""/198, 0xc6}, 0x0, 0x100, 0x0, {0x1}}, 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x51014}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x107b03, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9, 0x22110, r6, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:30:49 executing program 2:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:49 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r6, 0x0, 0x481, &(0x7f0000000040), &(0x7f0000000140)=0xc)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
fcntl$setflags(r7, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x9, 0x30, r5, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:49 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 62)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2398.078835] FAULT_INJECTION: forcing a failure.
[ 2398.078835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2398.081440] CPU: 1 PID: 12189 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2398.082883] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2398.084648] Call Trace:
[ 2398.085211]  dump_stack+0x107/0x167
[ 2398.085974]  should_fail.cold+0x5/0xa
[ 2398.086790]  _copy_from_user+0x2e/0x1b0
[ 2398.087666]  move_addr_to_kernel.part.0+0x31/0x110
[ 2398.088712]  move_addr_to_kernel+0x4f/0x70
[ 2398.089604]  io_connect+0x47a/0x610
[ 2398.090374]  ? io_prep_rw+0x1050/0x1050
[ 2398.091230]  ? __lock_acquire+0xbb1/0x5b00
[ 2398.092158]  io_issue_sqe+0x1611/0x77b0
[ 2398.093003]  ? perf_trace_lock+0xac/0x490
[ 2398.093869]  ? SOFTIRQ_verbose+0x10/0x10
[ 2398.094723]  ? lock_chain_count+0x20/0x20
[ 2398.095617]  ? io_connect+0x610/0x610
[ 2398.096433]  ? lock_acquire+0x197/0x470
[ 2398.097267]  ? find_held_lock+0x2c/0x110
[ 2398.098127]  ? __fget_files+0x2cf/0x520
[ 2398.098972]  ? lock_downgrade+0x6d0/0x6d0
[ 2398.099880]  __io_queue_sqe+0x90/0x9d0
[ 2398.100715]  ? io_issue_sqe+0x77b0/0x77b0
[ 2398.101589]  ? __fget_files+0x2f8/0x520
[ 2398.102448]  io_submit_sqes+0x44aa/0x8610
[ 2398.103363]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2398.104444]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2398.105456]  ? find_held_lock+0x2c/0x110
[ 2398.106325]  ? io_submit_sqes+0x8610/0x8610
[ 2398.107232]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2398.108279]  ? wait_for_completion_io+0x270/0x270
[ 2398.109305]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2398.110285]  ? vfs_write+0x354/0xb10
[ 2398.111057]  ? fput_many+0x2f/0x1a0
[ 2398.111842]  ? ksys_write+0x1a9/0x260
[ 2398.112628]  ? __ia32_sys_read+0xb0/0xb0
[ 2398.113473]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2398.114556]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2398.115653]  do_syscall_64+0x33/0x40
[ 2398.116436]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2398.117496] RIP: 0033:0x7f9e767a8b19
[ 2398.118271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2398.122101] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2398.123702] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2398.125175] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2398.126645] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2398.128144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2398.129616] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:30:49 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:30:49 executing program 2:
r0 = syz_io_uring_setup(0x3862, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:30:49 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')

08:31:06 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, {0x5100}, 0x1, {0x0, r4}}, 0x627d622b)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x68ff, 0x0, 0x1, &(0x7f0000000140)={[0x8d]}, 0x8)

08:31:06 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r10, 0x0, 0x0}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r11, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r12 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/custom0\x00', 0x800, 0x0)
syz_io_uring_submit(r4, r9, &(0x7f0000000140)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x4007, @fd=r12, 0x80000000, 0x0, 0x6, 0x9}, 0x92b)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r13, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:06 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
r8 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r8, &(0x7f0000000100)='net/nfsfs\x00')

08:31:06 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:06 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:31:06 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 63)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:06 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x4, 0x2}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000001, 0x810, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:06 executing program 7:
r0 = syz_io_uring_setup(0x18a, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x8}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000500)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r5 = syz_open_procfs$userns(0x0, &(0x7f0000000140))
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x612041, 0x0)
r7 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r8 = syz_io_uring_setup(0x2203, &(0x7f0000000340)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x358}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000ffff00000000000000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000240)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r5, 0x7, {0x0, r6}, 0x2, 0x0, 0x0, {0x0, r10, r0}}, 0x8)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x20010, 0xffffffffffffffff, 0x9712d000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5c5d, &(0x7f00000003c0)={0x0, 0xdd0e, 0x8, 0x1, 0x1ec}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000440))
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2414.609432] FAULT_INJECTION: forcing a failure.
[ 2414.609432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2414.612086] CPU: 1 PID: 12237 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2414.613613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2414.615420] Call Trace:
[ 2414.616048]  dump_stack+0x107/0x167
[ 2414.616877]  should_fail.cold+0x5/0xa
[ 2414.617726]  _copy_from_user+0x2e/0x1b0
[ 2414.618616]  move_addr_to_kernel.part.0+0x31/0x110
[ 2414.619719]  move_addr_to_kernel+0x4f/0x70
[ 2414.620671]  io_connect+0x47a/0x610
[ 2414.621492]  ? io_prep_rw+0x1050/0x1050
[ 2414.622387]  ? __lock_acquire+0xbb1/0x5b00
[ 2414.623334]  io_issue_sqe+0x1611/0x77b0
[ 2414.624242]  ? perf_trace_lock+0xac/0x490
[ 2414.625155]  ? SOFTIRQ_verbose+0x10/0x10
[ 2414.626092]  ? lock_chain_count+0x20/0x20
[ 2414.627003]  ? io_connect+0x610/0x610
[ 2414.627865]  ? lock_acquire+0x197/0x470
[ 2414.628729]  ? find_held_lock+0x2c/0x110
[ 2414.629621]  ? __fget_files+0x2cf/0x520
[ 2414.630503]  ? lock_downgrade+0x6d0/0x6d0
[ 2414.631458]  __io_queue_sqe+0x90/0x9d0
[ 2414.632363]  ? io_issue_sqe+0x77b0/0x77b0
[ 2414.633262]  ? __fget_files+0x2f8/0x520
[ 2414.634158]  io_submit_sqes+0x44aa/0x8610
[ 2414.635117]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2414.636225]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2414.637320]  ? find_held_lock+0x2c/0x110
[ 2414.638246]  ? io_submit_sqes+0x8610/0x8610
[ 2414.639187]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2414.640295]  ? wait_for_completion_io+0x270/0x270
[ 2414.641360]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2414.642365]  ? vfs_write+0x354/0xb10
[ 2414.643175]  ? fput_many+0x2f/0x1a0
[ 2414.644008]  ? ksys_write+0x1a9/0x260
08:31:06 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2414.644856]  ? __ia32_sys_read+0xb0/0xb0
[ 2414.646040]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2414.647222]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2414.648388]  do_syscall_64+0x33/0x40
[ 2414.649212]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2414.650374] RIP: 0033:0x7f9e767a8b19
[ 2414.651206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2414.655304] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2414.657017] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2414.658633] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2414.660220] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2414.661800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2414.663412] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:31:06 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:06 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:31:06 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x810, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2416.678237] Bluetooth: hci7: command 0x0405 tx timeout
08:31:22 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:31:22 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:22 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x48fa, &(0x7f0000000240)={0x0, 0x37f7, 0x8, 0x3, 0x3d9, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fee000/0x12000)=nil, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140))
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000440)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000)
syz_io_uring_submit(r9, r8, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r5, r8, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000000, 0x1010, r0, 0x8000000)

08:31:22 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = perf_event_open$cgroup(&(0x7f0000000240)={0x1, 0x80, 0x6, 0x3f, 0x3, 0xda, 0x0, 0xfc, 0x1, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x14101, 0x8, 0xffffffff, 0x7, 0x0, 0xabee, 0x100, 0x0, 0xdfc0, 0x0, 0x5}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x1)
pread64(r4, &(0x7f0000000340)=""/251, 0xfb, 0x2)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:22 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:31:22 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 64)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:22 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB="41b56af9", @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r10 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9, 0x10, r0, 0x10000000)
r11 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/block/sr0', 0x20000, 0x111)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r10, &(0x7f0000000280)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r11, &(0x7f0000000240)=0x80, &(0x7f0000000340)=@caif=@rfm, 0x0, 0x80000, 0x1, {0x0, r12}}, 0x0)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r13, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:22 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getresgid(&(0x7f0000000140), &(0x7f0000000600), &(0x7f00000005c0)=<r5=>0x0)
r6 = semget(0x2, 0x0, 0x20b)
r7 = getuid()
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
semctl$IPC_SET(r6, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r7, r5, r8, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)=[{{&(0x7f0000000240)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000340)=""/144, 0x90}, {&(0x7f0000000500)=""/141, 0x8d}, {&(0x7f0000000400)=""/13, 0xd}], 0x3, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c007f00000000000000877459070c4aea276390dbe2d00bb5fa186abef2e50a3c7c3a40b4275d02d67c1c42e560ed3f3667237a9b863357f1118c4114c687b156390b8b6fcd780fb56ea2c45498bff4ebd10fddbcb490afb486f054a48ec02a38159b4a650f1206c3ace2ea4122df5a904df85c59d9db9da5232e6f0335e1730d125d8d15e5efdee9b9bcea8012d59f6da0d6fd1c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=<r9=>0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50}}, {{&(0x7f0000000640)=@abs, 0x6e, &(0x7f0000000780)=[{&(0x7f00000006c0)=""/189, 0xbd}], 0x1}}], 0x2, 0x42, 0x0)
getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=<r10=>0x0)
r11 = semget(0x2, 0x0, 0x20b)
r12 = getuid()
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r13=>0x0})
semctl$IPC_SET(r11, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r12, r10, r13, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000840)={{}, {0x1, 0x4}, [], {0x4, 0x4}, [{0x8, 0x6}, {0x8, 0x7, 0xffffffffffffffff}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x7}, {0x8, 0x1, 0xee00}, {0x8, 0x1, 0xee01}, {0x8, 0x4, r5}, {0x8, 0x3, r9}, {0x8, 0x6, r10}], {0x10, 0x1}, {0x20, 0x6}}, 0x6c, 0x2)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2431.196005] FAULT_INJECTION: forcing a failure.
[ 2431.196005] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2431.198820] CPU: 0 PID: 12287 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2431.200298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2431.202042] Call Trace:
[ 2431.202606]  dump_stack+0x107/0x167
[ 2431.203373]  should_fail.cold+0x5/0xa
[ 2431.204195]  _copy_from_user+0x2e/0x1b0
[ 2431.205036]  move_addr_to_kernel.part.0+0x31/0x110
[ 2431.206076]  move_addr_to_kernel+0x4f/0x70
[ 2431.206968]  io_connect+0x47a/0x610
[ 2431.207735]  ? io_prep_rw+0x1050/0x1050
[ 2431.208601]  ? __lock_acquire+0xbb1/0x5b00
[ 2431.209495]  io_issue_sqe+0x1611/0x77b0
[ 2431.210349]  ? perf_trace_lock+0xac/0x490
[ 2431.211223]  ? SOFTIRQ_verbose+0x10/0x10
[ 2431.212101]  ? lock_chain_count+0x20/0x20
[ 2431.212989]  ? io_connect+0x610/0x610
[ 2431.213811]  ? lock_acquire+0x197/0x470
[ 2431.214670]  ? find_held_lock+0x2c/0x110
[ 2431.215551]  ? __fget_files+0x2cf/0x520
[ 2431.216414]  ? lock_downgrade+0x6d0/0x6d0
[ 2431.217310]  __io_queue_sqe+0x90/0x9d0
[ 2431.218163]  ? io_issue_sqe+0x77b0/0x77b0
[ 2431.219058]  ? __fget_files+0x2f8/0x520
[ 2431.219944]  io_submit_sqes+0x44aa/0x8610
[ 2431.220877]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2431.221948]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2431.222994]  ? find_held_lock+0x2c/0x110
[ 2431.223911]  ? io_submit_sqes+0x8610/0x8610
[ 2431.224855]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2431.225892]  ? wait_for_completion_io+0x270/0x270
[ 2431.226938]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2431.227948]  ? vfs_write+0x354/0xb10
[ 2431.228751]  ? fput_many+0x2f/0x1a0
[ 2431.229536]  ? ksys_write+0x1a9/0x260
[ 2431.230354]  ? __ia32_sys_read+0xb0/0xb0
[ 2431.231240]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2431.232391]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2431.233504]  do_syscall_64+0x33/0x40
[ 2431.234305]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2431.235410] RIP: 0033:0x7f9e767a8b19
[ 2431.236215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2431.240190] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2431.241827] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2431.243358] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2431.244905] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2431.246444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2431.247981] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:31:22 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:22 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:22 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r6=>r5, {0x1}}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r5, 0x40042409, 0x0)

08:31:22 executing program 7:
r0 = add_key$fscrypt_provisioning(&(0x7f0000000140), &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)={0x2, 0x0, @a}, 0x48, 0xfffffffffffffffb)
keyctl$setperm(0x5, r0, 0x70c1112)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000002, 0x1010, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pwritev2(r6, &(0x7f00000001c0)=[{&(0x7f0000000240)="eb654d678eac4fb46f550e8b175512b0eed24e8b92771addb62c4d776f7ba38467d2a3c43199005d1e63bcb5dbb6c2d776c47c21a8f438fc50a6c0b476d80857e5f87aaaf8dd42d36dd4fee22ed88761cb3c36b7cb1310c102988daa3ee4c32b38306337348836fdd90add962fb183", 0x6f}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000040)="54058a4fcf0d5d7c3496474eb8781cc5eb1e398237504dac854ce247a5176858bac28a075f98fd8285c826b75f57bae9bc9bfbd30d49df", 0x37}, {&(0x7f0000000140)}], 0x4, 0x1, 0x1000, 0x11)
io_uring_enter(r1, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:31:22 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

08:31:23 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:23 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x291e, 0xc397, 0x0, &(0x7f0000000040)={[0xffffffffffffff80]}, 0x8)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1024, &(0x7f0000000240)={0x0, 0x7717, 0x4, 0x3, 0x243, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000140)=<r5=>0x0, &(0x7f00000001c0))
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r9, 0x0, 0x0}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r10, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r5, r8, &(0x7f0000000380)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000340)={0x7}}, 0x1)
r11 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r12=>0x0, &(0x7f0000000440)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0)
r14 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r11, 0x8000000)
syz_io_uring_submit(r14, r13, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r4, r13, &(0x7f00000003c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x9)

08:31:23 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 65)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2431.644570] FAULT_INJECTION: forcing a failure.
[ 2431.644570] name failslab, interval 1, probability 0, space 0, times 0
[ 2431.647047] CPU: 1 PID: 12322 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2431.648469] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2431.650175] Call Trace:
[ 2431.650730]  dump_stack+0x107/0x167
[ 2431.651494]  should_fail.cold+0x5/0xa
[ 2431.652295]  ? create_object.isra.0+0x3a/0xa20
[ 2431.653228]  should_failslab+0x5/0x20
[ 2431.654012]  kmem_cache_alloc+0x5b/0x310
[ 2431.654857]  ? mark_held_locks+0x9e/0xe0
[ 2431.655702]  create_object.isra.0+0x3a/0xa20
[ 2431.656617]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2431.657668]  kmem_cache_alloc_bulk+0x168/0x320
[ 2431.658847]  io_submit_sqes+0x6fe6/0x8610
[ 2431.659750]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2431.661044]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2431.662119]  ? find_held_lock+0x2c/0x110
[ 2431.663157]  ? io_submit_sqes+0x8610/0x8610
[ 2431.664080]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2431.665318]  ? wait_for_completion_io+0x270/0x270
[ 2431.666311]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2431.667272]  ? vfs_write+0x354/0xb10
[ 2431.668250]  ? fput_many+0x2f/0x1a0
[ 2431.669013]  ? ksys_write+0x1a9/0x260
[ 2431.669988]  ? __ia32_sys_read+0xb0/0xb0
[ 2431.670885]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2431.671972]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2431.673280]  do_syscall_64+0x33/0x40
[ 2431.674117]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2431.675435] RIP: 0033:0x7f9e767a8b19
[ 2431.676235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2431.680037] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2431.682005] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2431.683835] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2431.685665] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2431.687490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2431.689327] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:31:37 executing program 7:
r0 = syz_io_uring_setup(0x3865, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r12, 0x0, 0x0}, 0x0)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r13, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r8, r11, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x5, 0x4000, @fd=r0, 0x1ff, &(0x7f0000000140)="a75202754516ec50a32f723ef04b21f3de169819538c25fc47f5c6c10c8e39a914e59d59018247568ea3db06aa386bdfb08ce65e3d43e3", 0x37, 0x1d}, 0x7)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x1010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa2c4}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x21fd, 0xe5ff, 0x2, &(0x7f0000000040)={[0x7fffffff]}, 0x8)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:31:37 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:37 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r8, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r9, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r9, 0xffffffffc0691843, 0x0, 0x0, 0x5, 0x0, {0x0, r10}}, 0x1)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000380)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x12, 0x1}, 0x0)
syz_io_uring_setup(0x7135, &(0x7f0000000240)={0x0, 0x60d8, 0x8, 0x1, 0xb7}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040)=<r11=>0x0, &(0x7f0000000140))
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000340)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0)={0x77359400}, 0x1, 0x1, 0x1, {0x0, r12}}, 0x20)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:37 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:31:37 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 66)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:37 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

08:31:37 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000240)={0x0, 0x3, 0x8, 0x8000001}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r6=>r3, {0x2, 0x7f}}, './file0\x00'})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x110, r6, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x100000e, 0x50, r7, 0x0)
syz_io_uring_submit(r8, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000340)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x3, 0x1, 0x3, 0x0, {0xa, 0x4e22, 0xfffffff9, @empty, 0x4}}}}, 0x4)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x3ca3, &(0x7f00000002c0)={0x0, 0x875, 0x4, 0x2, 0xc3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:37 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

[ 2446.481187] FAULT_INJECTION: forcing a failure.
[ 2446.481187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2446.483807] CPU: 1 PID: 12347 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2446.485285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2446.487044] Call Trace:
[ 2446.487606]  dump_stack+0x107/0x167
[ 2446.488388]  should_fail.cold+0x5/0xa
[ 2446.489207]  _copy_from_user+0x2e/0x1b0
[ 2446.490053]  move_addr_to_kernel.part.0+0x31/0x110
[ 2446.491089]  move_addr_to_kernel+0x4f/0x70
[ 2446.491986]  io_connect+0x47a/0x610
[ 2446.492774]  ? io_prep_rw+0x1050/0x1050
[ 2446.493614]  ? lock_chain_count+0x20/0x20
[ 2446.494516]  ? __lock_acquire+0xbb1/0x5b00
[ 2446.495423]  io_issue_sqe+0x1611/0x77b0
[ 2446.496279]  ? perf_trace_lock+0xac/0x490
[ 2446.497152]  ? SOFTIRQ_verbose+0x10/0x10
[ 2446.498012]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2446.499152]  ? trace_hardirqs_on+0x5b/0x180
[ 2446.500067]  ? io_connect+0x610/0x610
[ 2446.500891]  ? lock_acquire+0x197/0x470
[ 2446.501727]  ? find_held_lock+0x2c/0x110
[ 2446.502594]  ? __fget_files+0x2cf/0x520
[ 2446.503437]  ? lock_downgrade+0x6d0/0x6d0
[ 2446.504329]  __io_queue_sqe+0x90/0x9d0
[ 2446.505164]  ? io_issue_sqe+0x77b0/0x77b0
[ 2446.506045]  ? __fget_files+0x2f8/0x520
[ 2446.506902]  io_submit_sqes+0x44aa/0x8610
[ 2446.507812]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2446.508873]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2446.509892]  ? find_held_lock+0x2c/0x110
[ 2446.510756]  ? io_submit_sqes+0x8610/0x8610
[ 2446.511673]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2446.512712]  ? wait_for_completion_io+0x270/0x270
[ 2446.513737]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2446.514716]  ? vfs_write+0x354/0xb10
[ 2446.515502]  ? fput_many+0x2f/0x1a0
[ 2446.516284]  ? ksys_write+0x1a9/0x260
[ 2446.517094]  ? __ia32_sys_read+0xb0/0xb0
[ 2446.517957]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2446.519063]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2446.520159]  do_syscall_64+0x33/0x40
[ 2446.520950]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2446.522035] RIP: 0033:0x7f9e767a8b19
[ 2446.522817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2446.526703] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2446.528322] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2446.529822] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2446.531328] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2446.532831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2446.534341] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:31:38 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000240)={0x0, 0x0, 0x8, 0x0, 0xde}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40286608, &(0x7f0000000040)={0x8001, 0xffffffff, 0x100, 0x74e, 0x6, 0x8})
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ftruncate(r5, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:31:38 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
accept$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000240)={'ip6_vti0\x00', r5, 0x2f, 0x7e, 0x80, 0x2, 0x5, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000, 0x40, 0x0, 0x73d}})
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'ip_vti0\x00'})
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'virt_wifi0\x00'})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:31:38 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x8, 0x800004, 0x95}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x9)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000540)=ANY=[@ANYBLOB="096b02000100000018000000aa7e2da8717c4f7cf8db74c44d52d28f51e5d9092ff5cc0a02607ecbb7943e22ba132b57a582ed1c409b2b3c5b6397c2305d0c24970ad329e4cf", @ANYRES32=<r5=>r4, @ANYBLOB="04000000000000002e2f66696c653000"])
syz_io_uring_setup(0x4903, &(0x7f0000000180)={0x0, 0x8000203d, 0x1, 0x1, 0x13e, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000500)=<r6=>0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
sendmsg$unix(r5, &(0x7f0000000780)={&(0x7f00000007c0)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000640)="fb7815434335474d9f3697226c63359e8f81c8328bb5d3f002b4077a24418d7a2bceecf87678523590fd9b5ea134b7ae09cbad1b40ce5d9c59ac3f960728e6691923b05dfc6dc3c62bc69c3b1602440a99ba5f619afd9e62e837f158a51e20303a16e0163bf26e45063d1b0126450b646a2acf85dbbf7cd5a90810d99b99bec24e392e4f6ed0c6ea25e6f0d0640a9f6bcb964c696668a0bc312c00a7e98796f9dda89a79d11438a04e618c14d733da3432ce122674717184734c8b376823e718ae89ecc33a1e57f36764f0c02ce8cd55a745816dbd418bbec6ff4e37ec48bef4b4ad5d51b3cef596d5f1162023acaa148099c5", 0xf3}], 0x1, &(0x7f0000000880)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0x40, 0x11}, 0x24000001)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_enter(r7, 0x3d5e, 0x84e2, 0x3, &(0x7f00000004c0)={[0x2]}, 0x8)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0x80010, r0, 0x10000000)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r8, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0xc99fe01e)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = accept$inet6(0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0)=0x1c)
syz_io_uring_submit(r9, r6, &(0x7f0000000480)=@IORING_OP_CONNECT={0x10, 0x6, 0x0, r10, 0x80, &(0x7f0000000400)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e24, @multicast2}, 0x1, 0x4}}, 0x0, 0x0, 0x1}, 0xfff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:38 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
r7 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r7, &(0x7f0000000100)='net/nfsfs\x00')

08:31:38 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 67)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:38 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_setup(0x7351, &(0x7f0000000240)={0x0, 0x9454, 0x2, 0x1, 0x29d, 0x0, r5}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140))

[ 2446.909544] FAULT_INJECTION: forcing a failure.
[ 2446.909544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2446.910996] CPU: 0 PID: 12398 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2446.911796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2446.912783] Call Trace:
[ 2446.913095]  dump_stack+0x107/0x167
[ 2446.913520]  should_fail.cold+0x5/0xa
[ 2446.913966]  _copy_from_user+0x2e/0x1b0
[ 2446.914435]  move_addr_to_kernel.part.0+0x31/0x110
[ 2446.915005]  move_addr_to_kernel+0x4f/0x70
[ 2446.915498]  io_connect+0x47a/0x610
[ 2446.915921]  ? io_prep_rw+0x1050/0x1050
[ 2446.916416]  ? __lock_acquire+0xbb1/0x5b00
[ 2446.916913]  io_issue_sqe+0x1611/0x77b0
[ 2446.917379]  ? perf_trace_lock+0xac/0x490
[ 2446.917856]  ? SOFTIRQ_verbose+0x10/0x10
[ 2446.918327]  ? lock_chain_count+0x20/0x20
[ 2446.918815]  ? io_connect+0x610/0x610
[ 2446.919259]  ? lock_acquire+0x197/0x470
[ 2446.919715]  ? find_held_lock+0x2c/0x110
[ 2446.920208]  ? __fget_files+0x2cf/0x520
[ 2446.920668]  ? lock_downgrade+0x6d0/0x6d0
[ 2446.921154]  __io_queue_sqe+0x90/0x9d0
[ 2446.921607]  ? io_issue_sqe+0x77b0/0x77b0
[ 2446.922082]  ? __fget_files+0x2f8/0x520
[ 2446.922553]  io_submit_sqes+0x44aa/0x8610
[ 2446.923051]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2446.923624]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2446.924201]  ? find_held_lock+0x2c/0x110
[ 2446.924672]  ? io_submit_sqes+0x8610/0x8610
[ 2446.925183]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2446.925739]  ? wait_for_completion_io+0x270/0x270
[ 2446.926305]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2446.926842]  ? vfs_write+0x354/0xb10
[ 2446.927273]  ? fput_many+0x2f/0x1a0
[ 2446.927704]  ? ksys_write+0x1a9/0x260
[ 2446.928150]  ? __ia32_sys_read+0xb0/0xb0
[ 2446.928630]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2446.929243]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2446.929839]  do_syscall_64+0x33/0x40
[ 2446.930277]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2446.930875] RIP: 0033:0x7f9e767a8b19
[ 2446.931308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2446.933462] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2446.934333] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2446.935168] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2446.935994] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2446.936836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2446.937661] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:31:53 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:31:53 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x4611ac010b001bb8, 0x0, r3, 0x0, &(0x7f0000000500)="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", 0x1000, 0x4000000, 0x1}, 0x101)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:31:53 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10010, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:53 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:53 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r7, &(0x7f0000000100)='net/nfsfs\x00')

08:31:53 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$inet6(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0xa, 0x4e24, 0x36e, @private1, 0x1000}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000340)="31021c559c2aeea25faa47a901de90dcd1c840f9886a0af44b1df4ca3d8ae3733ddd8cc42163911b3df215bd385d1c68ab169417dbd17e85a1276d8311773cc5bb5f9a46e1325fbdd4601777ded059e1324bb1788e29fe2f236c762769360b930a243636450fec169445aef66534521490bd112d011da2f53d0ebc5e259b0bbb33aac4751c8409b28fbf9b2417f7d06e3f90b24c7bb78db701cb63cb99c1fa0a05b429d1d3b694c6d50df4f53d1661784e9fd147d2598903a3d77e843609c2d164bcfdbfe0e7411fbac6460974872e832538", 0xd2}, {&(0x7f0000000140)}, {&(0x7f0000000240)="5a08bc776532bc87f67025e849481ceced55a74f0582d453feb8fea28b8d38b179233eaf7dcafdc1b751a6cbdb2e5f5c5bfca612320bb2dade3a23badfc79299a3596aecd839be42b0a52a1d14c755265fcaad1949a3fcd75d3991d8e724eae8091e82a207d6f41bb6931aadeb1b9b1b1a3b4c", 0x73}, {&(0x7f0000000440)="2b4b7a5ef7aaf593243ed69908fd0f045b7a0bc7a2dccf92d016fd1f652a4624841f1062ea3bf0d31c57d1cb450ea48b2310b07a676749fdd155b0f0daf38fb6a7d9644e3bcc2862d2d76ca293720b35a35f707bf4e1adbeb2c8ae29d0b66e52", 0x60}, {&(0x7f00000004c0)="203730a0f45205941e8bb362a9826f9adcc9374a0a3d0634277c448ad054a7bc794dd130f5e5b5caf10b7b2737957ed201990f181dcc4b043215688344dfbc0168ea6ef33456a394a304920f33a40ef2d0d57c1e8b1362e43ed69ef338fe8499da2f5ac211144086801e167d391c5307ee24e51de7a42964030721bd1834f0e223fcefbf5bb0537d8d7a1299f5a101fd9a5b", 0x92}], 0x5}, 0x20)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-aesni\x00'}}, 0xfffffffd)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = signalfd4(r1, &(0x7f0000000140)={[0x3]}, 0x8, 0x0)
r7 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r10], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r11)
syz_io_uring_submit(0x0, r3, &(0x7f0000000640)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r11}}, 0xffffffa4)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000009, 0x12, r6, 0x8000000)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:53 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 68)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:53 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, r0, 0x9, 0x1c00000000, 0x1f, 0x7})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f000005b880)={{<r5=>0x0, 0xffffffff, 0x0, 0x1, 0x4, 0x93, 0x9, 0x1, 0x101, 0x401, 0xffff, 0x7, 0x10001, 0x8}})
r6 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[])
openat(r6, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={<r7=>0x0, ""/256, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, <r9=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r6, 0xd000943e, &(0x7f0000001e00)={0x0, <r10=>0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f000005c880)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r12=>0x0}], 0x5, "5249cb0a77f1c5"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005d880)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5, r9}, {}, {r12}], 0x4c, "d4aa8c829b7ad7"})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2461.821041] FAULT_INJECTION: forcing a failure.
[ 2461.821041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2461.823173] CPU: 1 PID: 12415 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2461.824242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2461.825606] Call Trace:
[ 2461.826024]  dump_stack+0x107/0x167
[ 2461.826573]  should_fail.cold+0x5/0xa
[ 2461.827156]  _copy_from_user+0x2e/0x1b0
[ 2461.827787]  move_addr_to_kernel.part.0+0x31/0x110
[ 2461.828554]  move_addr_to_kernel+0x4f/0x70
[ 2461.829220]  io_connect+0x47a/0x610
[ 2461.829784]  ? io_prep_rw+0x1050/0x1050
[ 2461.830403]  ? __lock_acquire+0xbb1/0x5b00
[ 2461.831042]  io_issue_sqe+0x1611/0x77b0
[ 2461.831636]  ? perf_trace_lock+0xac/0x490
[ 2461.832292]  ? SOFTIRQ_verbose+0x10/0x10
[ 2461.832917]  ? lock_chain_count+0x20/0x20
[ 2461.833544]  ? io_connect+0x610/0x610
[ 2461.834136]  ? lock_acquire+0x197/0x470
[ 2461.834753]  ? find_held_lock+0x2c/0x110
[ 2461.835384]  ? __fget_files+0x2cf/0x520
[ 2461.835998]  ? lock_downgrade+0x6d0/0x6d0
[ 2461.836634]  __io_queue_sqe+0x90/0x9d0
[ 2461.837236]  ? io_issue_sqe+0x77b0/0x77b0
[ 2461.837863]  ? __fget_files+0x2f8/0x520
[ 2461.838476]  io_submit_sqes+0x44aa/0x8610
[ 2461.839124]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2461.839890]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2461.840646]  ? find_held_lock+0x2c/0x110
[ 2461.841268]  ? io_submit_sqes+0x8610/0x8610
[ 2461.841936]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2461.842669]  ? wait_for_completion_io+0x270/0x270
[ 2461.843432]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2461.844138]  ? vfs_write+0x354/0xb10
[ 2461.844754]  ? fput_many+0x2f/0x1a0
[ 2461.845294]  ? ksys_write+0x1a9/0x260
[ 2461.845870]  ? __ia32_sys_read+0xb0/0xb0
[ 2461.846477]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2461.847266]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2461.848045]  do_syscall_64+0x33/0x40
[ 2461.848603]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2461.849390] RIP: 0033:0x7f9e767a8b19
[ 2461.849949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2461.852731] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2461.853885] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2461.854970] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2461.856044] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2461.857151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2461.858220] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2461.866855] loop0: detected capacity change from 0 to 32768
[ 2461.871854] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
08:31:53 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r7 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r7, &(0x7f0000000100)='net/nfsfs\x00')

08:31:53 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r7 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r7, &(0x7f0000000100)='net/nfsfs\x00')

08:31:53 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:53 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:31:53 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r6 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r6, &(0x7f0000000100)='net/nfsfs\x00')

08:31:53 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x480000, 0x72)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x3}, 0x4)

08:31:53 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x100000e, 0x13, r0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_enter(r5, 0x644, 0x535e, 0x2, &(0x7f0000000040)={[0x8000]}, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:31:53 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 69)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:31:53 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r3, &(0x7f0000000100)='net/nfsfs\x00')
r4 = signalfd(r2, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r3, 0x9, r4, 0x3)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r2, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r5 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r5, &(0x7f0000000100)='net/nfsfs\x00')

[ 2462.301746] FAULT_INJECTION: forcing a failure.
[ 2462.301746] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2462.304379] CPU: 0 PID: 12470 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2462.305862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2462.307637] Call Trace:
[ 2462.308208]  dump_stack+0x107/0x167
[ 2462.309010]  should_fail.cold+0x5/0xa
[ 2462.309831]  _copy_from_user+0x2e/0x1b0
[ 2462.310689]  move_addr_to_kernel.part.0+0x31/0x110
[ 2462.311740]  move_addr_to_kernel+0x4f/0x70
[ 2462.312647]  io_connect+0x47a/0x610
[ 2462.313429]  ? io_prep_rw+0x1050/0x1050
[ 2462.314299]  ? __lock_acquire+0xbb1/0x5b00
[ 2462.315214]  io_issue_sqe+0x1611/0x77b0
[ 2462.316070]  ? perf_trace_lock+0xac/0x490
[ 2462.316958]  ? SOFTIRQ_verbose+0x10/0x10
[ 2462.317813]  ? lock_chain_count+0x20/0x20
[ 2462.318695]  ? io_connect+0x610/0x610
[ 2462.319507]  ? lock_acquire+0x197/0x470
[ 2462.320362]  ? find_held_lock+0x2c/0x110
[ 2462.321233]  ? __fget_files+0x2cf/0x520
[ 2462.322074]  ? lock_downgrade+0x6d0/0x6d0
[ 2462.322963]  __io_queue_sqe+0x90/0x9d0
[ 2462.323802]  ? io_issue_sqe+0x77b0/0x77b0
[ 2462.324687]  ? __fget_files+0x2f8/0x520
[ 2462.325618]  io_submit_sqes+0x44aa/0x8610
[ 2462.326709]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2462.327976]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2462.329205]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2462.330334]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2462.331474]  ? io_submit_sqes+0x8610/0x8610
[ 2462.332567]  ? finish_task_switch+0x126/0x5d0
[ 2462.333695]  ? finish_task_switch+0xef/0x5d0
[ 2462.334795]  ? __switch_to+0x572/0xf70
[ 2462.335768]  ? __switch_to_asm+0x3a/0x60
[ 2462.336795]  ? __switch_to_asm+0x34/0x60
[ 2462.337817]  ? __schedule+0x82c/0x1ea0
[ 2462.338794]  ? io_schedule_timeout+0x140/0x140
[ 2462.339945]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2462.341096]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2462.342442]  ? ksys_write+0x1a9/0x260
[ 2462.343389]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2462.344706]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2462.345992]  do_syscall_64+0x33/0x40
[ 2462.346925]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2462.348202] RIP: 0033:0x7f9e767a8b19
[ 2462.349134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2462.353714] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2462.355607] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2462.357373] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2462.359124] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2462.360881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2462.362638] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:32:11 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 70)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:32:11 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x810, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x7fff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x11, r0, 0x10000000)
r6 = creat(&(0x7f00000001c0)='./file0/file0\x00', 0xab)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$FIOCLEX(0xffffffffffffffff, 0x5451)
dup(r4)
ioctl$TIOCSIG(r6, 0x40045436, 0xe)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r5, &(0x7f0000000040)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)='./file0/file0\x00', 0x8, 0x82500, 0x23456, {0x0, r8}}, 0x5)
io_uring_enter(r0, 0x58ab, 0x9683, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:32:11 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r7], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000340)=@IORING_OP_SEND={0x1a, 0x4, 0x0, r3, 0x0, &(0x7f00000001c0)="c53f46090d3ce7af547c097cc756d78b0a1796364283b814fe1b2fe9b806eaec9a66531e", 0x24, 0x24000000, 0x1, {0x0, r8}}, 0x10000)
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r12, 0x0, 0x0}, 0x0)
r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r9, 0x0)
syz_io_uring_submit(r13, r11, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r11, &(0x7f0000000040)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x9, 0x0, &(0x7f0000000240)="90efa4344aa15f09d618c00617d7fa51e84afc326512b9034d19d9f06541db7e7404fd80e83855a45a5132ce7f1e5f183a81567e0a05ab685136be1d4c1ff168e1d9eea395466244b19851331aacc395f0741b6a55088b0f26", 0xee5, 0x0, 0x1, {0x3}}, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')
r2 = signalfd(r0, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r1, 0x9, r2, 0x3)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r3 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r3, &(0x7f0000000100)='net/nfsfs\x00')

08:32:11 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:11 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x8010, r0, 0x0)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000440)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000)
syz_io_uring_submit(r9, r8, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r10 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r13=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r11, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r13], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r12, 0xa, 0x0, r14)
syz_io_uring_submit(r5, r8, &(0x7f0000000040)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x6004, @fd_index=0x7, 0x3d9, 0x48, 0x5, 0x10, 0x1, {0x1, r14}}, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')
signalfd(r0, &(0x7f0000000400)={[0x6]}, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r2 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r2, &(0x7f0000000100)='net/nfsfs\x00')

[ 2480.115978] FAULT_INJECTION: forcing a failure.
[ 2480.115978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2480.118667] CPU: 1 PID: 12492 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2480.120061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2480.121729] Call Trace:
[ 2480.122259]  dump_stack+0x107/0x167
[ 2480.122985]  should_fail.cold+0x5/0xa
[ 2480.123760]  _copy_from_user+0x2e/0x1b0
[ 2480.124564]  move_addr_to_kernel.part.0+0x31/0x110
[ 2480.125541]  move_addr_to_kernel+0x4f/0x70
[ 2480.126388]  io_connect+0x47a/0x610
[ 2480.127111]  ? io_prep_rw+0x1050/0x1050
[ 2480.127932]  ? __lock_acquire+0xbb1/0x5b00
[ 2480.128796]  io_issue_sqe+0x1611/0x77b0
[ 2480.129594]  ? io_dismantle_req+0xdf/0x180
[ 2480.130436]  ? perf_trace_lock+0xac/0x490
[ 2480.131267]  ? SOFTIRQ_verbose+0x10/0x10
[ 2480.132078]  ? io_connect+0x610/0x610
[ 2480.132853]  ? lock_acquire+0x197/0x470
[ 2480.133641]  ? find_held_lock+0x2c/0x110
[ 2480.134460]  ? __fget_files+0x2cf/0x520
[ 2480.135252]  ? lock_downgrade+0x6d0/0x6d0
[ 2480.136089]  __io_queue_sqe+0x90/0x9d0
[ 2480.136877]  ? io_issue_sqe+0x77b0/0x77b0
[ 2480.137698]  ? __fget_files+0x2f8/0x520
[ 2480.138503]  io_submit_sqes+0x44aa/0x8610
[ 2480.139365]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2480.140357]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2480.141331]  ? find_held_lock+0x2c/0x110
[ 2480.142131]  ? io_submit_sqes+0x8610/0x8610
[ 2480.142983]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2480.143938]  ? wait_for_completion_io+0x270/0x270
[ 2480.144901]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2480.145817]  ? vfs_write+0x354/0xb10
[ 2480.146544]  ? fput_many+0x2f/0x1a0
[ 2480.147264]  ? ksys_write+0x1a9/0x260
[ 2480.148021]  ? __ia32_sys_read+0xb0/0xb0
[ 2480.148844]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2480.149874]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2480.150901]  do_syscall_64+0x33/0x40
[ 2480.151683]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2480.152719] RIP: 0033:0x7f9e767a8b19
[ 2480.153447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2480.157070] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2480.158570] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2480.159991] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2480.161413] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2480.162818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2480.164222] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:32:11 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:11 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r2 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r2, &(0x7f0000000100)='net/nfsfs\x00')

08:32:11 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 7:
socket$unix(0x1, 0x6, 0x0)
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
inotify_init()
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x9, 0x1, 0x0, 0x7, 0x0, 0x1}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x22, 0x0, &(0x7f0000000040)="3f79301ff8d3bbf0f048d02f409ec4d729d1c040cae1c2b4", 0x9, 0x0, 0x0, {0x1, r5}}, 0x3)

08:32:11 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x4000010, r0, 0x10000000)
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000140)='./file0\x00', 0x40, 0x100, 0x0, {0x0, r10}}, 0xffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r11 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r11, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x13, r11, 0x8000000)

08:32:11 executing program 5:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r6, 0x6612)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:11 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:27 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:27 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000240)={{0x1, 0x1, 0x18, r3}, './file2\x00'})
r5 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x6, 0x60240)
r6 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x100000001)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
timerfd_gettime(r7, 0x0)
fstat(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
mount$9p_fd(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000180), 0x10004, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@cache_none}, {@cache_none}, {@version_u}, {@access_user}, {@posixacl}, {@cache_loose}, {@afid={'afid', 0x3d, 0x10001}}], [{@fsuuid={'fsuuid', 0x3d, {[0x33, 0x0, 0x37, 0x66, 0x8, 0x32, 0x61, 0x61], 0x2d, [0x64, 0x35, 0x61, 0x35], 0x2d, [0x3, 0x31, 0x63, 0x65], 0x2d, [0x65, 0x33, 0x66, 0x39], 0x2d, [0x62, 0x35, 0x39, 0x35, 0x35, 0x35, 0x31, 0x30]}}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@euid_gt={'euid>', r8}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/full\x00'}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/proc/thread-self\x00'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}]}})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140), 0x3820200, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_user}, {@dfltuid}, {@debug={'debug', 0x3d, 0x759fb484}}, {@afid}, {@cache_mmap}, {@privport}, {@cache_mmap}], [{@subj_role={'subj_role', 0x3d, '-%}'}}, {@euid_gt={'euid>', 0xffffffffffffffff}}, {@fsmagic={'fsmagic', 0x3d, 0x4}}, {@fowner_gt={'fowner>', r8}}]}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:27 executing program 5:
r0 = syz_io_uring_setup(0x4997, &(0x7f00000002c0)={0x0, 0x2, 0x5}, &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:27 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 71)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:32:27 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0xfffffffffffffffa}, 0x0, 0x0, 0x6, 0x4, 0x0, 0x0, 0xc1, 0x0, 0x4}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r0, {0x3c42bad7}}, './file0\x00'})
ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

08:32:27 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r8, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x2, 0xfffffffe, 0x388, 0x0, r8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r10], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r11)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r3, 0x0, &(0x7f0000000340)="95ab36dbc32f5639770ec3ec47c54f056dce0e71db12741f7c029662999d9921f4882b895a4440379dc4965262e654413f114d78563c61c4e8cb01f50a7d556b208ba1feb98346248f43ae5b57a2ac3c80c494a8b68b3350a9ce38fc32a6baaee7d5fe5e0a8df8f8477f03791dc13e5ef7125e68f163b32d6c8c92a8bbd7ad7c11a7509d376d736667f672d4b0ccacdb0d326f3e028967f3658fde640fdbbcad9ba956c1d6fc9ac6a88a", 0xaa, 0x40003000, 0x0, {0x0, r11}}, 0x1)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000500)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0xbf)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(r6, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x1c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008041}, 0x24004140)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:32:27 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

[ 2496.300184] FAULT_INJECTION: forcing a failure.
[ 2496.300184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2496.301895] CPU: 1 PID: 12569 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2496.302828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2496.303947] Call Trace:
[ 2496.304324]  dump_stack+0x107/0x167
[ 2496.304837]  should_fail.cold+0x5/0xa
[ 2496.305363]  _copy_from_user+0x2e/0x1b0
[ 2496.305913]  move_addr_to_kernel.part.0+0x31/0x110
[ 2496.306582]  move_addr_to_kernel+0x4f/0x70
[ 2496.307158]  io_connect+0x47a/0x610
[ 2496.307655]  ? io_prep_rw+0x1050/0x1050
[ 2496.308212]  ? __lock_acquire+0xbb1/0x5b00
[ 2496.308823]  io_issue_sqe+0x1611/0x77b0
[ 2496.309372]  ? io_dismantle_req+0xdf/0x180
[ 2496.309943]  ? perf_trace_lock+0xac/0x490
[ 2496.310499]  ? SOFTIRQ_verbose+0x10/0x10
[ 2496.311055]  ? io_connect+0x610/0x610
[ 2496.311579]  ? lock_acquire+0x197/0x470
[ 2496.312113]  ? find_held_lock+0x2c/0x110
[ 2496.312668]  ? __fget_files+0x2cf/0x520
[ 2496.313215]  ? lock_downgrade+0x6d0/0x6d0
[ 2496.313778]  __io_queue_sqe+0x90/0x9d0
[ 2496.314334]  ? io_issue_sqe+0x77b0/0x77b0
[ 2496.314896]  ? __fget_files+0x2f8/0x520
[ 2496.315476]  io_submit_sqes+0x44aa/0x8610
[ 2496.316064]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2496.316744]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2496.317443]  ? find_held_lock+0x2c/0x110
[ 2496.317999]  ? io_submit_sqes+0x8610/0x8610
[ 2496.318587]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2496.319237]  ? wait_for_completion_io+0x270/0x270
[ 2496.319888]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2496.320521]  ? vfs_write+0x354/0xb10
[ 2496.321050]  ? fput_many+0x2f/0x1a0
[ 2496.321552]  ? ksys_write+0x1a9/0x260
[ 2496.322072]  ? __ia32_sys_read+0xb0/0xb0
[ 2496.322637]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2496.323355]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2496.324067]  do_syscall_64+0x33/0x40
[ 2496.324572]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2496.325319] RIP: 0033:0x7f9e767a8b19
[ 2496.325824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2496.328276] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2496.329304] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2496.330258] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2496.331264] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2496.332267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2496.333277] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:32:27 executing program 1:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:27 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:28 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r3, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@ethernet={0x0, @multicast}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000040)=""/53, 0x35}], 0x1, &(0x7f0000000340)=""/155, 0x9b}, 0x0, 0x2001}, 0x9)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:28 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x3, 0x80, 0x6, 0x7, 0x0, 0xcec, 0x4100, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x800, 0x2, @perf_config_ext={0x3ff, 0xfff}, 0x8425, 0x8, 0x4, 0x7, 0x4, 0x81, 0x2, 0x0, 0x1, 0x0, 0x3}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0xb)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:28 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:43 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 72)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:32:43 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
io_uring_enter(r0, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:43 executing program 1:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 3:
r0 = syz_io_uring_setup(0xde8, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0xb2d, &(0x7f0000000240)={0x0, 0x648e, 0x8, 0x1, 0x38a, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140))
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000340)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r5, 0x0, &(0x7f00000001c0)="3d48680a5ce279571df3f82210831f5fa904d9462141943e7f12c90b90f3d98907b3a07da97ca4b13634ec3c23f91b0bf51db2ed5a2e4f88acfbe1d6693edf", 0x3f, 0x884, 0x1, {0x0, r6}}, 0x40)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000009, 0x2010, r4, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
connect$bt_sco(r3, &(0x7f0000000040), 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:43 executing program 0:
r0 = syz_io_uring_setup(0x7a97, &(0x7f0000000240)={0x0, 0x2d7a, 0x8, 0x1, 0x6f}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000340)="224bc69587de55203fe6e6f7cecadca41adad480ebd79456fcc37b0afe0cf7235bcacd573b0d0f0f79a786834fe33b37b5c358f8d82e91c1469ea2ef1b0c18557f62cc97cb7dc5d27a31a8bb1cb7cdcc2a0fce8d635a18a5469c9afd646a1d07913e30c8", 0x64}, {&(0x7f00000003c0)="fc775cad7cf1d7a86637fa8565fea35101acee22600fc7b22ad0a3732b30f67331e2bd0224e2e4e45c6a4a33683082e722a6f11b15d732b58ad2b9ebbc62f41d6c7933754aae", 0x46}], 0x2)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

08:32:43 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x67c7, &(0x7f0000000240)={0x0, 0xa71f, 0x10, 0x2, 0x1c}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
accept4$packet(r6, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14, 0x80800)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder-control\x00', 0x0, 0x0)
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r8, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd_index=0x4, 0x5, {0x0, r7}, 0x0, 0x4, 0x1, {0x0, 0x0, r8}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
timer_create(0x5, &(0x7f0000000100)={0x0, 0x14, 0x1}, &(0x7f0000000440))

[ 2511.886651] FAULT_INJECTION: forcing a failure.
[ 2511.886651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2511.889719] CPU: 1 PID: 12621 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2511.891291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.893168] Call Trace:
[ 2511.893766]  dump_stack+0x107/0x167
[ 2511.894594]  should_fail.cold+0x5/0xa
[ 2511.895466]  _copy_from_user+0x2e/0x1b0
[ 2511.896377]  move_addr_to_kernel.part.0+0x31/0x110
[ 2511.897497]  move_addr_to_kernel+0x4f/0x70
[ 2511.898465]  io_connect+0x47a/0x610
[ 2511.899292]  ? io_prep_rw+0x1050/0x1050
[ 2511.900220]  ? __lock_acquire+0xbb1/0x5b00
[ 2511.901193]  io_issue_sqe+0x1611/0x77b0
[ 2511.902091]  ? io_dismantle_req+0xdf/0x180
[ 2511.903051]  ? perf_trace_lock+0xac/0x490
[ 2511.904009]  ? SOFTIRQ_verbose+0x10/0x10
[ 2511.904947]  ? io_connect+0x610/0x610
[ 2511.905820]  ? lock_acquire+0x197/0x470
[ 2511.906714]  ? find_held_lock+0x2c/0x110
[ 2511.907639]  ? __fget_files+0x2cf/0x520
[ 2511.908532]  ? lock_downgrade+0x6d0/0x6d0
[ 2511.909492]  __io_queue_sqe+0x90/0x9d0
[ 2511.910391]  ? io_issue_sqe+0x77b0/0x77b0
[ 2511.911323]  ? __fget_files+0x2f8/0x520
[ 2511.912243]  io_submit_sqes+0x44aa/0x8610
[ 2511.913226]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2511.914355]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2511.915424]  ? find_held_lock+0x2c/0x110
[ 2511.916244]  ? io_submit_sqes+0x8610/0x8610
[ 2511.917110]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2511.918071]  ? wait_for_completion_io+0x270/0x270
[ 2511.919028]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2511.919960]  ? vfs_write+0x354/0xb10
[ 2511.920703]  ? fput_many+0x2f/0x1a0
[ 2511.921429]  ? ksys_write+0x1a9/0x260
[ 2511.922190]  ? __ia32_sys_read+0xb0/0xb0
[ 2511.923003]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2511.924054]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2511.925100]  do_syscall_64+0x33/0x40
[ 2511.925833]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2511.926859] RIP: 0033:0x7f9e767a8b19
[ 2511.927600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.931236] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2511.932744] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2511.934158] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2511.935573] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.937006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2511.938413] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:32:43 executing program 1:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:32:43 executing program 2:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:43 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
write(r5, &(0x7f0000000240)="1403a546cd8ff770854f975cdb590273be7ded6ba7ef3ca748cb1b798426e4543e2fe041253679ad9f4d6d9f67b7bb0724b6d2adee91d87366920c159e40b9d5a0b0dc554448c11623492574eddad055c20b4f0644da6351218330f57db8970cc7ca0516989858cf51ca64ed41b742df198fd0da4e59172790466ae0a665", 0x7e)
symlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='./file0\x00')
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x8001, 0x9})
syz_io_uring_setup(0x215f, &(0x7f0000000380)={0x0, 0x7d2f, 0x20, 0x1, 0x44, 0x0, r6}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000400), &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r1, r7, &(0x7f0000001a40)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r5, 0x0, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)=""/251, 0xfb}, {&(0x7f0000000600)=""/1, 0x1}, {&(0x7f0000000640)=""/102, 0x66}, {&(0x7f00000006c0)=""/139, 0x8b}, {&(0x7f0000000780)=""/72, 0x48}, {&(0x7f0000000800)=""/186, 0xba}, {&(0x7f00000008c0)=""/167, 0xa7}], 0x7, &(0x7f0000000a00)=""/4096, 0x1000}, 0x0, 0x3, 0x1, {0x1}}, 0x5)
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r8, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f00000001c0)={r8, 0x8, 0x0, 0x1})

08:32:43 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:32:43 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000000240))
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, r3, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@nfc_llcp={0x27, 0x0, 0x2, 0x1, 0x2, 0x5a, "099f59e490e8300dc4f5910a63dd07965969f79a84be852844e3b901d480194a6fc3723ff46444d134d3df79acbbc438834127fab9c749083d06931562be50", 0x14}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000500)="ccd87c0e02ca9b14de63afeacf3e636323e046e0cd19c23ee9bf779b391dee37b6b5bfa55090c05a859af655aa96c76032ca255b66b3f9a2c7ff6e5bdf088b7d62a025993a75339d87c41eb3ac61645ff4b5c1701b2853a4c5e5f79d7ddfb560092755d3db59283021ace44974e815535aac11399c9cb4b52205480eefbeb1a350223f12f2c1eff1688f3cc462143491a1c3c98af507be8b6e446a2ac02b47fb92308e0b6a10b2be67c31ea19fbf7958d744d92336659ed89728c98ea3afe6aa37e76c016c4a5fdd0686836c058ea48308205693f36f76d5b33edbfd2e4a1814a33ac4227d166fcd084b93cc97af2fbbb004d6", 0xf3}], 0x1, &(0x7f0000000600)=[{0x68, 0x5, 0xffffffff, "f1052394e195e9e366346a21e70b0091ac3c86acfc85bcdf18ce9688ab34d6acb6420a6f08435434badacfbf42fb4a0f4130587d1e21f2757acf65218d890141d480f03dccf51610f8435c85d02d7c358648f46c61ebf14b"}, {0x68, 0x111, 0x7f, "8e2d339a8a11dc6869fca9c645c99402d12e27412dd338f2dc9d4032fcfdb60044d1715f0c1b29c25799d68d4766dfe620178bebd1276f8db34b28c489aaa1ef6583d3a74aea52f4dc7f554b169bbfe0a272f59ec259e6"}], 0xd0}, 0x0, 0x8080}, 0xffff)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:32:43 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 73)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:32:43 executing program 2:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:43 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:32:43 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x671f, &(0x7f0000000040)={0x0, 0xe27f, 0x5980716857a402d4, 0x1, 0x3a, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_NOP={0x0, 0x4}, 0x2)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000009, 0x12, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000240)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000009, 0x10, r7, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x63d6, 0x0, 0x0, 0xffffffffffffff58)

08:32:43 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

08:32:43 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:44 executing program 2:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(0xffffffffffffffff, 0x0, 0x153e, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

[ 2512.442975] FAULT_INJECTION: forcing a failure.
[ 2512.442975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2512.445439] CPU: 1 PID: 12672 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2512.446631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2512.448039] Call Trace:
[ 2512.448499]  dump_stack+0x107/0x167
[ 2512.449138]  should_fail.cold+0x5/0xa
[ 2512.449792]  _copy_from_user+0x2e/0x1b0
[ 2512.450476]  move_addr_to_kernel.part.0+0x31/0x110
[ 2512.451322]  move_addr_to_kernel+0x4f/0x70
[ 2512.452043]  io_connect+0x47a/0x610
[ 2512.452665]  ? io_prep_rw+0x1050/0x1050
[ 2512.453378]  ? __lock_acquire+0xbb1/0x5b00
[ 2512.454099]  io_issue_sqe+0x1611/0x77b0
[ 2512.454795]  ? perf_trace_lock+0xac/0x490
[ 2512.455496]  ? SOFTIRQ_verbose+0x10/0x10
[ 2512.456189]  ? lock_chain_count+0x20/0x20
[ 2512.456908]  ? io_connect+0x610/0x610
[ 2512.457567]  ? lock_acquire+0x197/0x470
[ 2512.458235]  ? find_held_lock+0x2c/0x110
[ 2512.458942]  ? __fget_files+0x2cf/0x520
[ 2512.459626]  ? lock_downgrade+0x6d0/0x6d0
[ 2512.460349]  __io_queue_sqe+0x90/0x9d0
[ 2512.461022]  ? io_issue_sqe+0x77b0/0x77b0
[ 2512.461735]  ? __fget_files+0x2f8/0x520
[ 2512.462436]  io_submit_sqes+0x44aa/0x8610
[ 2512.463154]  ? percpu_ref_tryget_many+0x5d/0x2d0
[ 2512.463964]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2512.464807]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2512.465641]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2512.466566]  ? io_submit_sqes+0x8610/0x8610
[ 2512.467311]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2512.468137]  ? vfs_write+0x5cc/0xb10
[ 2512.468789]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2512.469690]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2512.470610]  ? trace_hardirqs_on+0x5b/0x180
[ 2512.471355]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2512.472285]  ? __io_uring_cancel+0x20/0x20
[ 2512.473025]  do_syscall_64+0x33/0x40
[ 2512.473664]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2512.474533] RIP: 0033:0x7f9e767a8b19
[ 2512.475176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2512.478322] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2512.479619] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2512.480867] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2512.482092] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2512.483308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2512.484517] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:32:44 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_open_dev$mouse(&(0x7f0000000040), 0x3f, 0x4a00)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x40010, r5, 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
dup2(r6, r5)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x28200, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x4, r7, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:32:44 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r7], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x4000, @fd_index=0x6, 0x6, 0x3ff, 0x0, 0x18, 0x0, {0x3, r8}}, 0x7fff)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:44 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:44 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6gre0\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)

08:32:57 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x58, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:57 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000001900)='./file0/file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@noprefix}]})
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:57 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000009, 0x2010, r4, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
connect$bt_sco(r3, &(0x7f0000000040), 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:32:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:32:57 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:32:57 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 74)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:32:57 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x1)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000040), 0x905e, 0x109000)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:32:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = fcntl$getown(r3, 0x9)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, r4, 0x1, 0xffffffffffffffff, 0x2)
r5 = gettid()
capget(&(0x7f0000000080)={0x20071026, r5}, &(0x7f0000000100))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001600010d0000000000000000000479ab0112e771690c2d4170de34389fdbd32aeb4714c1fc51288770d4d9edc67bc0cb27f8850900000099794b77f35767d8b56772508252927d186e0e290ebdba5ac2d3adaa4a30505d1ab49f33277a377a311d5e076013a3e0dd01f7307960956b7f2c960c3f20a007d7ac7376ca6ccca0d89ac3964fb07d68cd0d6ac799cf15ebcd835d85d11aec110276758cf4014436e6640cf05b24d12b2ac6307cd016a92cc48a"], 0x14}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x4007, @fd_index=0x6, 0x27341e7b, &(0x7f0000000340)=""/4096, 0x1000, 0x1a}, 0x453)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2526.222944] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure
[ 2526.225253] cgroup: noprefix used incorrectly
08:32:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[0x80000000]}, 0x8)

[ 2526.266458] FAULT_INJECTION: forcing a failure.
[ 2526.266458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2526.269295] CPU: 1 PID: 12726 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2526.270830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2526.273175] Call Trace:
[ 2526.273928]  dump_stack+0x107/0x167
[ 2526.274959]  should_fail.cold+0x5/0xa
[ 2526.276072]  _copy_from_user+0x2e/0x1b0
[ 2526.277241]  move_addr_to_kernel.part.0+0x31/0x110
[ 2526.278638]  move_addr_to_kernel+0x4f/0x70
[ 2526.279852]  io_connect+0x47a/0x610
[ 2526.280901]  ? io_prep_rw+0x1050/0x1050
[ 2526.282084]  ? __lock_acquire+0xbb1/0x5b00
[ 2526.283285]  io_issue_sqe+0x1611/0x77b0
[ 2526.284410]  ? io_dismantle_req+0xdf/0x180
[ 2526.285615]  ? perf_trace_lock+0xac/0x490
[ 2526.286795]  ? SOFTIRQ_verbose+0x10/0x10
[ 2526.287937]  ? io_connect+0x610/0x610
[ 2526.289059]  ? lock_acquire+0x197/0x470
[ 2526.290046]  ? find_held_lock+0x2c/0x110
[ 2526.290942]  ? __fget_files+0x2cf/0x520
[ 2526.291808]  ? lock_downgrade+0x6d0/0x6d0
[ 2526.292721]  __io_queue_sqe+0x90/0x9d0
[ 2526.293586]  ? io_issue_sqe+0x77b0/0x77b0
[ 2526.294484]  ? __fget_files+0x2f8/0x520
[ 2526.295368]  io_submit_sqes+0x44aa/0x8610
[ 2526.296305]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2526.297404]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2526.298452]  ? find_held_lock+0x2c/0x110
[ 2526.299333]  ? io_submit_sqes+0x8610/0x8610
[ 2526.300275]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2526.301325]  ? wait_for_completion_io+0x270/0x270
[ 2526.302370]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2526.303378]  ? vfs_write+0x354/0xb10
[ 2526.304180]  ? fput_many+0x2f/0x1a0
[ 2526.304965]  ? ksys_write+0x1a9/0x260
[ 2526.305798]  ? __ia32_sys_read+0xb0/0xb0
[ 2526.306678]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2526.307817]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2526.308931]  do_syscall_64+0x33/0x40
[ 2526.309744]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2526.310853] RIP: 0033:0x7f9e767a8b19
[ 2526.311659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2526.315608] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2526.317240] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2526.318756] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2526.320298] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2526.321828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2526.323353] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2526.355390] cgroup: noprefix used incorrectly
08:32:57 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0xf1, 0x6, 0x1, {0x0, r9, r3}}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r11 = syz_mount_image$nfs4(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7, 0x3, &(0x7f00000003c0)=[{&(0x7f0000000240)="e9730ef07a837025932d85e003b29b5d26ece46c510438877075340781f8ef871006a4f712be71f7c891ef5aa2adbd95104ae947b15754522d3fb24a", 0x3c, 0x7}, {&(0x7f0000000280)="66cff91579dcd2", 0x7, 0x8}, {&(0x7f0000000340)="7b083937439a9a364765d986b14d112c3cc5474fa05b888dcdcfdf40cf13d7824534506c8b3aa071dcf27a7c468586c8e2a747b5db19b43c4c9e0dc6c099b1a8f4c68a7035bb6f560dd02f1966a140835c8cc93e6f95703403815ce732247961f11438217b1cd91f3b766cd1", 0x6c, 0x7}], 0x2000820, &(0x7f00000004c0)={[{'}'}, {'/dev/vcs#\x00'}, {'/dev/vcs#\x00'}, {'@:'}], [{@audit}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/vcs#\x00'}}, {@euid_gt={'euid>', 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@uid_eq}, {@subj_role}]})
ioctl$FS_IOC_GETFSMAP(r11, 0xc0c0583b, &(0x7f0000000740)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x0, 0x1, 0x7fffffff, 0x5, 0x0, 0x6}, {0x5, 0x153, 0x0, 0x3, 0x0, 0xbfd}], ['\x00', '\x00', '\x00', '\x00']})
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r12 = socket$inet(0x2, 0xa, 0x0)
r13 = syz_open_dev$vcsn(&(0x7f0000000040), 0x10001, 0x282000)
openat(r13, &(0x7f0000000140)='./file0\x00', 0x214201, 0x42)
sendmsg$inet(r12, &(0x7f0000000700)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, 0x0}, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)

08:32:57 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:33:12 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 75)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:12 executing program 5:
r0 = syz_io_uring_setup(0x564a, &(0x7f00000002c0), &(0x7f0000fee000/0x12000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:12 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000004, 0x10010, r0, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x2010, r0, 0x10000000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x9, &(0x7f0000000140), 0x1, 0x0, 0x1, {0x0, r6}}, 0x1ff)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x100000b, 0x4010, r0, 0x10000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x2000, @fd_index=0x2, 0x7f, 0x0, 0x0, 0x0, 0x0, {0x1, r8}}, 0x95)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r10, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r11, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f0000001540)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x2000, @fd=r11, 0x9, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/145, 0x91}, {&(0x7f0000000240)=""/8, 0x8}, {&(0x7f0000001400)=""/140, 0x8c}, {&(0x7f0000000280)=""/29, 0x1d}], 0x5, 0x0, 0x2, {0x0, r12}}, 0x7fffffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:12 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x450c, &(0x7f0000000240)={0x0, 0x3bcd, 0x10, 0x1, 0xc7, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140))
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x6c021619)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r11 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r11, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x1c9a, &(0x7f0000000400)={0x0, 0xbc65, 0x8, 0x1, 0x234, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_submit(r4, 0x0, &(0x7f00000003c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r11, 0x80, &(0x7f0000000340)=@isdn={0x22, 0x7f, 0x4, 0x20, 0x5}, 0x0, 0x0, 0x1, {0x0, r12}}, 0x2)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:12 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000001900)='./file0/file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@noprefix}]})
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:12 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:33:12 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[0x80000000]}, 0x8)

08:33:12 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffff9c, 0xc0506617, &(0x7f0000000240)={@desc={0x1, 0x0, @desc1}, 0x10, 0x0, '\x00', @d})
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r3}, './file0\x00'})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x0, 0x40010, r5, 0x8000000)

[ 2541.080674] cgroup: noprefix used incorrectly
[ 2541.083455] FAULT_INJECTION: forcing a failure.
[ 2541.083455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2541.085497] CPU: 1 PID: 12763 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2541.086532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2541.087765] Call Trace:
[ 2541.088159]  dump_stack+0x107/0x167
[ 2541.088699]  should_fail.cold+0x5/0xa
[ 2541.089275]  _copy_from_user+0x2e/0x1b0
[ 2541.089873]  move_addr_to_kernel.part.0+0x31/0x110
[ 2541.090599]  move_addr_to_kernel+0x4f/0x70
[ 2541.091229]  io_connect+0x47a/0x610
[ 2541.091769]  ? io_prep_rw+0x1050/0x1050
[ 2541.092380]  ? __lock_acquire+0xbb1/0x5b00
[ 2541.093009]  io_issue_sqe+0x1611/0x77b0
[ 2541.093599]  ? io_dismantle_req+0xdf/0x180
[ 2541.094236]  ? perf_trace_lock+0xac/0x490
[ 2541.094846]  ? SOFTIRQ_verbose+0x10/0x10
[ 2541.095460]  ? io_connect+0x610/0x610
[ 2541.096028]  ? lock_acquire+0x197/0x470
[ 2541.096616]  ? find_held_lock+0x2c/0x110
[ 2541.097225]  ? __fget_files+0x2cf/0x520
[ 2541.097811]  ? lock_downgrade+0x6d0/0x6d0
[ 2541.098429]  __io_queue_sqe+0x90/0x9d0
[ 2541.099012]  ? io_issue_sqe+0x77b0/0x77b0
[ 2541.099607]  ? __fget_files+0x2f8/0x520
[ 2541.100207]  io_submit_sqes+0x44aa/0x8610
[ 2541.100834]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2541.101598]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2541.102315]  ? find_held_lock+0x2c/0x110
[ 2541.102918]  ? io_submit_sqes+0x8610/0x8610
[ 2541.103558]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2541.104271]  ? wait_for_completion_io+0x270/0x270
[ 2541.104982]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2541.105674]  ? vfs_write+0x354/0xb10
[ 2541.106213]  ? fput_many+0x2f/0x1a0
[ 2541.106744]  ? ksys_write+0x1a9/0x260
[ 2541.107315]  ? __ia32_sys_read+0xb0/0xb0
[ 2541.107912]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2541.108676]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2541.109439]  do_syscall_64+0x33/0x40
[ 2541.109989]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2541.110736] RIP: 0033:0x7f9e767a8b19
[ 2541.111285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2541.113971] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2541.115089] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2541.116130] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2541.117169] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2541.118231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2541.119280] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:33:12 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:33:12 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x112, &(0x7f0000000240)={0x0, 0xd95f, 0x0, 0x2, 0x3d6}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
io_uring_enter(r4, 0x1fcb, 0xeb9c, 0x2, &(0x7f0000000440)={[0x7]}, 0x8)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x18f4, &(0x7f0000000340)={0x0, 0x7f93, 0x8, 0x0, 0x102}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=<r8=>0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r9, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000500)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x40d4}, 0x40040)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0xa, 0x0, r11)
syz_io_uring_submit(r5, r8, &(0x7f0000000400)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2, 0x2000, @fd_index=0x6, 0x8, 0x0, 0x0, 0x44ebda4c2da53f04, 0x1, {0x0, r11}}, 0xffffffff)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r12, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:27 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:33:27 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 76)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:27 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shutdown(r3, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:27 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x67c7, &(0x7f0000000240)={0x0, 0xa71f, 0x10, 0x2, 0x1c}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
accept4$packet(r6, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14, 0x80800)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder-control\x00', 0x0, 0x0)
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r8, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd_index=0x4, 0x5, {0x0, r7}, 0x0, 0x4, 0x1, {0x0, 0x0, r8}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
timer_create(0x5, &(0x7f0000000100)={0x0, 0x14, 0x1}, &(0x7f0000000440))

08:33:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x546f, &(0x7f0000000240)={0x0, 0x5eb1, 0x10, 0x0, 0x344, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000140))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:27 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = fcntl$getown(r3, 0x9)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, r4, 0x1, 0xffffffffffffffff, 0x2)
r5 = gettid()
capget(&(0x7f0000000080)={0x20071026, r5}, &(0x7f0000000100))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001600010d0000000000000000000479ab0112e771690c2d4170de34389fdbd32aeb4714c1fc51288770d4d9edc67bc0cb27f8850900000099794b77f35767d8b56772508252927d186e0e290ebdba5ac2d3adaa4a30505d1ab49f33277a377a311d5e076013a3e0dd01f7307960956b7f2c960c3f20a007d7ac7376ca6ccca0d89ac3964fb07d68cd0d6ac799cf15ebcd835d85d11aec110276758cf4014436e6640cf05b24d12b2ac6307cd016a92cc48a"], 0x14}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x4007, @fd_index=0x6, 0x27341e7b, &(0x7f0000000340)=""/4096, 0x1000, 0x1a}, 0x453)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:27 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f00000002c0)={0x0, {{0xa, 0x0, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x90)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:27 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x7fa5, &(0x7f0000000240)={0x0, 0xc86a, 0x1, 0x0, 0x3d6, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r4, r7, &(0x7f00000001c0)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x1, 0x9, 0x0, 0x80, 0x0, 0x1}, 0x81)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42b1, 0x0, @perf_config_ext={0x5}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2555.633848] FAULT_INJECTION: forcing a failure.
[ 2555.633848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2555.636790] CPU: 0 PID: 12817 Comm: syz-executor.6 Not tainted 5.10.240 #1
08:33:27 executing program 1:
syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

[ 2555.638228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2555.640206] Call Trace:
[ 2555.640779]  dump_stack+0x107/0x167
[ 2555.641560]  should_fail.cold+0x5/0xa
[ 2555.642375]  _copy_from_user+0x2e/0x1b0
[ 2555.643218]  move_addr_to_kernel.part.0+0x31/0x110
[ 2555.644243]  move_addr_to_kernel+0x4f/0x70
[ 2555.645116]  io_connect+0x47a/0x610
[ 2555.645875]  ? io_prep_rw+0x1050/0x1050
[ 2555.646732]  ? __lock_acquire+0xbb1/0x5b00
[ 2555.647616]  io_issue_sqe+0x1611/0x77b0
[ 2555.648438]  ? io_dismantle_req+0xdf/0x180
[ 2555.649339]  ? perf_trace_lock+0xac/0x490
[ 2555.650208]  ? SOFTIRQ_verbose+0x10/0x10
[ 2555.651068]  ? io_connect+0x610/0x610
[ 2555.651853]  ? lock_acquire+0x197/0x470
[ 2555.652659]  ? find_held_lock+0x2c/0x110
[ 2555.653509]  ? __fget_files+0x2cf/0x520
[ 2555.654340]  ? lock_downgrade+0x6d0/0x6d0
[ 2555.655211]  __io_queue_sqe+0x90/0x9d0
[ 2555.656019]  ? io_issue_sqe+0x77b0/0x77b0
[ 2555.656868]  ? __fget_files+0x2f8/0x520
[ 2555.657733]  io_submit_sqes+0x44aa/0x8610
[ 2555.658657]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2555.659675]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2555.660684]  ? find_held_lock+0x2c/0x110
[ 2555.661565]  ? io_submit_sqes+0x8610/0x8610
[ 2555.662480]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2555.663499]  ? wait_for_completion_io+0x270/0x270
[ 2555.664519]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2555.665495]  ? vfs_write+0x354/0xb10
[ 2555.666269]  ? fput_many+0x2f/0x1a0
[ 2555.667032]  ? ksys_write+0x1a9/0x260
[ 2555.667835]  ? __ia32_sys_read+0xb0/0xb0
[ 2555.668694]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2555.669801]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2555.670891]  do_syscall_64+0x33/0x40
[ 2555.671660]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2555.672727] RIP: 0033:0x7f9e767a8b19
[ 2555.673507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2555.677327] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2555.678918] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2555.680389] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2555.681876] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2555.683364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2555.684841] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:33:27 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

08:33:27 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:33:27 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x240, 0x0)
io_uring_enter(r5, 0x2f49, 0x7e45, 0x0, &(0x7f0000000140)={[0x1]}, 0x8)
r6 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r7=>r6, @in_args={0x8}}, './file0\x00'})
r8 = openat$random(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000280)={0x10000000})
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r9 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r9, &(0x7f0000000100)='net/nfsfs\x00')
r10 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r10, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x1, 0x81, 0x20, 0x1f, 0x0, 0x100, 0x20, 0x5, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x603f5d77b29661b2, @perf_bp={&(0x7f0000000340), 0x4}, 0x10000, 0x9, 0xa2f, 0x2, 0xb14, 0x1, 0x4, 0x0, 0x36c}, r9, 0x9, r10, 0xb)

08:33:27 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x291e, 0xc397, 0x0, &(0x7f0000000040)={[0xffffffffffffff80]}, 0x8)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1024, &(0x7f0000000240)={0x0, 0x7717, 0x4, 0x3, 0x243, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000140)=<r5=>0x0, &(0x7f00000001c0))
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r9, 0x0, 0x0}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r10, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r5, r8, &(0x7f0000000380)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000340)={0x7}}, 0x1)
r11 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r12=>0x0, &(0x7f0000000440)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0)
r14 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r11, 0x8000000)
syz_io_uring_submit(r14, r13, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r4, r13, &(0x7f00000003c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x9)

08:33:27 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$vcsu(&(0x7f0000000040), 0x80000000, 0x1)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r5, 0x8008f512, &(0x7f0000000140))

08:33:27 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x8000000)
r6 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.log\x00', 0x400000, 0x100)
r7 = open(&(0x7f00000001c0)='./file0\x00', 0x80, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6, 0x11, r7, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0xa, 0x0, 0x0, 0x7, 0xe, 0x1, {0x0, 0x0, r6}}, 0x5)

08:33:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x77359400}, 0x1, 0x0, 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x100000e, 0x11, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r5=>0xffffffffffffffff, @ANYBLOB="080000000000feff2d2f66696c653000"])
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x1, 0x5, 0x5, 0x8, 0x0, 0x80, 0x20800, 0xe, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000280), 0x8}, 0x4330, 0x74, 0x3ff, 0x3, 0x0, 0x2, 0x7fff, 0x0, 0x7fff, 0x0, 0x9}, 0xffffffffffffffff, 0xb, r5, 0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0, 0xd}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r10, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4004, @fd=r10, 0x6800000000000000, 0x0, 0x0, 0x9, 0x1, {0x3}}, 0xfffff801)
r11 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r11, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r6, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r11, 0x80, &(0x7f0000000080)=@ethernet={0x6}, 0x0, 0x0, 0x1}, 0x1)
bind$bt_sco(r3, &(0x7f0000000040), 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2555.910143] cgroup: fork rejected by pids controller in /syz4
08:33:27 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 77)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:27 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:33:27 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
io_uring_enter(r5, 0x577a, 0x1b90, 0x0, 0x0, 0x0)

[ 2556.019493] FAULT_INJECTION: forcing a failure.
[ 2556.019493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2556.021237] CPU: 1 PID: 12864 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2556.022231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2556.023404] Call Trace:
[ 2556.023783]  dump_stack+0x107/0x167
[ 2556.024310]  should_fail.cold+0x5/0xa
[ 2556.024860]  _copy_from_user+0x2e/0x1b0
[ 2556.025461]  move_addr_to_kernel.part.0+0x31/0x110
[ 2556.026175]  move_addr_to_kernel+0x4f/0x70
[ 2556.026782]  io_connect+0x47a/0x610
[ 2556.027308]  ? io_prep_rw+0x1050/0x1050
[ 2556.027885]  ? __lock_acquire+0xbb1/0x5b00
[ 2556.028486]  io_issue_sqe+0x1611/0x77b0
[ 2556.029052]  ? perf_trace_lock+0xac/0x490
[ 2556.029648]  ? SOFTIRQ_verbose+0x10/0x10
[ 2556.030216]  ? lock_chain_count+0x20/0x20
[ 2556.030805]  ? io_connect+0x610/0x610
[ 2556.031345]  ? lock_acquire+0x197/0x470
[ 2556.031907]  ? find_held_lock+0x2c/0x110
[ 2556.032483]  ? __fget_files+0x2cf/0x520
[ 2556.033044]  ? lock_downgrade+0x6d0/0x6d0
[ 2556.033639]  __io_queue_sqe+0x90/0x9d0
[ 2556.034193]  ? io_issue_sqe+0x77b0/0x77b0
[ 2556.034773]  ? __fget_files+0x2f8/0x520
[ 2556.035345]  io_submit_sqes+0x44aa/0x8610
[ 2556.035955]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2556.036654]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2556.037335]  ? find_held_lock+0x2c/0x110
[ 2556.037918]  ? io_submit_sqes+0x8610/0x8610
[ 2556.038531]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2556.039220]  ? wait_for_completion_io+0x270/0x270
[ 2556.039900]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2556.040555]  ? vfs_write+0x354/0xb10
[ 2556.041076]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2556.041726]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2556.042488]  ? ksys_write+0x1a9/0x260
[ 2556.043023]  ? __ia32_sys_read+0xb0/0xb0
[ 2556.043602]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2556.044355]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2556.045086]  do_syscall_64+0x33/0x40
[ 2556.045614]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2556.046340] RIP: 0033:0x7f9e767a8b19
[ 2556.046862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2556.049459] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2556.050516] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2556.051519] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2556.052512] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2556.053519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2556.054517] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:33:45 executing program 4:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:33:45 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x7}, 0x0, 0x100000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:33:45 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 78)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:45 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_enter(r5, 0x43fd, 0xf8c5, 0x3, &(0x7f0000000040)={[0x8]}, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:45 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4240, 0x7, 0x1, 0x0, 0x0, 0x0, 0x90e}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:45 executing program 3:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x100, r1, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0xc0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'eth', 0x3a, 'bond_slave_1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x68f3}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffd}]}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5d1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xf97}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x89}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffffffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}]}]}, 0x100}, 0x1, 0x0, 0x0, 0x4}, 0x4000801)
r2 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r6, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r7, 0x80286722, &(0x7f0000000280)={&(0x7f0000000440)=""/188, 0xbc, 0x0, 0x9})

08:33:45 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:33:45 executing program 2:
r0 = syz_io_uring_setup(0x3864, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2007, @fd_index, 0x0, &(0x7f0000000340)=""/231, 0xe7, 0x3, 0x1, {0x0, r4}}, 0x3ff)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x44d3, 0x373e, 0x0, &(0x7f0000000040), 0x8)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2573.542458] FAULT_INJECTION: forcing a failure.
[ 2573.542458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2573.544307] CPU: 1 PID: 12990 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2573.545237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2573.546299] Call Trace:
[ 2573.546641]  dump_stack+0x107/0x167
[ 2573.547108]  should_fail.cold+0x5/0xa
[ 2573.547601]  _copy_from_user+0x2e/0x1b0
[ 2573.548108]  move_addr_to_kernel.part.0+0x31/0x110
[ 2573.548730]  move_addr_to_kernel+0x4f/0x70
[ 2573.549266]  io_connect+0x47a/0x610
[ 2573.549737]  ? io_prep_rw+0x1050/0x1050
[ 2573.550255]  ? __lock_acquire+0xbb1/0x5b00
[ 2573.550829]  io_issue_sqe+0x1611/0x77b0
[ 2573.551338]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2573.551997]  ? perf_trace_lock+0xac/0x490
[ 2573.552516]  ? SOFTIRQ_verbose+0x10/0x10
[ 2573.553031]  ? io_connect+0x610/0x610
[ 2573.553510]  ? lock_acquire+0x197/0x470
[ 2573.554019]  ? find_held_lock+0x2c/0x110
[ 2573.554537]  ? __fget_files+0x2cf/0x520
[ 2573.555033]  ? lock_downgrade+0x6d0/0x6d0
[ 2573.555553]  __io_queue_sqe+0x90/0x9d0
[ 2573.556043]  ? io_issue_sqe+0x77b0/0x77b0
[ 2573.556589]  ? __fget_files+0x2f8/0x520
[ 2573.557098]  io_submit_sqes+0x44aa/0x8610
[ 2573.557644]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2573.558266]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2573.558880]  ? find_held_lock+0x2c/0x110
[ 2573.559393]  ? io_submit_sqes+0x8610/0x8610
[ 2573.559937]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2573.560539]  ? wait_for_completion_io+0x270/0x270
[ 2573.561140]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2573.561727]  ? vfs_write+0x354/0xb10
[ 2573.562214]  ? fput_many+0x2f/0x1a0
[ 2573.562668]  ? ksys_write+0x1a9/0x260
[ 2573.563143]  ? __ia32_sys_read+0xb0/0xb0
[ 2573.563655]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2573.564309]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2573.564954]  do_syscall_64+0x33/0x40
[ 2573.565421]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2573.566066] RIP: 0033:0x7f9e767a8b19
[ 2573.566563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2573.568849] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2573.569803] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2573.570732] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2573.571635] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2573.572577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2573.573462] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:33:45 executing program 4:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:33:45 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:33:45 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r5 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x1, 0x6, &(0x7f0000001880)=[{&(0x7f0000000340)="51b14290e3e085cd32d9653bfdc5a6c75a0eb7b671db5517f39ad340030e81539a5278f80622df3400993448ceb677f61e59cff10e403988730497c1998fb87f6f7f6cb34e47ecbfd33db23bdd29309d56498b44c7dd938026639b919c30271d93d95c7ad39dc0d291e098814db55f3356790466c220167df98a653b2fa329ce6864e6e00408efc037bf38f7846f8b611ffa737aa926eb6707c1fe36a4f6dcc42771689275d16cdcc084f83e46e01079848aabeee552c28dbf8f16d34b244a53f399e8538a18de980c092bea7b9a64c95f69e2f8507804e61b65806f50079d17684f031b169cee51e63e08583df8720d83f49dc876e175", 0xf7, 0x6}, {&(0x7f0000000500)="e25160d3505b416618c5f751bcc9921efcd3cdd77dabb4bb04aee826c44c30b200b30f6ebabdf461b158c6e56e2f740281e398fb70e7a16484298297bca9f933b7910ae7de9b70c78fa9819031eb6263c09407ea514de6102c2e23bb6742070e9c1dfb84598b60cdfd5883161cfae005f7bb8d8ff52cd91667055d9551555512b9437b", 0x83, 0x45e}, {&(0x7f00000005c0)="6c6753c1c5f7eb6e316502d78d583d0e025d4c6728eafe0f92a23d8b622636e2c92efef48824f9bfe10420213c0760d88aab0c6e8a56b489a97be04d696dd26e071569bd971ad8c2b359a529e83638ad998a3be6ff57742539b2397f5d325bfe0ec187b751296505d833aba5d79468539d391082475ebbcfa14cd7b833d211f0d45580e275c45e9b51ca6bbf9cb7827f1182d8af15ea8d54c02d8e695ff612058b20b6ae4d12a63bb11945012e90a88e5a5b17c55cf83a6d54eb5316130729f5ab9334d902251ed2c4e1e15ed781744e9b19905b1246497a342e6cdd5f07", 0xde, 0x3f}, {&(0x7f00000006c0)="3acb67b6e4f0f2575620096159920e0587fc4fb94b689e92de1f0bcc08d89d4a904bf25f5a16e598f677fc1fd23145649ebd7951c1abcb0b79eb2b8eeabd717642d66f35beb2c5c2c87efa561b88628173937fc5f2b31da0e126400b3fc5045a1a4bca925e47f3d20d9daa3e3825fb01b9c7bb486661a86f2f3208169d05f9caefce5f9da0861f3092a2059d4cdfc292f77aaa9f88655c8da69a7e4a8907d209aab5f40e6477c2e8e53bf9a0d4d60eacb1256a", 0xb3}, {&(0x7f0000000780)="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", 0xfa, 0x9}, {&(0x7f0000000880)="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", 0x1000, 0x4}], 0x100010, &(0x7f0000000240)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'local', '', @val={0x3a, [0x31]}}}}, {@huge_advise}, {@huge_within_size}], [{@hash}, {@dont_appraise}, {@appraise}, {@dont_hash}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x00'}}]})
fallocate(r5, 0x10, 0x6, 0x5)

08:33:45 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xb, 0x4010, r0, 0x8000000)
syz_io_uring_setup(0x121d, &(0x7f0000000340)={0x0, 0x4daf, 0x8, 0x1, 0x80, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000400)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xf, 0x0, {0x0, r5}}, 0x9)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000}, 0x8001)
r8 = syz_open_procfs$userns(0x0, &(0x7f0000000040))
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x0, 0x2004, @fd=r8, 0x3ff, &(0x7f0000000240)="8d6d34ca1800a90aca905f8545975b697cbd814d8b9bd8071c96220e4ddd880b9760c828ddaa4a639c30936563c38636ad550ce4ff95a536775b0ba6da78fc3362cca6c56bf194c36f88810e72d6c60b027f45a4e8", 0x55, 0xe, 0x1}, 0x10001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:45 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x8cf9cac41713cce7, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40, 0x1, {0x2}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(0x0, r2, &(0x7f00000005c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)="65d80181d5567e5d1828082011c4d302b2bb41eedfab81676ca88f5c5f7ab3d19b69c4811c3b84a2d739119a54cd85eafb2fcbf35959988878b7aa699f2af1464033087b2ffd898d5534d840df1f1eb276e18ba8034f6deb93bb863bdab532358e4aa332927fbc9c8c16bd5162628297f5329a8a6475551bb61c3f6dbe092cd8863c53f3b7eb755380c89b4530fe10aa629b431af6d10101572c80ec3d7785ee5988fdd90b98e5b73e585fad7e3a289ec4d14414ea79", 0xb6}, 0x7)
syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, r5, &(0x7f0000000140)=0x80, &(0x7f0000000340)=@can, 0x0, 0x80800}, 0x10001)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xda, 0xc6, 0x1, 0x3, 0x0, 0x0, 0x80010, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, @perf_bp={&(0x7f0000000040), 0xe}, 0x1, 0x0, 0x18, 0x6, 0xffff, 0xfff, 0x9c, 0x0, 0x247f, 0x0, 0x9288}, 0x0, 0x7, r7, 0xa)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:45 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2, 0x10, r0, 0x8000000)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r5, r2, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2573.838884] loop2: detected capacity change from 0 to 4096
[ 2588.058419] FAULT_INJECTION: forcing a failure.
08:33:59 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x4a67, &(0x7f0000000240)={0x0, 0x5182, 0x1, 0x2, 0x271, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:59 executing program 4:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r0 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r0, &(0x7f0000000100)='net/nfsfs\x00')

08:33:59 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000340)={{{@in=@remote, @in=@private}}, {{@in=@remote}, 0x0, @in=@initdev}}, &(0x7f0000000140)=0xe8)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x80)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:59 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f0000000240)=""/94, &(0x7f0000000040)=0x5e)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:59 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = accept4(r3, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x80, 0xc0000)
accept4(r4, 0x0, &(0x7f0000000140), 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
socketpair(0x2c, 0x5, 0x3, &(0x7f00000001c0))
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:33:59 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 79)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:59 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r4, &(0x7f0000000100)='net/nfsfs\x00')
r5 = signalfd(r3, &(0x7f0000000400)={[0x6]}, 0x8)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x4, 0x9, 0x0, 0x7, 0x0, 0xffffffff, 0x4103, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000340), 0xb}, 0x8000, 0x10000, 0x9, 0x4, 0x2, 0x793bba7, 0xfffa, 0x0, 0x2, 0x0, 0xfffffffffffffff8}, r4, 0x9, r5, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r7, 0x10000000)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:33:59 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
[ 2588.058419] name fail_usercopy, interval 1, probability 0, space 0, times 0
r5 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x1, 0x6, &(0x7f0000001880)=[{&(0x7f0000000340)="51b14290e3e085cd32d9653bfdc5a6c75a0eb7b671db5517f39ad340030e81539a5278f80622df3400993448ceb677f61e59cff10e403988730497c1998fb87f6f7f6cb34e47ecbfd33db23bdd29309d56498b44c7dd938026639b919c30271d93d95c7ad39dc0d291e098814db55f3356790466c220167df98a653b2fa329ce6864e6e00408efc037bf38f7846f8b611ffa737aa926eb6707c1fe36a4f6dcc42771689275d16cdcc084f83e46e01079848aabeee552c28dbf8f16d34b244a53f399e8538a18de980c092bea7b9a64c95f69e2f8507804e61b65806f50079d17684f031b169cee51e63e08583df8720d83f49dc876e175", 0xf7, 0x6}, {&(0x7f0000000500)="e25160d3505b416618c5f751bcc9921efcd3cdd77dabb4bb04aee826c44c30b200b30f6ebabdf461b158c6e56e2f740281e398fb70e7a16484298297bca9f933b7910ae7de9b70c78fa9819031eb6263c09407ea514de6102c2e23bb6742070e9c1dfb84598b60cdfd5883161cfae005f7bb8d8ff52cd91667055d9551555512b9437b", 0x83, 0x45e}, {&(0x7f00000005c0)="6c6753c1c5f7eb6e316502d78d583d0e025d4c6728eafe0f92a23d8b622636e2c92efef48824f9bfe10420213c0760d88aab0c6e8a56b489a97be04d696dd26e071569bd971ad8c2b359a529e83638ad998a3be6ff57742539b2397f5d325bfe0ec187b751296505d833aba5d79468539d391082475ebbcfa14cd7b833d211f0d45580e275c45e9b51ca6bbf9cb7827f1182d8af15ea8d54c02d8e695ff612058b20b6ae4d12a63bb11945012e90a88e5a5b17c55cf83a6d54eb5316130729f5ab9334d902251ed2c4e1e15ed781744e9b19905b1246497a342e6cdd5f07", 0xde, 0x3f}, {&(0x7f00000006c0)="3acb67b6e4f0f2575620096159920e0587fc4fb94b689e92de1f0bcc08d89d4a904bf25f5a16e598f677fc1fd23145649ebd7951c1abcb0b79eb2b8eeabd717642d66f35beb2c5c2c87efa561b88628173937fc5f2b31da0e126400b3fc5045a1a4bca925e47f3d20d9daa3e3825fb01b9c7bb486661a86f2f3208169d05f9caefce5f9da0861f3092a2059d4cdfc292f77aaa9f88655c8da69a7e4a8907d209aab5f40e6477c2e8e53bf9a0d4d60eacb1256a", 0xb3}, {&(0x7f0000000780)="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", 0xfa, 0x9}, {&(0x7f0000000880)="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", 0x1000, 0x4}], 0x100010, &(0x7f0000000240)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'local', '', @val={0x3a, [0x31]}}}}, {@huge_advise}, {@huge_within_size}], [{@hash}, {@dont_appraise}, {@appraise}, {@dont_hash}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x00'}}]})
fallocate(r5, 0x10, 0x6, 0x5)

[ 2588.060126] CPU: 1 PID: 13052 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2588.061046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2588.061989] Call Trace:
[ 2588.062300]  dump_stack+0x107/0x167
[ 2588.062711]  should_fail.cold+0x5/0xa
[ 2588.063144]  _copy_from_user+0x2e/0x1b0
[ 2588.063601]  move_addr_to_kernel.part.0+0x31/0x110
[ 2588.064154]  move_addr_to_kernel+0x4f/0x70
[ 2588.064633]  io_connect+0x47a/0x610
[ 2588.065045]  ? io_prep_rw+0x1050/0x1050
[ 2588.065506]  ? __lock_acquire+0xbb1/0x5b00
[ 2588.066017]  io_issue_sqe+0x1611/0x77b0
[ 2588.066466]  ? io_dismantle_req+0xdf/0x180
[ 2588.066945]  ? perf_trace_lock+0xac/0x490
[ 2588.067413]  ? SOFTIRQ_verbose+0x10/0x10
[ 2588.067874]  ? io_connect+0x610/0x610
[ 2588.068304]  ? lock_acquire+0x197/0x470
[ 2588.068752]  ? find_held_lock+0x2c/0x110
[ 2588.069214]  ? __fget_files+0x2cf/0x520
[ 2588.069662]  ? lock_downgrade+0x6d0/0x6d0
[ 2588.070140]  __io_queue_sqe+0x90/0x9d0
[ 2588.070579]  ? io_issue_sqe+0x77b0/0x77b0
[ 2588.071042]  ? __fget_files+0x2f8/0x520
[ 2588.071502]  io_submit_sqes+0x44aa/0x8610
[ 2588.071986]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2588.072546]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2588.073090]  ? find_held_lock+0x2c/0x110
[ 2588.073554]  ? io_submit_sqes+0x8610/0x8610
[ 2588.074050]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2588.074595]  ? wait_for_completion_io+0x270/0x270
[ 2588.075141]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2588.075666]  ? vfs_write+0x354/0xb10
[ 2588.076087]  ? fput_many+0x2f/0x1a0
[ 2588.076497]  ? ksys_write+0x1a9/0x260
[ 2588.076928]  ? __ia32_sys_read+0xb0/0xb0
[ 2588.077395]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2588.077994]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2588.078579]  do_syscall_64+0x33/0x40
[ 2588.079001]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2588.079578] RIP: 0033:0x7f9e767a8b19
[ 2588.079996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2588.082085] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2588.082941] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2588.083747] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2588.084563] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2588.085366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2588.086189] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:33:59 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x0, {0x0, r10}}, 0x9)
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
readv(r11, &(0x7f0000000040)=[{&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000240)=""/109, 0x6d}, {&(0x7f0000000500)=""/97, 0x61}, {&(0x7f0000000580)=""/189, 0xbd}], 0x4)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2588.160749] loop2: detected capacity change from 0 to 4096
08:33:59 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r5 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x1, 0x6, &(0x7f0000001880)=[{&(0x7f0000000340)="51b14290e3e085cd32d9653bfdc5a6c75a0eb7b671db5517f39ad340030e81539a5278f80622df3400993448ceb677f61e59cff10e403988730497c1998fb87f6f7f6cb34e47ecbfd33db23bdd29309d56498b44c7dd938026639b919c30271d93d95c7ad39dc0d291e098814db55f3356790466c220167df98a653b2fa329ce6864e6e00408efc037bf38f7846f8b611ffa737aa926eb6707c1fe36a4f6dcc42771689275d16cdcc084f83e46e01079848aabeee552c28dbf8f16d34b244a53f399e8538a18de980c092bea7b9a64c95f69e2f8507804e61b65806f50079d17684f031b169cee51e63e08583df8720d83f49dc876e175", 0xf7, 0x6}, {&(0x7f0000000500)="e25160d3505b416618c5f751bcc9921efcd3cdd77dabb4bb04aee826c44c30b200b30f6ebabdf461b158c6e56e2f740281e398fb70e7a16484298297bca9f933b7910ae7de9b70c78fa9819031eb6263c09407ea514de6102c2e23bb6742070e9c1dfb84598b60cdfd5883161cfae005f7bb8d8ff52cd91667055d9551555512b9437b", 0x83, 0x45e}, {&(0x7f00000005c0)="6c6753c1c5f7eb6e316502d78d583d0e025d4c6728eafe0f92a23d8b622636e2c92efef48824f9bfe10420213c0760d88aab0c6e8a56b489a97be04d696dd26e071569bd971ad8c2b359a529e83638ad998a3be6ff57742539b2397f5d325bfe0ec187b751296505d833aba5d79468539d391082475ebbcfa14cd7b833d211f0d45580e275c45e9b51ca6bbf9cb7827f1182d8af15ea8d54c02d8e695ff612058b20b6ae4d12a63bb11945012e90a88e5a5b17c55cf83a6d54eb5316130729f5ab9334d902251ed2c4e1e15ed781744e9b19905b1246497a342e6cdd5f07", 0xde, 0x3f}, {&(0x7f00000006c0)="3acb67b6e4f0f2575620096159920e0587fc4fb94b689e92de1f0bcc08d89d4a904bf25f5a16e598f677fc1fd23145649ebd7951c1abcb0b79eb2b8eeabd717642d66f35beb2c5c2c87efa561b88628173937fc5f2b31da0e126400b3fc5045a1a4bca925e47f3d20d9daa3e3825fb01b9c7bb486661a86f2f3208169d05f9caefce5f9da0861f3092a2059d4cdfc292f77aaa9f88655c8da69a7e4a8907d209aab5f40e6477c2e8e53bf9a0d4d60eacb1256a", 0xb3}, {&(0x7f0000000780)="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", 0xfa, 0x9}, {&(0x7f0000000880)="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", 0x1000, 0x4}], 0x100010, &(0x7f0000000240)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'local', '', @val={0x3a, [0x31]}}}}, {@huge_advise}, {@huge_within_size}], [{@hash}, {@dont_appraise}, {@appraise}, {@dont_hash}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x00'}}]})
fallocate(r5, 0x10, 0x6, 0x5)

08:33:59 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, 0x0)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:33:59 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 80)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:33:59 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

[ 2588.350128] FAULT_INJECTION: forcing a failure.
[ 2588.350128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2588.351649] CPU: 1 PID: 13096 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2588.352451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2588.353390] Call Trace:
[ 2588.353701]  dump_stack+0x107/0x167
[ 2588.354137]  should_fail.cold+0x5/0xa
[ 2588.354594]  _copy_from_user+0x2e/0x1b0
[ 2588.355065]  move_addr_to_kernel.part.0+0x31/0x110
[ 2588.355641]  move_addr_to_kernel+0x4f/0x70
[ 2588.356140]  io_connect+0x47a/0x610
[ 2588.356566]  ? io_prep_rw+0x1050/0x1050
[ 2588.357055]  ? __lock_acquire+0xbb1/0x5b00
[ 2588.357548]  io_issue_sqe+0x1611/0x77b0
[ 2588.358019]  ? io_dismantle_req+0xdf/0x180
[ 2588.358512]  ? perf_trace_lock+0xac/0x490
[ 2588.358996]  ? SOFTIRQ_verbose+0x10/0x10
[ 2588.359466]  ? io_connect+0x610/0x610
[ 2588.359912]  ? lock_acquire+0x197/0x470
[ 2588.360377]  ? find_held_lock+0x2c/0x110
[ 2588.360855]  ? __fget_files+0x2cf/0x520
[ 2588.361313]  ? lock_downgrade+0x6d0/0x6d0
[ 2588.361803]  __io_queue_sqe+0x90/0x9d0
[ 2588.362261]  ? io_issue_sqe+0x77b0/0x77b0
[ 2588.362734]  ? __fget_files+0x2f8/0x520
[ 2588.363192]  io_submit_sqes+0x44aa/0x8610
[ 2588.363684]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2588.364247]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2588.364800]  ? find_held_lock+0x2c/0x110
[ 2588.365262]  ? io_submit_sqes+0x8610/0x8610
[ 2588.365764]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2588.366357]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2588.366964]  ? trace_hardirqs_on+0x5b/0x180
[ 2588.367460]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2588.368085]  ? __x64_sys_io_uring_enter+0xd/0x1b0
[ 2588.368632]  ? __sanitizer_cov_trace_pc+0x30/0x60
[ 2588.369183]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2588.369778]  do_syscall_64+0x33/0x40
[ 2588.370196]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2588.370770] RIP: 0033:0x7f9e767a8b19
[ 2588.371188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2588.373260] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2588.374129] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2588.374935] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2588.375731] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2588.376541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2588.377351] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2588.384357] loop2: detected capacity change from 0 to 4096
08:33:59 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
fsetxattr$security_capability(r5, &(0x7f0000000040), &(0x7f0000000140)=@v3={0x3000000, [{0x1000, 0xfffffffc}, {0x200, 0x9}], 0xee01}, 0x18, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:33:59 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r5, 0xc0505350, &(0x7f0000000d00)={{0x0, 0x7}})
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f0000000040), &(0x7f0000000140)=0xc)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:00 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f0000000040), &(0x7f0000000140)=0x4)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$incfs(0xffffffffffffffff, &(0x7f00000001c0)='.log\x00', 0x0, 0x80)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000440)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000000c0)={'lo\x00', <r10=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@local, r10}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32=r10, @ANYBLOB="00010000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f007f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00"/158]})
sendmmsg$inet6(r5, &(0x7f0000004f00)=[{{&(0x7f0000000280)={0xa, 0x4e21, 0xff, @private0, 0x9}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000340)="9bc83030a713b6fa171f167cfe44b36d8fddcbaff1c8849b2bbcab85d3830843b8efd80a8eccc2272368e5d2ffe7087d74af593cbcd326870b27f27f6824e6f66d19d9ac65e65f51b5e78602aa9c8291b40025678d75f4416d233db96f7f29c523102e1b90aa2093f67064781111c49f23d3117b700f051457f66cdc50d8b650ab86f40ce2d2e5928789747f2b2b4c9a79da2fa1ef2e7ed65d00235f751bcd06d3c603baacb49a12", 0xa8}, {&(0x7f0000000400)}], 0x2, &(0x7f0000000540)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x6}}], 0x18}}, {{&(0x7f0000000580)={0xa, 0x4e21, 0x80, @rand_addr=' \x01\x00', 0x8}, 0x1c, &(0x7f0000001940)=[{&(0x7f00000005c0)="f62d7503f12d4034d005603f13ef1296522c6cb62bf9ea88d726b366ffafe9829558949d00e95e80df82bce0de96c6b3007a0398bab4713ba6c178995f7ff2d3a3299bf8afa960e2dc654c0aa8b5b2063f817e4bb02c0e2d7090", 0x5a}, {&(0x7f0000000640)="0e125bb571978668a4e3e0b92fbc8bc194c0e3cd3e8ffa0f767e99a5656445f7eb639941416b88dfe9a45b6e9ea3c5b42d304b2b995f3a078792726db9c5f95e81b14aaf03e30eeb79a6", 0x4a}, {&(0x7f00000006c0)="0c11ddcc5013241410b64988345c4e3626567c93b6eb89013dbb63cce472b9248d298118df6cf614d5c3d1ef92b6c665e66d00847d0a2ca865209cecae4b7de59a9b48d9f7ae6179b76e9583154d4478e76de715b22603258606aabcf9461b7bec6150d15f875f0f6ccf396feb13d6ea915fa04502d525ba19262a080a3dc6c0", 0x80}, {&(0x7f0000000740)="6719a60f868f65bae6266686e4a85df3f0772c8f32c62030c36e0713be8d04906e94a157093b11fb397ce05a4eeccd3b5f98a649f5c00f6b404fd8be70e5b22def156e3f4b07c1324d1da3abaf5d90e192cd9b1a35a6148d01a23796f6977f267d976350af", 0x65}, {&(0x7f00000007c0)="0f194b6e2499bae5caa92f90de07ee17d237843af154f0b6090685cdb8469cfec38334b199a72f79c29f50fb2c928565a2c5f02f75bd327d6f121e0f6ff7abd43c784a5819764211071a8a0978a68ac4f6571f2bbaa654903d3ded8a556d8831ca073ef59d78900cad5108c02519db42a6ff865c4a8d3e6353f103ffba76328d9ec8db18000e73eac4508bb2acaae5a96911db4255c1ef5fc3a578f1f3c0eced2ec3b6f260d3d63825510fda5134b159e3eb33823b56fa89c94ac502d737a91b758492d86fae315f5fc88acecc0c2c3e3c6d4de6ba8e00bd4df5ebd3b5abec0956c826fe71d7e4621771abc7d3e907ab91cdfd25688f3b26a745ce151dcd60c9ff3c48f90f90f6ff18513a8ceba799afb1f2f6b0ba2e416f97d1e9b00e2ab71b2500a714429d9ffec865bcf6653eaf40e1a43d646d2469c43aa66d8e8b26a2fce33b6a5694bab51de10854607af8d7947997e6e8fbde2a6f4153452368b2ad125768c4d8f0b405d54288edf06e635801d8afdebf01af565d5cc1751dd0dc626376034dbd83a00ad21a3e7a043c75d9fe72108100a52a908cca31479f876f7bd53b1fd74029c2c273ddced22056135dd99b79419c8cfc1baf30d4b38892c0c9356f302fac6aa83d103cf04eea89dee16515bb9f0ec4d1ff02bfe628993b9c469c2a4f4338781a2f45bf231aa6ecdcd6f414948fe7fe773d4b7cbd81315639a3eed1f754e1cec6832b9ed3d500dc3efd24370650078713216493baa843c7fda3d32c914c459d8869a0083e1bde711e96f86bfdbe18faf4ca8f1437a407fd2671fc5e844fecc1fe05fc92d5c1a2359fb4a39e1bd261ed13e033b54558034a8149e6aec4050b81b5c3f51970e3242a57ca804adba2b62de16a0edcc755a5360a621b850c607767312819fcacbca1af564104286732c27bb51e79e4384eeafce84a1577bc699b76e83b97a6543bbf451234712c5b4b92e77d53ffb1ca58278dde4528e1da6fdf151d08c8003894d9a16d027034f68d793aa90c90013ff00861bb6b802ef0d49f1d38bbc4534a98d4442046afae059298fa677af2eb37140d67d9ca04b8cb86efbad4af629d8b97d265089387d9057a8f37c84f4d7663d6ad37855a72a8cadfc0b6b873802d1d89754ff43bdf407a7707d49d45b796f311d1895e28ecc191fc30f0df56e100bffe78f005d202ca5caab77cfc25ad4260ebde6f9568b3e0e714e1f2e413f984efd144abe431fad9a475bf39c3255ac70321f24fe272ef80f1f0e453cde0327398bdbae4e54b43c0c271ce9cd1f663c06a3b47c85152254093bdc67d30d300813899c9e3d37cc3ad5da46579a0587ceaec78a472f3258bdaf1343c46ed5395879ebac68be6df1dd7bf99718e6b7a648a765565b503d0787382b3101a447b26cf7c442c7e3bb9dd91b0f07ac9adc486f59aea2044bff582ce8546bb5bbcdb57c1bd576a21c4b2667df96713ecd683df36501329922f3d03b809b2e53775d98b3dc54d608b19eb6f2e47d9a491b5bb326756b7c4119690652f84b3ef2103e304dab19afdae60533c805079faa72d2ad39e81f155b194f3a3fa1e3e787dff28c3811861c71d6dbaa0ba30ee9cf51349a7b32d3399414eb75d8c25e91348a3642e99e2e19310e5dadded3f0aead91e5cf46918a0bae155e2a9c80fae32cca1cd8838810c70e77df5f14012f4abda5d638845da3ce44a2cba2a88b268261b3d9672edce11a3fb3d736f667ca7621db0fc305cdd44f1d1ed02642a383701a3b7847711461805bbf708f9dfa6452ec538bd605f1e674115c951319afa4b676204456bda315a2f33783121dd19182e39afbc8c2219e5e54866ed9440edd87c30f59f8418ca29b597959f72f94583ec8f4405dacb2ecdaf1bf7991a6002e7f6dc4c790e7cff2bfbe457453f6bc11dad579cf5cf3ceebe01d778640b07074034ce578fc85e3654565d451ccda974ae7641cc4c9f2657c5984c78e0626b9af0a454689477c43ca2838e7c2ef8d8032cbeb08d5afa21aab46bf138d29c6fea70fac930ff5db4689091c0b357ad0672c72b2ff14f0fe9235f7c065031d5d855f3e690ee57e877171ee7c97b2793cffd72a2e941975d750ec060856e2cf4615761fb2ffde370c81a9829d71c31c2279b06d3d2991a44e14c8ee1570d1c488c9d6cc25f98383f99f8e74a15918cfe8e3e60c507bb81305752d5cd2358030b1312555f1b8d45442bdce071cb2783c453da5e66e8ab5929fa6e2fdeb9680d13f4ad569e300a6ad556105b4cead5d52aca517cb1a4a1d36fa967206fbbdad914c4b27d786932f4b68d9358e0c68adee2046e1a2c0a5237c6187260e7869b48d4d75b5ae6eb1a588a6474b850b138e70eaa443e81590f9afbcd7c00b4191fe25d7c8bf34ec1949235abbca862cb447452ece9e41827f4039edfa5bd4226b35751cc44ea452a57b4d0274aeb7de9c0f0ec05c6f1e9fad9950a15aab1603680d9b3b9b810ba454d6f314056a1d045604b1a336b423a198cf24d8868d5797eb9c6f9d2d6cdd2759f2153c5eebd755e4cfe5c5b8048471fc3217e19d5dc3177d0bc14b0f7647c029d2d6ffe68f5d00a96c76a88ba74721017bda22270ceb25fce8caefc8adb011d6c236b6f1373ebd5c161ecb939dc1cd7ee6bc9f3bd5170153c066f2516b8dfb5e90cada0039753e8ecfbb72ddde0b72826bf16d07279a147b31e1fcfdceb4a21a9d64f904228f77c260d42195a47e92af1f423b83223d3474b524811913b1bced21e17fbf878e50c5f5e4e1e99384bebb764ce246abd7fdb30507c592c1db36fb7bd62d534fc1b87428100c67aba2c1177f7db28ece238f5ca235c86f66b46518e505947b82e3fdd6478b2b7e576c148a04891dbf4c1930917fcbb05a3660c6a19eaa6b618fa952dd667cc6b9a01fcc4c4af0a77256bc3c59021d7b24e67d93577ab999538bda5ad9e638b12239a4ebd9afba27dbec87b3f378a28c2e9b6a470f38786bcba99a5ce9091b349035dae9a38b104b8fef4caf8f209ee8a26fb3bb5102e04c2da086602a23a95ad86dbc09a3719640075d0baacecf80fc9833cfc446d6aeaf2b1e345c9cb7871f92e43d3f67bd3d1bec020e15f8a3902ef70f978f494c64b34137e0ea91c751d9a8e42dfbda141c77f1b6833bfe67323009c12a27edf6ef1617d4b8309b91254eb73592805a77dd5d5361b82b6cf16585b2061a5466a015b4fe03d9470ddd8cda1c578c456ec891ed6486d475ebfc1f53dab343856dad6f34d84578dd87d6ae8a4e9bc8d016eb8c94c735a20498527331156df2b547895d75462a35484b67c279da43861b2ca82c1434699f32687521c4422dde09c2ccb3bf81f8f0edb8b51be940524cf3062410fef9134175f9589638916d5d34ebc8b77f375735316f74e646fd36e1bfed68e48d99f0c7f37beb6eb8d1202dd5ec7a618ccf646da50735780c93ef64c14020f8c5ac1634213557974fcd52f614019e643e431abf6a2c176f33bcc8cd0675f5eba098583944bb08b9b34526ef8c9c94fe2cb166f5020bb9da100e1533ac93df53e64db1e923728d8e231d6be7ad2dbf70e17fd2e98a8c41230b3a3098b963b8eba8d73b485dfc326ea5fdce04697750484164f2d79a6bc0ee08e76f61fefbaa8fa5e0a0332bd28fac415c29d2b45bed08dfd488fe262ca85eeaecb82f0a34b53bdc4379a981ea713021d08ea89ef0324c979728576589f390902bbe42580e4bda730bab39826d8465661fa118fe91a09f728e92762edc662f5fd8b139997fdc7029d5e3839e338cf01b3d6aca392aa6f23819644ba1e9a4ac90e2761bf77596a24d695718611db9c196a7fe267409b88cc47f36632d3a409c2785a83ca9af21d9f41d9fca4e8abaf011a370741e09663209512ec8536854539210f120830e32d4f579cd01b3d19ca67243ddd97a73428e8ef4820e75daf99d21075aab4f6a5adb5cf38de8e22e2c601a0ac1cfe205d87c2cd0c815da255e1c078a1bb9de8d83d83a07f82ed601adf0e7ca01974ff5dab0a77a98e0debcf7de5386eeaa3d3c394a5c319cb45b17922e10f0f71c95ba4a7a39d01cc0a76f775b4c896cd41757922fb12e6b9e436199477b537f33a0057d80a2b87488b1691c0eb401d8812fda1e4556b830970e715fa734bdcb668122cd41c6440b3bdf060606da5eb385f6e156bb36a1a8a6b4270b78eecec07fdeb4395624465a44d116399301f8f4f13c981ab775e7b0bc5c75c0893d84d2dd18725691114b52d139c37101ed4885306176ede3dbfa2912344ed71d34c24ed70d0d6fbfa469e77218f949a94a61b89f299b7c182a9538b333dd62496a740d7eacedde892e77b2f814f99d602ce2d7c835d7e18904851a0cd0d2ef11512e69a856738ba08990fcfa3a8febbe0efcfdae2b2f49c10e5963bc635c4b2afbbf7e8bc7ecad1aba3f2b2740ac4a9d685189b0804e95f35165187abce9ce1d490a8dc64b67afd384a3f6060a044fa23eeab57e2f5a85136152fba05b41055d6adde49cdd1ce2fe29efa656b3a6c04a93fcecd59b466ea9854fed9d26503637d759075286392dfe525f091e20b7b7aba49d01288e1a9eac61df7fdcb2558bafb2a301e382ed379d46085ddf88c2a52061eece7c5cf4f28076f4dee114b6b39c4f5802ce6b1869260d4045cafbe8eb680faade365ca3afbd290b72589fc2bae04138882ca8d228308760f855ed846989cf02b0b71dcec7c2a6be420172dfe9af03ad56e5d1ac19fada334d7d7525368132425efca68958712a46a2a0dbc7265e01dcd678216dadd8b58057d9975cf97c22466abde612c80a1e48180d456d0c64a82a116bb668cac2d4198af2a01af5c59764c46c53df3fd9db8cd2cc07a805377c308205640a1b3c9dfa43ca6d531f58d4498811d906573f2fc6a4017e55d4e13b8b09729fe5b09879a200950c9dab72b1443d1eba1858df1cbded4c7fca0f32ff23c0b12e0b9b4154e6583135ce643fb19b2431cda1329e55769f5c50e869d9ee3d554f9f2a46b8d48220adf71abd8deaf2ddf9afb1c3afc7a5e709e20761ca36d02abcfa8609d3f37350536ec955ccd94639c4c4c3999e18481d54cbbe0da71e91efd929646fd90df98f7bc4f3d1d6e788ddc85cbf8fe5e4f34581cc4c426b4371196bfa16390ceb11c8bbaa257060cfba6bf013ad85d87dfe339ba6f99653f02fb507abb4abe671c1303cf6d2cd39477ff25743a7e1cf47fe265bd58f3c46f4010d1aefdf8fb96ad8770d5bf356043469eead34bdcb1985f1b6a726a87e1b1852c5400e7621116e4aede4bdb8e33d32b54b99c135e901fd922ccd7ecabaf48d4f0a787659ebed8312c3f740cf6c3e2da491f00bb31f0ca44086b3724b2bcf1d9638014ea09f5c7e0bcd53032122fdd6cb12f0860dc3dbf8c22f56fe2d4294e6f2455432dda015fec0b417b1a9a3066737f8b8c789226bb3735002b8ea79186feb29cca1fc50df967627a62770de7f95ed1e3cde1bf4e6cddcea94328880112efa4748d0c5d58d363ace416aa7b4421621a7760fa9c352086d6a588e5505b1a947d704d23bee0d497644211010835566a0e6d2d663874294b3c2b30ce081d0e69e65c3f35d92bbf2856b9b810c006e8942fdb3943850ba000d8952d4825167d10ae2101ad2968099eddb4df42024a0617300bb62c6804f5986582341ca1d9b675420f1f28bf8bd2b7884cce86490525941ab6e57a623c76a55eedb9f55f6d87eafba05fa26ffbcf6e81ae40691940008a5a8011795dfcf13120d3ba8e8025e8", 0x1000}, {&(0x7f00000017c0)="2e646964d7e09672be4a99ff3e924010f6c8bacbcd3ec1d33d1c0ec922a37f926b462ca87420ba495d11d2a2aa3941cf76dd48aa65635d2789e814abcaceb2cbd6714d4d968fe8ad1bef0167b140cf3f70aa465ad331d34b058cc71eb1240dea1fc098db6d558b0d921e421ef07e31c9bc87bc9f64566cb1fdf2dc7a1f7568a0037463c854c243f97b6eec77959b466c283834377bf481727e7c37753efa2aef7c9dd453bcbc8c9237844e311123d0b05cd90bb047edd7982379a8414d0268abc700eacf20099b34f061ef3550b59ab7499d45b30ab51d46a4c1", 0xda}, {&(0x7f00000018c0)="3666c9b3dd76f9e9fe1633acef55a2b426d5ceec3b53085bebd9f419c84acbc52dde5a68748a74e1a0106bae49c254513c47a1ed8cf4893df9ac6d5e6af9e2d32e3ac87595", 0x45}], 0x7, &(0x7f00000019c0)=[@pktinfo={{0x24, 0x29, 0x32, {@private2={0xfc, 0x2, '\x00', 0x1}}}}, @rthdrdstopts={{0xf8, 0x29, 0x37, {0x84, 0x1b, '\x00', [@enc_lim, @ra={0x5, 0x2, 0x40}, @enc_lim={0x4, 0x1, 0x9}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x28, {0x0, 0x8, 0x0, 0x80, [0x7fff, 0x0, 0x4, 0x800000000000000]}}, @pad1, @jumbo={0xc2, 0x4, 0x1022cbee}, @generic={0x20, 0x90, "61445fa3bd653b122c89ea480cebcafae1b0f4dc94a9f7ea266e6facb7cffee53ca403a842c24ead2e83a11198fa6a739d5280679225f4a76bb96cab7fb1d0962abffe90134aeea2e786bbdfd98a41ef70ae70cff64b399b86e188ab7a1b7637063c41a4e97b31faa76e5a04f130202aefdfb4e3523957766d552c0f227e9b6ecc4e9bb4dfbaa70212e1df7f2d830f80"}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@private1}}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}, @tclass={{0x14, 0x29, 0x43, 0x7}}, @tclass={{0x14, 0x29, 0x43, 0x8}}, @dstopts={{0x60, 0x29, 0x37, {0x5c, 0x8, '\x00', [@padn={0x1, 0x1, [0x0]}, @generic={0x20, 0x2c, "62e8c398f7b94accfb23f2a7be1384ada65200afde18d3956985a0ea75f60490769f5f2c181ffb1425410627"}, @enc_lim={0x4, 0x1, 0x20}, @hao={0xc9, 0x10, @loopback}]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x45, 0x4, '\x00', [@ra={0x5, 0x2, 0x5}, @pad1, @ra={0x5, 0x2, 0x400}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @remote}]}}}, @rthdrdstopts={{0x160, 0x29, 0x37, {0x0, 0x28, '\x00', [@enc_lim={0x4, 0x1, 0xff}, @ra, @ra={0x5, 0x2, 0x61bc}, @ra={0x5, 0x2, 0x9}, @pad1, @generic={0xd1, 0xd4, "294c17e29054841f5ec61c383baf22cd646443b778241deb202954f760c74dee360abb13e731f384b06903965fdac94717b9230ecb2a47783102c2f210c59ff2cca9af9577c38a9ddd867726faeb19a8c97a970633d1e2bf5af05cef50d128d8d9f5277a3122e2ba4b189a1d75e6166e9ffc3fa21830d53244aa7c2f23f8379612d01251cfa563e0c38990c6fb67ef7612569da75291cd86dbc5ae76387def30e17448d15f947767dd351ac69e1f42f53ea09c5201fd1c9306234c86e2c9befcfed29f143fa260d56015e23bc03ea65f523117c5"}, @calipso={0x7, 0x58, {0x2, 0x14, 0x4, 0x2, [0x0, 0x80, 0x2, 0x8, 0x4, 0x6, 0x7e, 0x54, 0x7f, 0x1000]}}, @enc_lim={0x4, 0x1, 0x1}]}}}], 0x390}}, {{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000001d80)="2b28638b163df164326dd941b3afc4c7235390864d81d639b03db4a4ff15a128bbf78d677bb67f3464a3945f82c4a5cf927ba9b90ffa86eb127ccaddc0b01cb3e982d5dfb3d22bf81881dd7ce1c865d311caa7756d4872f3e9ba13b42d9c819a0028487cddd3af5c581ffbf67b89115a5b17b9635223870b05d12d8e48ee9b6d46dc61c54a168afa12e17eabe57a3e0ba13fd284bf7cf4b9269cef000d428a78c2e207959f94516c3162d89b45585ded77734132c307688b8c3849d97a337a88735a7624bf84c162ea9c38fd59b6d151229b8ad7c7ec48799dcecda3aba2cfdbcdaf85b7b8a13d1851c74df2ff7fc6efd3d55e4e5958f0", 0xf7}, {&(0x7f0000001e80)="ce5626d7e64b3910e0a9b350def034368c26c7c879f0c15b56eb97346c85154cf43c4b17a2d5690e05c00e68e0cac639549ed5ea28317c42655fad", 0x3b}, {&(0x7f0000001ec0)="89cccd036bf4a77af9de938c4a647fa649", 0x11}], 0x3, &(0x7f0000001f40)}}, {{0x0, 0x0, &(0x7f0000003000)=[{&(0x7f0000001f80)="c68c58d7ef171941d5d4dca816540a1b86bb5c9e3cf7a352bea9140766c9b1ba4c5648081a288e5be2ed074128042605c74fda15ad24e88c49548933084337c17368f81cf84a54033e6efcb6a3", 0x4d}, {&(0x7f0000002000)="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", 0x1000}], 0x2, &(0x7f0000003040)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x100}}, @tclass={{0x14, 0x29, 0x43, 0x617}}], 0x30}}, {{&(0x7f0000003080)={0xa, 0x4e23, 0x9, @mcast1, 0xffff}, 0x1c, &(0x7f00000032c0)=[{&(0x7f00000030c0)="d88ab7fefbf9b767", 0x8}, {&(0x7f0000003100)="5c955e522ef369f6e8dd4bccf65d7e1c6b110fcb95ad096dcdfbb04c5e14660418f201f45f719064605b876b37166f2d840d5e77985840cd6aab22715e68b664b957188133b6166ff3e08f56c9f70269babcff8b7136d117279260c5f828e1aa3505e2ab5f39dbefc360d558dabcb74068dc50851530373c6cefb23989fc387a6dc3cd7682e8b92dff308b1bc6a9ad26393f83a1f342d0154b103fe6407a2bc294ba0d930ae967c7cfbef56f5d7ba5392ca0543bd63bb01f92", 0xb9}, {&(0x7f00000031c0)="9eb232ae1b70f259453eed5aff0ba3a1bd25cdebf1429b986272e710eb40e027bd5757c82d5a2a188e7ce5680a4a8ad4ddd7bd10a0bf02fce23184000b58f28a068f355e3d123622ae06cb2da2e3adc438a81f875ba26456ebd69a4a682f1b45b1aac3f073c8d460ca957b12cf6fb894d2b3fd8d63d5b597299e80003d545a958fad632797d7c7b248abee08bbb32ad86a369184b0cea857f00871f5075fecd7d0c9e652d6a997665224cd0e96632d9102dd34dbe826eb6dfe8b55d079ac528c381592debc07a2c3ab796f8e29e82bc4a0b42b370dedd5e860a0ca5bb7", 0xdd}], 0x3, &(0x7f00000033c0)=[@pktinfo={{0x24, 0x29, 0x32, {@loopback}}}, @rthdrdstopts={{0x118, 0x29, 0x37, {0x0, 0x20, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x76}, @generic={0x6, 0xec, "7daac6cc84037ad4b621e95397b41111eda38df7489a7d8b9d139f254d2ee48abcf88bce79eb0ae63d31d3f437ad74f0dafb792312c0c3c9e7ac19355ed92c2841b41849b7a3c3cf8ad362ed04b46b91b48aefee190e21d64b5afe59d2522be3354fe55264e5752d145c929b0946b08ca569e24dcde91b4adf8eefb62b00178aa3a74316eb1a7f3b1ceb47da394b5a892c5718e58f266f089f7710bd3b47ecf8b1c1268988697d2e468385b7815785752c21a53d13ab9074d572cd2a9d51f7b6b0020b5cb5cbe473b4a6b140f36f29fced346c618b694130cede54389665d76776f8f69f5d17f480db633d4c"}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}, @rthdr={{0x58, 0x29, 0x39, {0x1, 0x8, 0x1, 0x1, 0x0, [@private1, @local, @empty, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @hopopts_2292={{0x98, 0x29, 0x36, {0x3c, 0xf, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x3}, @padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x20, {0x0, 0x6, 0x2f, 0x12, [0x0, 0x401, 0x9]}}, @jumbo={0xc2, 0x4, 0x7}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @hao={0xc9, 0x10, @mcast2}, @hao={0xc9, 0x10, @mcast1}, @generic={0x8, 0x11, "4b907e640cade5a46788ed98dd8ef83f59"}]}}}], 0x258}}, {{&(0x7f0000003640)={0xa, 0x4e24, 0x8001, @loopback, 0xffffffff}, 0x1c, &(0x7f0000003980)=[{&(0x7f0000003680)="8695a73806cfdbedb2ccc8", 0xb}, {&(0x7f00000036c0)="028d6324c5bfbddcc8b4377e6011106c171d281ebdc19813fd331fd0cf5314921c1baee8885361fc8e64ff198eff2b4246d6f0dd30cc42e0c763588f8fec2434da291e34cab1196c7a4f6152a2d1983a0bcfc41f952445c460921b27a6ef6c52330c0ff6b57d0deab04c0e70ac591932ccf88f85f5d5e932ad09ff1c8cd93bde4e92f54798d19378f5acea5d82e64c0955a4ff08a09d9dd922d2c77dc607fe07d61aa6b905c8b452873c996c9022ed17361aeb3c364a47974ffc7141e516099ab2e4cd3de1dc7f43975ad6c27d92bfa997b9e2c36647c7cc5ae50e09021f4c0bf1956d7855d61ac6b944241f82709684a61080b3", 0xf4}, {&(0x7f00000037c0)="c60805e64b69f10295ed0637afd75b514f867fb082579b48f8f8b6f8f5d94fafabf5d7d50ec9ba106a3f6a480b540ca6ea77e2a84ce42be6b09c63cb3b8ef136aec9777f49f81deee16e47ed7b80d80f58cce2e393ac7b34fe6d2683a86022c9fefba1be6af21ae1567653bcbcd1564bcf4cca0f4a6e2a7523d38a928523d7224bfe5bdc82451e2643d01def4635f7e045e879ed72d1328b7cd1bebcf135cd3ef4035eee1b2b613a859fbb7b667e98943d363ac648592a444b", 0xb9}, {&(0x7f0000003880)="28c0e1b11c4b5b52141e857247cac8c5f6318f7bf138e71ad5a8bfa6aa1c0980abdc913661800eb795d4200ea808d20fb0fb21d646063f18ee078743d7701fea10596997d2ef5d48be83a50b75c36891d27c4d89d3a91dc18c46d59e27233e6a6a674f6ea8ac74452258ae9c4dc9aa2f9c2ead61fa3c743ce2bbaf5e77f32c0225994c4cff04b028e80f739a48bb5e3e", 0x90}, {&(0x7f0000003940)="e87bd04cf8c43159ad1bedf5dc95b386a7ea467fafab7ab76f368cd14a48681dfe92b232201f7b0386f9739e717a7d69", 0x30}], 0x5}}, {{&(0x7f0000003a00)={0xa, 0x4e22, 0x9, @private2, 0x1c4}, 0x1c, &(0x7f0000004e00)=[{&(0x7f0000003a40)="a8a940097d5ff66665a5f0f286a34f39b94464b191edc49b465563db118ac45df4cf52626d37c57c7857a9bf46a5cdcc626859cbff6d37b73e3f5a4dbacb1bc228fa3703a6aee49df53d1151197d6f092b0e6a6c3a7b2129644d07dab04e98fbf919cebcdef6068e19f117d9f0d90ebb1e0f88cad9e071bc428faea4c71cc3e5d8d01b5ea7a24f70500bf07c4c47e79205028336c2b517583307ab6d95e4f67abcdf4a7d3e0207ba500c60a557fbb313054429d0ab58a6f740583b11f4cd34f7f180b69761b533ef9a2225a4b4f005d62e6af6010746c3af", 0xd8}, {&(0x7f0000003b40)="c6239818c9f46a8841e9d98b6dc564bcaac5872453e22babb87e0b833359f40bbd010c0f329c282e466d887053d0b4083c7bf823d0a48a8cd4b5f893f4d48c299952a96d4d355a03cfa3abce1a11991220ac68d593a9bfdf9cd098ace95003e92ee21dc818cabe45dc111d947b875c2fa182b2ac61aaa1e8aad4d939606eb3f90387e6bb64", 0x85}, {&(0x7f0000003c00)="86979bb6a7c91fc86d5949e2d53233df1615083b5128e2823f99d18a2a077a619ce85e52b8870a55a4d65798b41dc0eaf0076649fa8c5a8c9c58dd7d481214ba180be3c4bf6006175c69b7ba3c81fbf83985c645de2b70f771fec1938602638ce75450641bbaa8ea0e8e415708a10e4242de37545b12d98d8f0c035fad83a2af1959b5e21179121c22f5d1fa120668a66afc99380260f266e24412d32358935493c8f2a6cceeb7325a3831f48b02e821f378c7368b40c5919df002a00e162339374e6c68ca81a6d7720170a7ff00687b224aa632c88eb00b8c9e16d31e961559bf3a53553d28d276040866f079c8c833b05e827f019648574fb4fa8a", 0xfc}, {&(0x7f0000003d00)="aa660aca3f9f055fa580a6d62074a8723b8e735c36fcfd2dfadaf81da6d7a584954d4edb85b3a8d1a2c8e5679dec936146600a201691f8e2571070f11ac0af55c3919eeb033e389eaba519c8e6a8567d80f4942d0d280d67e0c8aa01b2b3564fb8d7308c555fd04349e74a0c7db2958b2d65c7c50da6ab694cb22b512730d8bc6de9e52ea8a4660255d9d6f39665b006d972ce710d16182480b106eb4cb7f251e6e46c0353880fc197bedef725d8688164ffec6eeae6252ac926286c29e50bb98083a9acb6d0ae6569468ef5d9cf780d24407e121cd0b7066dfb0b19399b6a88a964fbd614f72c4a5ad113", 0xeb}, {&(0x7f0000003e00)="4a42ced8cabd86ae323490771118998da1f60fa139ced54fb69e84d348d7cb2fde97c05f5f9ebf142c2ef8f729132356cfab41de39427748950f4da743ceb15096842065e5fbc4d5b7920085e6ad8068aad83d577e9e9c9eed2784dac21c52c4629800986ad84b72f131a1328cd52cf4335304188f4ad4d647d5d539118dd7e4e73565cedf6bdd7d425282e3b8d437842cf72815c41a7d95b0000e220ac30645f0c3ac744f2e2834fef39faeb7533ba9796a1fe45592316e1c3080e968c128cdb3eb8a6babb2e17ff90632967f717e283cf468b850508aa58f103957688075caf44efb5ebafd07c8aa3bf47649eda35c7227267ef5612395e2d32962cc052c400410f2a5fd34d874ea922c9ee3e6e5c2499ed696cb718a7565648ec8a905a39b76c2e987686f5a1614483c75d6e9e6e15217ce0fccc76840ba03a0f968d11323be4acd8b856b0a05f8a09bebbe17ec4865ef435ab93a39eda82d9708ecd7264830dd889cd9fd9f32e7457739d54d715db00dfe0a62aa7851d197b24708ad49d4666ee17774c646d10342b0cd57b8647c687c83b4aa651f864ee41b684a56c1cae672583236dbab757808107f142484b59ab4544b60526d60d3aa99b8769efc9127fa5eb41163bb3ed5fdf82beb1a757e1c6cc2baf70011b2c242ed7da3fd2314b4695a307d5ef7350fdcc264a98fb04d866137e08c62a26ecb0015cb69df5253634b9af5ef03783bba6285304e19bd1e91eaf55fa951bde83682510b9609bf4d44ad9ec304b558b09f2f8bb735d2ebaf54f64692331e40087b7e8ecb6aafb85eef77584d21e898204727feac13a26d7dac68afc961996336505371afad29cc378b34c80e183fe86b2138a5a8218564c83f3f7ec16aaf4c56d16c18bf11a07c4ff4716d5ea822bea480c98fdb5b2c03187fa74d1ab9eb0edce051eaf49b0908fb0089e268af6f3ad6194e6a0115cabf6ba224c9d6d0d279999dfce3d39b66e9e64e9a4cbf23acc55f9274dc268da2922fe52b12edfee6390314ab370ab9c2ff5cb4823aa126d57e54044526a651da81500cdc7f1f4afbf4a7361dffcd28afd5a11133d6870fb597a1616aafcc1ea589ccbd822ff0882071946c3b4beef177e671091b56a0118bd0b6ee6918d17c1532fc42ad65ef148f5be7c0d886f437aa9cdffd505500903be7ea4470f4d7b80e0c2a8616f64eaf447e7af3718acbb23fe2718d9f0dadfd3a0e4dc97df2549693eb15d661ca937fa3b44dd0b0014faec420db8b29c7e730c5c5619e0ee1eea9f782cf67c3803925116379a721c3f7ad6e50c2634d32d285c3f1077c7c3da90b88526deb44e39ba2e85ce304b05756d93c13f0492ac0a3d3700561de1435b8210cc39af34ca5af6a9cfd96f644bce4d3d777f89ec6a287b445b73d45c4788fc21d3f68d93736e407455bcc3920ad70fc12a468c2640fb5faf6716cb0479d13f1ac646f55657e36d97d166a4bfb23256a1b37b0c61c364153435e47926566360967f503ddccd64ea1233d92f9dce6bbcea029e6659ddde34e0bc56ac3823d2f84e8f823413431e26332a9b2eb593b5db70b616f76200be551278038dc79a1d8e46f5e735b83feb6feba2244cf1b88885e56e130c37525cf49d753547d5c673721997475d1d1bcfb0670ce41df2cd94c9e61557246bf10a122be31aba0a5cdd6991aebfc2a1217946be8f9425aee2bead2d8c0dea1b352fcdb8a537e1ca95978db3d05522fc8eb2a5320c6d6cdf7d447599d5cb80b60aa4ed228407d6085201710d7f0f79febe05b73c221988e30b91498ca1940f1bba0e653421b741ba322c33bbc7e468c8c3ae088748f0e69931b397ada93b20aa225a2e29fdca9df2721b0c8fc4a1cdbd90a35278d4672f2c96f1ff908c3aa85176dfc231f7841d81f82389650f036c3e4bc28de42b3fb88c24f65de5989095617bb4198fbd30b1d9a265a0340d81ff2a5119306c3bced732867924fcbe0688fb2231041cf7011aee8ec049d905224dd2964395ea4bf132d03509ee1be7971c627d24c36ed5b12b2d304925aaa8cdb883c0ebfe6a138251c2a717f167b8b799b38bf14ce7936c3bf4d43c27ebeee96406c47d29f8fd8242f1df8073dfc18907bf7af1cf0188164e5afe67d3edc6cc47b8b9ad05f35a1e79e247ccd86619a5344d2bd661f65ca9e15cbdac49deb380484d55742ceb0251f2572f9fbff4facc8714c300e508dd56e239f4b3c453e7487ffb0518f3edf35d3ed9b0cf5883ff4e9e27d61be7bdfca8c376b59313d38709de2bcfc75427febb16285907f4b3ab8b39ad29ab71e50af634325d6411243c9df6fd54d95beaf661e0640bf90753af09e3b28e664d6650a4e52da5f70f945cebd346500c4337f626aed94a3bba5c777b7c1ba0cb244230f82966a33d586dae2baa6f70a367edfa0466ced31bb9ebb1a02fc932260e767d9159ebd0355ee74eee7fc9aefbdcff1be06de47d5a11860eeb10b653b90aaf2e4558096541aa0b172ea6237f2b58dbe5a6091befb84df934eb3838c2dbd8f91e0428d6bfb15e7725dc5655b66294f19a7258c41b6ac9d5dc9d9b7d7d132cd222f41c97eebd53804a1db905d77832e1763a365f8e6a5daa2f680e8aafe23b87e5d96580eb31dcd783794d4c3d9d5819c7758bcf17ff1fb5678615982a250b75df307548448cc3bca81443fd4b3222bae5f18f65e5e511ca6f6d481957730349b58454527f0888dc056cb78465e0ef11dd8fd18c1fa5878bdef54d5a26223e3acc13a896fcc3a0b95fd3a9c7de3ebf5f81f9745e6d0122e10e338d16139a33251ebbde1924835fc76db0ca80d272923a3544d3e05505220cfdc7d9920aa318d40026ceeca4c73316a84cbda709e9a3569061159d03536d91a223812358428a2e8d00c349551552f6c6fd6f0924b145ec7b7fd6cfeea119173ebf9fd247035a386dc6672cf03356b8bf30946ffaa71c2a6465e5fc28529d151951dd33f7a679cb07c48524b7624824666710c827b5e595a66fbbad5db397e67cb7b66922af83a4b3b8d2497b51cdd345afd37b0c57101dc7d197a4e7f481be792f39170e203af011c82b8429aa48f912df684d324b60f6a6e46e1511c78c882aa3949da04d9edbca90f6871f33891e95ad210d217a4a2cf5d23c019ee1874c448980d3735023ba45b63bd1c27e356f8f0530e1ff7f752986ff1fda123be6fed1516358f71fe8e2ef2a6289d764998ef8d10e399e5deb0efaaef019286f13ba8214686e723e3be44ec9d7c8ca6bc11bbd4c9301d6b0208432f3dfa6650ef114a6f6b6a12f2337b38dd55ba7054d9857f5ae893ede23f26628cbaae48701b95593cff6e828f5464a6fbc7f5b4dc26da433cf755c5f50725f7110d074dd055b8d0faeafd393f0af03a9cf367b5ebc3abdb2c30d7ccbc7911e170c7cedb43537aa60e12d508e39394301e47976523b84cbdc3225008f4111b13a4817a9ee87446861116a083f7dd356d00c754946fe9f1ff167efc22af857665156600e863ef8f0a4bb355b322ce0296d7b2a708e62ae2f609886cc05960b09abc52c11b6d44894ccc71e8854f2c92aadeb518ee29b17fc5b88d5d939d631b662c0a6722f5ee07884362b245bdc88a7129335fcecc928739e3bec46ad218dbdedc32834d9fd5cdf5f4a62a69c09d53f30010d0439b4d65ec561778923b16d6cf851b5b0bc275a861fcf3093d1e6f8029ce7a85fbbba2851a25176f0d1cc5bd6ab855972bebb640fd7c4f2cd9ee98f0f60345a258a300c227a7ea7c494e9ed2a73709f252c77c3697d52a5548015fffee48e396d110aede6db054117f79a539db8f7d091d8ef509e2db9662cb7090c1975cf7cdf0c36abbadf81d981ce150379b69bb9c30cded51bc7b7c11261be9d1b1f239fdb6054023e90782641a2523ab80b051002651011174ea9af84fc40962cc1d75955cc0fdd5b74351450c3c5f9600f0bf073567f13329ff0267616c8b1fc576957c5a5b86d8625a5434c9ea6098e794e94d4ee64156cfd1f0f5f96c0ebc3741994eab30f5cdbd4802c622601236c3e4fdb2f3010a3a7b038ba7ea90ca45c975aeb8d1555a643571df8dee1cce5e2a19d00c0bedf74ba760abfe92f0db09a90734e23ee8fc7115c6ac6c98dbf6db1f33fdacf348b44a329312fd6f7dc9d6affcf279462b4cfc91806818388828c18ca8f72b07eca5081b6c1fd6a1d3dd4c35a28532e643693946d9305c57d29587d2a463459d467c3bb697f557d826d18bd48fd07188f379c87eed5348cda02dcb4278c01441097fe731fcdc8b47adba54c9c747b624de9ebed4973ba3ec61df1d074e98147dd00683e6cde3d43cea71cd97c84554761f58f149a8fb2517e7e2f1342b767ddf4aea912315af085797edf66f9a3bf23378c83860573eb14f5a1ca8798902b4bcefba429a2f3088154ef3bc1479fdecdba481d0f309601f454dac3071d4ddd1aec05ce2a79824254ab7a640885e789ed99d74312e662416d0abccbae6dc8b818113b5f166bbf1162c352fe9db3004414840ada1a04a0ba4398553985bca58fe3cbbd4adf88489a636a7085190062ef3e7aa72bf2d32dc2cf3679148048a3ab11d9c8467b595060a4aefc28c8b1847bce89d09a4e2a1143fa576f878c2de812238052a109ea9429b4a2da01b14250f9124f0e8ed98850e5b05ede795e447d0654519e880996bf906137d237679fe1b88d8e88cb47b0466ffb68d220d36536575216370146cc5b9224000b893e36e292d82206dd498a67aca2d7b436da7c09b6243358a3d22fa4f8e7559bce8c6ef1f5f75b9c47285eb743dc475e5f4add3813353cdd8aad0f571c28cd06d71a60650382c3598be3dfccded10aa4f8ed472abc7841af444021f5c1d82df6804fb7f2a36b276e07239698213773e6bf3ced9e2f842527b29a52cf1f53403cb1d0e0a8329539720091fd81177c20506326a601339e1def51920d9316f1dcf703b4f396c7899190e9a2d62029ee640cbe2c089c53a049de73b37f49e83bd6e4ca775b558c84e8401bb9006c17a2372ef2cc40b50177ecaf8035ab75cb02fe2391c386979b7a9af532f59cac751d8a905f61bdd43b9cf5423424c715b3f268718f79d06c4ed699a2cef01bf0e87c26dcbfa0ca4826a3702089ed07531c178e7d00c34ee77bf41e2f35fd45d9e3cef5476c3375e039d307c3cab4069c0b12736427dbcf228f752abbf2153cb1a88a96ec1a19d1d84308216c6bcd4ed042485fda1bf291064df404d52549b41d0ab789e87e28efe34e7266db87aa169f197626afb806cccc5be9dc3236e32064b3643e1343df1ecdb32eaaf7ac7a243fe5c2f69468e91e3ffecd75510247f45ef021be9895617dbbbee8b4f0b75561f792fd3162aa613c4ca0d7bb23e88854299d8091107a872cdb394842232f9401aacf8222cc48032f2ff38c1f08a263636e35017c02b3ea7721a96532d1608c560d411419b35900f62992b57d9f805e460b100b61e00dbd51f29fdf294abca98445b58b56289e01f1c36a75b1fefa024dfd136ae5f7db4540553bdd929628dcbce64b1b913cbefc153e7db85bc30b8afa769763f494479d02168495bc3c02be70dee5b886102a50fc64b0751f0ea5f624eb731a0c86a4880c473a814cb8b744febcf460534874ed1ad5da9a0ebdf3d6616a7b60d485fa954edff188c756ef464a3c8d707b052da4441250767826eb7c36f310e067ff81a003cab8307cb991244db6371e183ee84d642116e646cc144ded833f06d3f09f880f6bc0d60f6dbe4b47738", 0x1000}], 0x5, &(0x7f0000004e80)=[@rthdr_2292={{0x58, 0x29, 0x39, {0x6c, 0x8, 0x2, 0x80, 0x0, [@empty, @local, @loopback, @dev={0xfe, 0x80, '\x00', 0x17}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2, r10}}}], 0x80}}], 0x7, 0x0)
r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000)
syz_io_uring_submit(r11, r8, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r11, 0x0, &(0x7f0000000240)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x4, 0x8001, 0x0, 0xffffffff, 0x3}, 0x706abdbb)

08:34:00 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd=r0, 0x10001, 0x0, 0x75, 0x2, 0x1, {0x0, r3}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000380)="744f954c795f6c370c37897acd0f52c812f318ddc76405766ab4152db30f74923f08ef55b2cd3f9d4a77b7bd3f39ce876e9216b8134fd42b1353fcc6786b8bb4aa0332c3f62b9b6b7f8f8c416010c915d874d217efca5c80eb2e2cf0524cf0e2aebc427d58f82d3d9a19a4d57b8854de1402e4f46bde043d6bc2bc5347b3061dc36170ddcbad9ce0c4b4a78c8a0801f0aead37154039967a0ab3c07f024458837b7f25650084b1ef1a46745d91b077ccfa268107def919dcbb205dbfe7eae8760b208a7e4f5ccc22319f3200d8913aa76e192f2457f1", 0xd6, 0x3)
syz_io_uring_setup(0x6fb4, &(0x7f0000000240)={0x0, 0x2b0a, 0x4, 0x2, 0x3cf, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r1, r5, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x2004, @fd_index=0x3, 0x8, 0x8, 0x8, 0x0, 0x1}, 0x0)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r6, 0x8982, &(0x7f0000000080)={0x1, 'veth1_to_bond\x00'})
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)

08:34:14 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000000040)={0x7, 0x4})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000a, 0x100010, r0, 0x10000000)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r4, r5, &(0x7f0000000280)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r6, 0x0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000340)=""/251, 0xfb}, {&(0x7f0000000500)=""/171, 0xab}], 0x2, &(0x7f00000001c0)=""/50, 0x32}, 0x0, 0x2001, 0x1, {0x3}}, 0x7)

08:34:14 executing program 5:
r0 = syz_io_uring_setup(0x5c8c, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r0, {0x80000001}}, './file0\x00'})
openat(r5, &(0x7f0000000140)='./file0\x00', 0x400000, 0x20)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:14 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/timers\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xd29d, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000040))
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(r7, 0x29, 0xd3, &(0x7f0000001500)={{0xa, 0x4e20, 0xf08, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xfffffe01}, {0xa, 0x4e21, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x200}, 0x1000, [0x3e8, 0x1, 0x7ff, 0x7, 0x2, 0x5, 0x4, 0xfffffffd]}, 0x5c)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x90)
fcntl$lock(r8, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000001, 0x20010, r8, 0x0)
clock_gettime(0x5, &(0x7f0000000080))
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x1, 0x4004, @fd=r6, 0x98, &(0x7f0000000340)=""/4096, 0x1000, 0x426df35ea5ec930, 0x1, {0x0, r5}}, 0x3)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r9, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000001340)={0x38, 0x3, 0x7, 0x3, 0x0, 0x0, {0xc, 0x0, 0x1}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x4}]}, 0x38}}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:14 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 81)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:14 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
dup2(0xffffffffffffffff, r4)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000040))

08:34:14 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r3, 0x80, &(0x7f0000000340)=@phonet={0x23, 0x7f, 0x80, 0x83}, 0x0, 0x0, 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:34:14 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair(0x9, 0x0, 0x7, &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x12, 0xffffffffffffffff, 0x8000000)

08:34:15 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, 0x0)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

[ 2603.446088] FAULT_INJECTION: forcing a failure.
[ 2603.446088] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2603.447518] CPU: 1 PID: 13232 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2603.448302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.449231] Call Trace:
[ 2603.449533]  dump_stack+0x107/0x167
[ 2603.449957]  should_fail.cold+0x5/0xa
[ 2603.450403]  _copy_from_user+0x2e/0x1b0
[ 2603.450861]  move_addr_to_kernel.part.0+0x31/0x110
[ 2603.451420]  move_addr_to_kernel+0x4f/0x70
[ 2603.451900]  io_connect+0x47a/0x610
[ 2603.452318]  ? io_prep_rw+0x1050/0x1050
[ 2603.452795]  ? __lock_acquire+0xbb1/0x5b00
[ 2603.453276]  io_issue_sqe+0x1611/0x77b0
[ 2603.453725]  ? io_dismantle_req+0xdf/0x180
[ 2603.454219]  ? perf_trace_lock+0xac/0x490
[ 2603.454689]  ? SOFTIRQ_verbose+0x10/0x10
[ 2603.455154]  ? io_connect+0x610/0x610
[ 2603.455587]  ? lock_acquire+0x197/0x470
[ 2603.456052]  ? find_held_lock+0x2c/0x110
[ 2603.456516]  ? __fget_files+0x2cf/0x520
[ 2603.456960]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.457428]  __io_queue_sqe+0x90/0x9d0
[ 2603.457871]  ? io_issue_sqe+0x77b0/0x77b0
[ 2603.458346]  ? __fget_files+0x2f8/0x520
[ 2603.458803]  io_submit_sqes+0x44aa/0x8610
[ 2603.459292]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.459853]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.460414]  ? find_held_lock+0x2c/0x110
[ 2603.460895]  ? io_submit_sqes+0x8610/0x8610
[ 2603.461402]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2603.461988]  ? wait_for_completion_io+0x270/0x270
[ 2603.462555]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2603.463099]  ? vfs_write+0x354/0xb10
[ 2603.463535]  ? fput_many+0x2f/0x1a0
[ 2603.463963]  ? ksys_write+0x1a9/0x260
[ 2603.464400]  ? __ia32_sys_read+0xb0/0xb0
[ 2603.464873]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2603.465493]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.466117]  do_syscall_64+0x33/0x40
[ 2603.466546]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2603.467141] RIP: 0033:0x7f9e767a8b19
[ 2603.467569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2603.469714] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2603.470631] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2603.471466] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2603.472298] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2603.473136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2603.473975] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:15 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0) (fail_nth: 1)

08:34:15 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, 0x0)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:34:15 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

[ 2603.614728] FAULT_INJECTION: forcing a failure.
[ 2603.614728] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2603.617573] CPU: 1 PID: 13252 Comm: syz-executor.1 Not tainted 5.10.240 #1
[ 2603.619085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.620886] Call Trace:
[ 2603.621466]  dump_stack+0x107/0x167
[ 2603.622267]  should_fail.cold+0x5/0xa
[ 2603.623106]  _copy_to_user+0x2e/0x180
[ 2603.623955]  simple_read_from_buffer+0xcc/0x160
[ 2603.624970]  proc_fail_nth_read+0x198/0x230
[ 2603.625918]  ? proc_sessionid_read+0x230/0x230
[ 2603.626903]  ? security_file_permission+0xb1/0xe0
[ 2603.627960]  ? proc_sessionid_read+0x230/0x230
[ 2603.628947]  vfs_read+0x228/0x620
[ 2603.629713]  ksys_read+0x12d/0x260
[ 2603.630500]  ? vfs_write+0xb10/0xb10
[ 2603.631313]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.632432]  do_syscall_64+0x33/0x40
[ 2603.633238]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2603.634368] RIP: 0033:0x7fdff50cb69c
[ 2603.635174] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2603.639160] RSP: 002b:00007fdff268e170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2603.640817] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdff50cb69c
[ 2603.642371] RDX: 000000000000000f RSI: 00007fdff268e1e0 RDI: 0000000000000004
[ 2603.643908] RBP: 00007fdff268e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2603.645452] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 2603.647003] R13: 00007fff3b41345f R14: 00007fdff268e300 R15: 0000000000022000
08:34:15 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r5, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r7, 0x80, &(0x7f0000000240)=@ieee802154, 0x0, 0x0, 0x1}, 0x2)

[ 2603.686683] FAULT_INJECTION: forcing a failure.
[ 2603.686683] name failslab, interval 1, probability 0, space 0, times 0
[ 2603.689195] CPU: 1 PID: 13258 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2603.690706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.692495] Call Trace:
[ 2603.693073]  dump_stack+0x107/0x167
[ 2603.693874]  should_fail.cold+0x5/0xa
[ 2603.694726]  should_failslab+0x5/0x20
[ 2603.695548]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2603.696530]  io_submit_sqes+0x6fe6/0x8610
[ 2603.697463]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.698547]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.699598]  ? find_held_lock+0x2c/0x110
[ 2603.700492]  ? io_submit_sqes+0x8610/0x8610
[ 2603.701449]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2603.702502]  ? wait_for_completion_io+0x270/0x270
[ 2603.703548]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2603.704557]  ? vfs_write+0x354/0xb10
[ 2603.705365]  ? fput_many+0x2f/0x1a0
[ 2603.706164]  ? ksys_write+0x1a9/0x260
[ 2603.706988]  ? __ia32_sys_read+0xb0/0xb0
[ 2603.707879]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2603.709019]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.710158]  do_syscall_64+0x33/0x40
[ 2603.710966]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2603.712077] RIP: 0033:0x7f19c82a1b19
[ 2603.712891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2603.716880] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2603.718526] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2603.720063] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2603.721607] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2603.723161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2603.724703] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:34:15 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x140114, r3, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x3be5, &(0x7f0000000440)={0x0, 0x5006, 0x0, 0x0, 0x2ae, 0x0, r3}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000140))
syz_io_uring_setup(0x6419, &(0x7f0000000340)={0x0, 0xc70, 0x0, 0x0, 0x1bd}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=<r7=>0x0)
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x2c)
fcntl$lock(r8, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r9 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r10, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000640)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="20004abd7000fc5487df250eef00000800067553d5e9bfccfc11015ff9c471c740ca72c7ae7128556d29c4b53012f343af0379144e9f48711d54046bad2624588eeac79b48b5537c797b57feaae9bc8cdf6d655c56d15d6e57ba29e5aa36583feaf590381583801f4c068726cb964c0e9450e5256b8c46d2a6434d5c58ac1ef5480960f1ce34f3b4cd897f0bc47577d6d7e8ed9e4b390b12586ec6b5b71272f258ce2f0911bc500d4cef8e7d0c07571dd5a488c2", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec4860b1bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a00", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r13)
syz_io_uring_submit(r6, r7, &(0x7f0000000400)=@IORING_OP_FALLOCATE={0x11, 0x6, 0x0, @fd=r8, 0xb, 0x0, 0x508e, 0x0, 0xa1a80320fa9e98e8, {0x0, r13}}, 0x80)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:15 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 82)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:15 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

[ 2603.910955] FAULT_INJECTION: forcing a failure.
[ 2603.910955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2603.915075] CPU: 1 PID: 13371 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2603.916686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.918501] Call Trace:
[ 2603.919073]  dump_stack+0x107/0x167
[ 2603.919971]  should_fail.cold+0x5/0xa
[ 2603.920889]  _copy_from_user+0x2e/0x1b0
[ 2603.921985]  move_addr_to_kernel.part.0+0x31/0x110
[ 2603.923339]  move_addr_to_kernel+0x4f/0x70
[ 2603.924505]  io_connect+0x47a/0x610
[ 2603.925508]  ? io_prep_rw+0x1050/0x1050
[ 2603.926657]  ? __lock_acquire+0xbb1/0x5b00
[ 2603.927824]  io_issue_sqe+0x1611/0x77b0
[ 2603.928936]  ? io_dismantle_req+0xdf/0x180
[ 2603.930133]  ? perf_trace_lock+0xac/0x490
[ 2603.931200]  ? SOFTIRQ_verbose+0x10/0x10
[ 2603.932226]  ? io_connect+0x610/0x610
[ 2603.933094]  ? lock_acquire+0x197/0x470
[ 2603.933992]  ? find_held_lock+0x2c/0x110
[ 2603.934940]  ? __fget_files+0x2cf/0x520
[ 2603.935857]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.936909]  __io_queue_sqe+0x90/0x9d0
[ 2603.937765]  ? io_issue_sqe+0x77b0/0x77b0
[ 2603.938763]  ? __fget_files+0x2f8/0x520
[ 2603.939640]  io_submit_sqes+0x44aa/0x8610
[ 2603.940580]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.941653]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2603.942708]  ? find_held_lock+0x2c/0x110
[ 2603.943594]  ? io_submit_sqes+0x8610/0x8610
[ 2603.944537]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2603.945596]  ? wait_for_completion_io+0x270/0x270
[ 2603.946655]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2603.947672]  ? vfs_write+0x354/0xb10
[ 2603.948585]  ? fput_many+0x2f/0x1a0
[ 2603.949374]  ? ksys_write+0x1a9/0x260
[ 2603.950212]  ? __ia32_sys_read+0xb0/0xb0
[ 2603.951091]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2603.952221]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.953335]  do_syscall_64+0x33/0x40
[ 2603.954148]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2603.955251] RIP: 0033:0x7f9e767a8b19
[ 2603.956056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2603.960135] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2603.961774] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2603.963431] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2603.964993] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2603.966637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2603.968169] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:31 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 83)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:31 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00'})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:34:31 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r3}, './file0\x00'})
io_uring_enter(r5, 0x771, 0x4dfc, 0x2, &(0x7f0000000140)={[0x40]}, 0x8)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:31 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x1265, &(0x7f0000000340)={0x0, 0xb725, 0x2, 0x0, 0x350, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000001c0)=<r4=>0x0, &(0x7f00000003c0))
syz_memcpy_off$IO_URING_METADATA_FLAGS(r4, 0x118, &(0x7f0000000400)=0x1, 0x0, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x32f5, &(0x7f0000000240)={0x0, 0x9986, 0x8, 0x2, 0x71, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140))

08:34:31 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

08:34:31 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x0, 0xfffffffe, 0x388}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r7], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = accept$unix(r4, &(0x7f0000000080)=@abs, &(0x7f0000000440)=0x6e)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0))
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r9, 0x0, &(0x7f0000000940)={&(0x7f0000000480)=@tipc=@name={0x1e, 0x2, 0x2, {{0x40}, 0x2}}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000500)="88347c5e30037b24b3e0f174bfddb6092cb19a9e9d163b451416d1412e110c1f67526d11b31641c4a7b8801b528abe06b5f632e491107daef5b86f420bc3dffa643a2f19ec2478c5d04217353fb181c191c3c741050056e7ef595c2c76e179b69c8d5b1414b62a36801a0a7eba641f2c760ebcb7ea0f2befe873d7ab59a4fbdec916c6ec775c8aad83815a95ec93d1aae7ff528829ffa9a20d167767d3e70246f7d2953a", 0xa4}, {&(0x7f00000005c0)="81803feda16c911ef06fe07ad5e431ee634a2693e91c0e5ead476076df34dcc6f3dd69ffc66a1be7771e92b9fd3b2db9f0e52a9432d224b9d5d5", 0x3a}, {&(0x7f0000000600)="9a8df2ccfdc87876b56d8e0456e910d92a6957a9a680ff69b3bb2a23d2479c69864cb5e374aaa0512c9a7d96b1406404866f044e1e1238a2d1c0a973476eab9326603380d7d57c6027f7847b55bd8a7f067c38cc0daf8d0c639cd99f9c605ec00662a766f2cb8ff22a59ae80c7337767d74e9e784d91e91c64fea4", 0x7b}, {&(0x7f0000000680)="15d7c93db18c435ec2c99f4f96ac31563868ff2269f10692ae8470d255ba1c207ca5f168ec5bea", 0x27}, {&(0x7f00000006c0)="5089fe5b73b6", 0x6}, {&(0x7f0000000700)="17f9d8a18bffc7dd0bf54b8f472f8df5764959b31d7384605b3c0229dc4156ebdf4cea4925f90012f77c3e3b64362ea261ba917da34f9f44fcfe236d5c5684e82bf127b875116fa4598fb6c4d6e6391084a6c2e1032523e4208e307f78f6bebc6c3c3b7e1e1ac5b099ff2c822f5164fb38a9b44db291b1ecbc4a0fc494bb6e0854d0ac3857e411e6925c7fa54317300d553dd523103e086c774dcbf298bd", 0x9e}, {&(0x7f0000000980)="e20f9d245e1fa4be75aace0e1dc3cd19c6b9068d839c92c33ab22d1887eb51baa23807e8c54b6cb3fe36b44492a76b527351593f05a9f91b07d03df5c6b2ed0583c58e149ff0daac6efdfe9f68ec7f41e711a98724be021ec70e2a5f2b3f85ebcd268b0395ce7e15594172a9f526235fe1fe5bdc91ff564afe01be7229b106ac12d6b5c7312aaf97db570ca897a67617565ba70010", 0x95}, {&(0x7f0000000880)="df", 0x1}], 0x8}, 0x0, 0x4000}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r11 = syz_io_uring_setup(0x2333, &(0x7f0000000240)={0x0, 0x4ef1, 0x10, 0x1, 0x2d0, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_setup(0x35e9, &(0x7f0000000340)={0x0, 0x76f0, 0x10, 0x0, 0xa3, 0x0, r11}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000001c0)=<r12=>0x0, &(0x7f00000003c0))
r13 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x5, 0x50, 0xffffffffffffffff, 0x10000000)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000400)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r11, 0x80000001, 0x0, 0x6, 0x5, 0x1, {0x0, r14}}, 0x2)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:31 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
getresuid(&(0x7f0000000140)=<r4=>0x0, &(0x7f00000001c0), &(0x7f0000000240))
fsetxattr$security_capability(r3, &(0x7f0000000040), &(0x7f0000000280)=@v3={0x3000000, [{0x5, 0x6}, {0x80000000, 0x81}], r4}, 0x18, 0x3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x61b5, &(0x7f0000000340)={0x0, 0x7b59, 0x8, 0x3, 0xa1, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff8000/0x5000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:34:31 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x300, 0x0, 0x0)

[ 2619.832231] FAULT_INJECTION: forcing a failure.
[ 2619.832231] name failslab, interval 1, probability 0, space 0, times 0
[ 2619.834802] CPU: 1 PID: 13395 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2619.836252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2619.838001] Call Trace:
[ 2619.838571]  dump_stack+0x107/0x167
[ 2619.839348]  should_fail.cold+0x5/0xa
[ 2619.840167]  ? create_object.isra.0+0x3a/0xa20
[ 2619.841129]  should_failslab+0x5/0x20
[ 2619.841939]  kmem_cache_alloc+0x5b/0x310
[ 2619.842822]  create_object.isra.0+0x3a/0xa20
[ 2619.843752]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2619.844831]  kmem_cache_alloc_bulk+0x168/0x320
[ 2619.845802]  io_submit_sqes+0x6fe6/0x8610
[ 2619.846727]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2619.847785]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2619.848809]  ? find_held_lock+0x2c/0x110
[ 2619.849690]  ? io_submit_sqes+0x8610/0x8610
[ 2619.850636]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2619.851662]  ? wait_for_completion_io+0x270/0x270
[ 2619.852679]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2619.853637]  ? vfs_write+0x354/0xb10
[ 2619.854451]  ? fput_many+0x2f/0x1a0
[ 2619.855220]  ? ksys_write+0x1a9/0x260
[ 2619.856025]  ? __ia32_sys_read+0xb0/0xb0
[ 2619.856897]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2619.857999]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2619.859113]  do_syscall_64+0x33/0x40
[ 2619.859917]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2619.861013] RIP: 0033:0x7f19c82a1b19
[ 2619.861802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2619.865713] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2619.867335] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2619.868833] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2619.870375] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2619.871870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2619.873390] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
[ 2619.897934] FAULT_INJECTION: forcing a failure.
[ 2619.897934] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2619.900635] CPU: 1 PID: 13392 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2619.902112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2619.903850] Call Trace:
[ 2619.904412]  dump_stack+0x107/0x167
[ 2619.905178]  should_fail.cold+0x5/0xa
[ 2619.905992]  _copy_from_user+0x2e/0x1b0
[ 2619.906854]  move_addr_to_kernel.part.0+0x31/0x110
[ 2619.907907]  move_addr_to_kernel+0x4f/0x70
[ 2619.908794]  io_connect+0x47a/0x610
[ 2619.909570]  ? io_prep_rw+0x1050/0x1050
[ 2619.910442]  ? __lock_acquire+0xbb1/0x5b00
[ 2619.911341]  io_issue_sqe+0x1611/0x77b0
[ 2619.912181]  ? io_dismantle_req+0xdf/0x180
[ 2619.913069]  ? perf_trace_lock+0xac/0x490
[ 2619.913921]  ? SOFTIRQ_verbose+0x10/0x10
[ 2619.914784]  ? io_connect+0x610/0x610
[ 2619.915610]  ? lock_acquire+0x197/0x470
[ 2619.916452]  ? find_held_lock+0x2c/0x110
[ 2619.917331]  ? __fget_files+0x2cf/0x520
[ 2619.918195]  ? lock_downgrade+0x6d0/0x6d0
[ 2619.919084]  __io_queue_sqe+0x90/0x9d0
[ 2619.919904]  ? io_issue_sqe+0x77b0/0x77b0
[ 2619.920778]  ? __fget_files+0x2f8/0x520
[ 2619.921628]  io_submit_sqes+0x44aa/0x8610
[ 2619.922546]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2619.923606]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2619.924626]  ? find_held_lock+0x2c/0x110
[ 2619.925488]  ? io_submit_sqes+0x8610/0x8610
[ 2619.926403]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2619.927458]  ? wait_for_completion_io+0x270/0x270
[ 2619.928484]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2619.929456]  ? vfs_write+0x354/0xb10
[ 2619.930257]  ? fput_many+0x2f/0x1a0
[ 2619.931025]  ? ksys_write+0x1a9/0x260
[ 2619.931819]  ? __ia32_sys_read+0xb0/0xb0
[ 2619.932689]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2619.933787]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2619.934877]  do_syscall_64+0x33/0x40
[ 2619.935670]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2619.936747] RIP: 0033:0x7f9e767a8b19
[ 2619.937534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2619.941385] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2619.942981] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2619.944484] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2619.945978] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2619.947479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2619.948974] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:31 executing program 1:
r0 = syz_io_uring_setup(0x2867, &(0x7f00000002c0)={0x0, 0x4000, 0x1, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000fed000/0x13000)=nil, &(0x7f0000000000), &(0x7f0000000040))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, 0xee00}}, './file0\x00'})
io_uring_enter(r1, 0xf5c, 0x9428, 0x2, &(0x7f00000000c0)={[0x8]}, 0x8)

08:34:31 executing program 1:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r1, 0x0, 0x0, 0x1, 0x0, 0x0)

08:34:31 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00'})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:34:31 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r1, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r4, &(0x7f00000001c0)={0x22000, 0x22, 0x4}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x23456}, 0x7fffffff)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000140)=@IORING_OP_STATX={0x15, 0x5, 0x0, r6, &(0x7f0000000340), &(0x7f0000000040)='./file0\x00', 0x80, 0x800, 0x1, {0x0, r7}}, 0xffffffff)

08:34:31 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f0000000340)=""/143, &(0x7f0000000040)=0x8f)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x3}, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000}, 0x0, 0x7, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:34:31 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

08:34:31 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000040)=0x8)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r1, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, &(0x7f0000000140)=0x4)
r2 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
dup(r6)
io_uring_enter(0xffffffffffffffff, 0x3cbf, 0xdf36, 0x6, &(0x7f0000000240)={[0xf2]}, 0x8)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x60)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000001c0)={'ip6erspan0\x00', &(0x7f0000000500)=ANY=[@ANYBLOB="350000000000000010000000e00000027b0000014e234e2201dd1b87d3faf7024016421639c97aa700000000000000f7ffffffffffffff00000000000000000000000000000000000000000000000000104d5a031ea72059330000000000fdffffff00ac141421640101fb4d244e24060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0040000ffffffff000000000900000000000000ffffffff00000000"]})
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000f, 0x13, r7, 0x0)
syz_io_uring_submit(r8, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2620.226670] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted
[ 2620.272740] FAULT_INJECTION: forcing a failure.
[ 2620.272740] name failslab, interval 1, probability 0, space 0, times 0
[ 2620.275186] CPU: 0 PID: 13535 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2620.276672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2620.278445] Call Trace:
[ 2620.279016]  dump_stack+0x107/0x167
[ 2620.279797]  should_fail.cold+0x5/0xa
[ 2620.280615]  ? create_object.isra.0+0x3a/0xa20
[ 2620.281588]  should_failslab+0x5/0x20
[ 2620.282411]  kmem_cache_alloc+0x5b/0x310
[ 2620.283283]  ? mark_held_locks+0x9e/0xe0
[ 2620.284165]  create_object.isra.0+0x3a/0xa20
[ 2620.285096]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2620.286195]  kmem_cache_alloc_bulk+0x168/0x320
[ 2620.287181]  io_submit_sqes+0x6fe6/0x8610
[ 2620.288102]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2620.289162]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2620.290208]  ? find_held_lock+0x2c/0x110
[ 2620.291110]  ? io_submit_sqes+0x8610/0x8610
[ 2620.292048]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2620.293079]  ? wait_for_completion_io+0x270/0x270
[ 2620.294119]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2620.295111]  ? vfs_write+0x354/0xb10
[ 2620.295918]  ? fput_many+0x2f/0x1a0
[ 2620.296698]  ? ksys_write+0x1a9/0x260
[ 2620.297509]  ? __ia32_sys_read+0xb0/0xb0
[ 2620.298390]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2620.299509]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2620.300613]  do_syscall_64+0x33/0x40
[ 2620.301409]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2620.302512] RIP: 0033:0x7f19c82a1b19
[ 2620.303306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2620.307232] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2620.308860] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2620.310387] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2620.311905] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2620.313423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2620.314953] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:34:31 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x583763e3c24d3cc2, 0x0)
syz_io_uring_setup(0x6081, &(0x7f0000000140)={0x0, 0x6040, 0x10, 0x3, 0x2d1, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

[ 2620.362956] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted
08:34:31 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 84)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:32 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000440)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000)
syz_io_uring_submit(r9, r8, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r3, r8, &(0x7f0000000140)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0xffffffff, 0x2, &(0x7f0000000040)="b5b01fbf21a314803a2e6b58", 0x81, 0x0, 0x1, {0x2}}, 0x1ff)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2620.526944] FAULT_INJECTION: forcing a failure.
[ 2620.526944] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2620.529539] CPU: 1 PID: 13653 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2620.530882] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2620.532456] Call Trace:
[ 2620.532971]  dump_stack+0x107/0x167
[ 2620.533667]  should_fail.cold+0x5/0xa
[ 2620.534415]  _copy_from_user+0x2e/0x1b0
[ 2620.535184]  move_addr_to_kernel.part.0+0x31/0x110
[ 2620.536126]  move_addr_to_kernel+0x4f/0x70
[ 2620.536929]  io_connect+0x47a/0x610
[ 2620.537623]  ? io_prep_rw+0x1050/0x1050
[ 2620.538414]  ? __lock_acquire+0xbb1/0x5b00
[ 2620.539222]  io_issue_sqe+0x1611/0x77b0
[ 2620.539967]  ? io_dismantle_req+0xdf/0x180
[ 2620.540769]  ? perf_trace_lock+0xac/0x490
[ 2620.541556]  ? SOFTIRQ_verbose+0x10/0x10
[ 2620.542334]  ? io_connect+0x610/0x610
[ 2620.543060]  ? lock_acquire+0x197/0x470
[ 2620.543816]  ? find_held_lock+0x2c/0x110
[ 2620.544587]  ? __fget_files+0x2cf/0x520
[ 2620.545337]  ? lock_downgrade+0x6d0/0x6d0
[ 2620.546139]  __io_queue_sqe+0x90/0x9d0
[ 2620.546885]  ? io_issue_sqe+0x77b0/0x77b0
[ 2620.547664]  ? __fget_files+0x2f8/0x520
[ 2620.548435]  io_submit_sqes+0x44aa/0x8610
[ 2620.549249]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2620.550202]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2620.551114]  ? find_held_lock+0x2c/0x110
[ 2620.551887]  ? io_submit_sqes+0x8610/0x8610
[ 2620.552710]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2620.553622]  ? wait_for_completion_io+0x270/0x270
[ 2620.554541]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2620.555412]  ? vfs_write+0x354/0xb10
[ 2620.556112]  ? fput_many+0x2f/0x1a0
[ 2620.556801]  ? ksys_write+0x1a9/0x260
[ 2620.557528]  ? __ia32_sys_read+0xb0/0xb0
[ 2620.558307]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2620.559299]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2620.560290]  do_syscall_64+0x33/0x40
[ 2620.560992]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2620.561960] RIP: 0033:0x7f9e767a8b19
[ 2620.562670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2620.566124] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2620.567558] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2620.568903] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2620.570263] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2620.571597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2620.572930] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:46 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 85)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:46 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00'})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:34:46 executing program 3:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 1:
r0 = syz_io_uring_setup(0x5fff, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, 0x17b}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x10000, 0xb0cc, 0x2, 0x0, 0x0)
io_uring_enter(r0, 0x6507, 0xc8dd, 0x1, &(0x7f0000000000), 0x8)
io_uring_enter(r0, 0x3b68, 0x23b, 0x0, &(0x7f0000000040)={[0x5]}, 0x8)
r1 = dup3(r0, r0, 0x80000)
syz_io_uring_setup(0x66e5, &(0x7f0000000100)={0x0, 0x69a1, 0x4, 0x2, 0x39a, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000240))

08:34:46 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
syz_io_uring_setup(0x2b1f, &(0x7f0000000240)={0x0, 0xebb4, 0x8, 0x1, 0x3d6, 0x0, r4}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f00000001c0))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:34:46 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

08:34:46 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x8010, r0, 0x0)
r6 = accept$inet6(r0, &(0x7f0000000440)={0xa, 0x0, 0x0, @initdev}, &(0x7f00000017c0)=0x1c)
syz_io_uring_submit(r4, r2, &(0x7f0000001800)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xcbc)
accept(0xffffffffffffffff, &(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f0000000040)=0x80)
syz_io_uring_submit(r5, r2, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r7, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null]}, 0x80, &(0x7f0000000700)=[{&(0x7f00000003c0)="3fab7e3140f784af26cc7e56afc489ca819140003f3c9fb4937d2fe77ac8fe4898a30657091b78904cdf40fe7c63bec874885fbdf6945ae60d77d70837727b8ae6dec841c85f618a300753a7b8b7719abc1bed6e741df42c1bc5baf11a84eb93bc4d8fa891c703e4aa527a8319c0a6ab", 0x70}, {&(0x7f0000000500)="fa3bce8a827878d2100fb5e60b4afcb093b80c0a07a0f90f9382fb71c3fe9e2705c302be0a4a9803b9f77593fed0576edbf424a99e71caa75e11764ee532532508b8ca4a2f8f9d7c4f9697b9c03a264627202d644e27b38602ff493aa6747af21465498d8920", 0x66}, {&(0x7f0000000580)="38a04af5597d4494d925a8add06a35e8e9831a0ea48e47655859eae78a5b8a608d596e1bb6603466a289a8f010ac9aaf0db04c753ac0acd2e7101f516f310cd646d7f6880ddf7af87ff76c81351605c5aa46b96d3f6c9ddc5ac07191", 0x5c}, {&(0x7f0000000600)="c68b4be19fd74852ad376432504d36b18dbc9dfb3e39ac9ef5b6396f732fdf22ed7976c9c6a6ffd0bffae8c7f3fa4e94071582a586f1072cf7a33488b8f9ee885f10082f51a8910c6e4515c81570089bcfe2b1973af1", 0x56}, {&(0x7f0000000680)="f42652542d6844062df3b43f62c87693ac7555d2af4d8767b2d55110324fb8f36986f6bb9969ea835374f18ae3118f590f844acb22066d483b1cb8e642154d59f6347f9487", 0x45}], 0x5, &(0x7f0000000780)=[{0x1010, 0x10d, 0x2c5, "02ad715968758db733d1019a96fa2822953c1ff480be2f2d51d028cf06bb165170711811355a1150095544c2e35ffc63da850015a6eb6947247ba08034ff679b616ff2cbb0d275b7c9f9ab7ab8d3ad0d5492747fe619544dc1d3b1f0c93d9193e06ffccdd9e8fd261dc967af28547e54d1fe8753b60d3be9b7dddfec3be9953fad35d2b102414b57e6ff10fb9a9c5a712a350fcf13cb3d2af75e35121bc4d4973aed04c2cfd1a3da084e0302a0fcd58d4810d3415e3b7e19b993c8a556b0825b800ffdbe9f8d715b4f37eab1a1a170986a3fa1ec9d680d5ec2f849bb6c6ba00e14ed0444f91fba1b490ccb289906c244f4167cfe212702e3f3a80665013b208e97dbf9d051a5e7a040a1d8b9364a718e6dbca4e7ed6645e4260fc62543346cf2caf34d954366f082525989f31a364ab4cec007afcbf5943797317671273287b0eadc8549504d5fe43a38e0ea0dbd1fa3febea79215a52cf3fc5dd2d12266a317433c7bf79af5bde294262c0adbb0c8ec1e40fc553bf59e5d5b836cf15818652bee800c37a02c47fc9689c5ef0c8c59c64c847ca9a88b4e2ad1df7e07681bd17177f0e05589810baac7d4b8f584acef8cee00784fa46ea8ec2cb5866835f04a0b3ed5cd703c9c742ab7ae4a0214c9e0627e6e8874886534702c0e32d378949cbe2c715424912359148aba9b7d4325658f9673fd0c734bc84b28b852e0f0ae77cadfc3f92d955c1955e3389d2cb7556988d39d08ed849107b016d34e4e0e09fabf15d56f7939fd99959c1a784d1cffced5dc4e46c187ce490212ac680e3de658512116fb2367b138a985f127abf1bbb9cf28bebc66335165fcf8f1b02010032722506f171007a35c5fc5fdf769cc4a8938546230fcb5c9220eb2bdf532c6f201395e365232b04d46a8b39f464f51557c3fb0ef95b22309746b77360af9ee7327ba363e502c7c1d4217247d5937db16292503eb6fc76fddcecc7e78c481331540d0fcebce5238a194c5b59365aebcb4451b09c529837d78852b08969b85eba9098e98501f8bb5d4bc1a703d0acc6fd306c6f43b4168f0cf4d5173bfccb64218bd9f7c9a36ccdd1625d0992bbbf2dcc63cbfdbb30457691375d2e9acddf3dd3ab1ea97d15ca77af6ed56e70185f0f07fa264feb6c10ce1475c5b8de5d6e5b9bc0de2c3e09340e141e9930fddd40114002a4c679d141d4b6a942b528b5628e7114a51aa228e0e0b1bf2a59ed1abe76b829195dff45704764d87836e8c233b9d383c532ca2f87463a64c75683cb0106811a6cff966e61e274484ded92a116d82d805661b3639e50083edafa4582018b70e162579ded065d1a8103f75f74e7b9d7e2e6c627fe209bc2cbf63f2aa83a032fb025e10f8410a47d6fff0492185bec721df349b16fdc9b0c5741bb5cd86a7114470551214fac71603ff8df9ef4472e841447db6d491cae9fb7915252cb5516332a5aba0f4eada3a850251861f93f1e326d17a94a82441f4dd3d2d8133aef2bdbd9d2f582046e40daf6619651ad4fe858c3ecfd652db53303b5ce6152863190a1e4ba355c0ed068ba98c124c61bec5b08bca0a1061cba97965bf7864efb70e7e50991eeeb30f139f12cb0879ed1fb9f16641a76b4e6e90020fe2239de7d93f3a6c0e19a273647f42ada95e22d14aedf6c162c7e5f4894ecf60ed0acf01d502293ca82e25d89c6c37667fe6a15478311cdf30669590eed8092e07d63c6d601ac626b782ce937c98d3df3b7120e8dc499233346095632af1578e7eb38f8f71d6134461902331c821d32431eb52c0c7751a39ffa694624176e4591a230a53261f8911674868259c01a7b8c7f78eeaaee867a302a1976e46227ccf4ab8e5ecce50a52842db40be2ca1b9790946c41cb89a9cc74c358077abfbb8c9c9d6566fe644d18b52320b18bbcb227e8cd0a6e2dfa532c7bdc73d8c8dca1db07a263d07549a8bec4ba6bd14b934bdee38a82442e395482f3a30f04b5b8a098c69b309fedd103994cb405d2c5b4fd75f6b700973cc93fc484ed1fa35b345c02c40b83cf7d35fed200eca65fa11d5b8648b4095252abc13748d5350b4e6a887290c1eb84c3ce4b3ad740f5bec95642590b1766260a8fe53037ae424c607e03e1f55a3aed0f8455a38032dc67b815235dc6c58dda1fdf4af18ab7cc65c17c9a4c1d3d54472d97e83305e788464c8121ff598901a59cec39eb77dc9c84a2f582d661bb9a2118ae0e469021399d8798ef87bbf93da6aaa9672855cddf13e88dc672d95bf134ac4c9df0c1d5f4a7b3ec2ffb757c3c69be2ce85160808079de3a4c69c94b1fc5b3342d7d7735ebc2866c74f20010046d1f837c15d67df4ee156ad12fb1cb9dbd334a153e65f9250362f683970a6cfcddefc629c7764a19239808b8a344581996c8dd6b147eba491e73b3eee4d3e8d19fabc84eab82a1e2b30a48b3a77dcf02f4d34a80dac937c0660c786bb5332850bd8062e4af554df5ec97d987408b34f5d3c9fe36a611d1c578846498de77e7775f9beee07bc00e92250c951b323e63b59b3a327305747d05563c94f2f23a8742abda3f55db497f409733cd14126cbd5fd7b7495ea56394c5c45e3023769d83ba27f5b1c1419ca9776c4c9d01c772f4f234b41bddad3167f0fba5f5b009819e780dabfde02deb3b1c18bf1231c1adb6216ecbb6be0ed5f702ea39e8b5c8e94229bab449be6da780acd024ae2979ad9e6ec15219e5f0339a79e7a8310271b41e0d6946dd0689f1be00afc32e7320347fd3fb422ceedeea96fba4d04a20a1604ec647912bf9e6f0f29301eb259ee68747b946d954870355ee733e465617a721f013213e27dd747dc83c761ebd11224073c84e9e83fc31535b20cb91855f7e079bdc229cf9c2bb83217510bce0775cea0ba6e4858ac0e158665e3332681b53e637b61836fb69bbeaa97843c0b51793b4260c066a157a2d2c4f2e19ed76262f29d2d35a579c798643a5e13632522218c0d870b9ac4b55517479012f817fead89cf0cf02040f0d68550dddc2783031dd46d5e5a5959430f615638158a9e1119b4aaf5bce5b05a235db728bb5dfcccf177483633268b2804e8ed11e24691425e562eb35197ab9324bce12ae52657ea3ebcdb542b9a5e4cdd86fe655b49be319f8ac60d992183a8e5f5f6b10c9df2cb3f9ec8004797bbe99611cdcb5197e60279f069ba4d8da456a6d815adc98a91775c962cfbd467b4356337da2dbaf7ca2441b9f3d41a814b84b627b7c8eb8c44a3893d611229500080e3175dc4ff8c49bd54b35bb9b42bcc43653934b29687be61f9922f93c8952c7c622f3bb1f84cc2c6a4abc14d39c795ec4cf7b222bb5e374c6b1641fa6ad589e329b58092e759adb20a9f048280ca89cc72550069e1db49ca2193c529bf934871481d56a540a576b327c549971bfd4eb6f7a65660ab525cdf38e58aa771307a9ab05ca9136d9e5f3435cab3eab58e43a041ce7f64d6ab17adba8da651ff925486673a3cf0e54581578358a45b2feb79612b9037c0f14d6ddb4c7aecddf9548d639545662555ab284f59d3c064ab8c33a2c30e1c9bce9b797d9c52d756d06e2c045adf80b4274d9ab8939d77038f42381cd57e17e429ecdffc2888b632893c50397360967116f02f4fba8d29c58b3b0f9feff3418de3b1e63826c92ff0274a733d79c3216796fce838d4189462a6ab1303c43fb20313e31dd4ebabe746372106580282aabedbd4b32f2de4d304243971b59c5ccdd19db5602380aa5a72cad97698e1f9bbe39d075dff09850f26ad2f4ae32ff3b4dbe14cf6efef692609febc55f189bb9837ff83b5bed2d513bf4deaf813feebbbbd7792c081c14352bf857a4499b7885f915ceeaac5378a9997723f832a0cb717191769489f2cf1b6ffb4892e88c282c94d4b8f5e868ff670a8c2aaaeb0c14c6d218251771ac7a109f48b37b4378ab120fee15fded8d4cb0628ed7c0250c13b0965da7e37d8756ef2a29ded8e15a2d4e4722de71e7e86ee954f540ce5362f6a12a30f09bb6fee838d715d4725a6b0bdbf9325c9b35f298f837c7dcba019158f71eaf1287345cf001468c95ae1763b9e6c6cfadd075e8edf8001c882a6bd7fb94a964b20773d6c8ff7fd5425b955ccfa20cc5ee772b5d6dc630f9d961ddbd115ab526b5b6856923818d8bcd9acad136ba5ac27a3129b9bb1b75fd194a9a1e93bde539636d020d413d07d94d6ce21c87e7ea2162544cb21c5c5d3890e46b6efb8f2406da6b8cc59fcb3592bbab0cc47635c58be8e1c6f647589d1fc023f262e19e2749fa76e966c199ee1d93d445f0d6b60dac0e286ade57a8cbf83ced8f6060915f7aaf90d99657b1c05bb41026a8bfe2cefab5cd6bb301aca228d164eb9a6da94d5c09ac36af873cc8fa4e2707b7b958f674e37581442aee739fd91e9e9b4cd588d2f9f4750b200e554ebaad0fbf9954399378be107e34603a4aa0177b6f452839559d9da2fe74411093e19bc191d162b61867b7032ca9655833964c4a9480e87047e4420987f06cc8a5911d4969ff37d424e53943c6f269abe83cfdc70ecc56eb88f4578fd4782f7ee81d7ecab2493fab9284a65fd04a818f5b6058c6b7d95501b577748c5757b3790acffa728b0aa9c8f47caa6c25168236088759ee0c0fc3e3ea4b57e0bd98b7f888d52f4c9e2c650e1f75466406b7fd9ebcbd150434ac828d86d816347f037391139c767907f659b72e554be4424ff128f443e6b0f21a3174458f3fb03ace6197eabbc9f113b6f27df651e215261691c8e3a539331c8e9b711b9c6521fb64ca37271b2c8749ad5cb3aec0e771c1bb829d2d0eefa923703fb1e186f645776d5e8a19139171a8ad9c5b17d7758611e7d946616244feb832fba3b6a41ea5eb55807b3ca5e0a756707a1adce31a4492802824956fa2be92610de6f6ac299633d838f64196445180f5932689597a406dcc784c07128946c656e2946da9f87d28cfca56c1a705a59659e62ae03ca2d1fa1d98ad527cadb793e5bfd07ebb02038fb6a41e0393522b14b65a966e2b75119bd90eb501c36f3dd04c01ae617c8753b543cfd6dc29af318c2c86a3ffdb14c840cb60ac220807e564872a509189e201741d7583e4af50ab3727efbd6d27463607836b71681ebe3cd2a1de4c787d4b48d6cff4af6cc7eb2a09c28c377f33f74379a420c264149a9ce7eb0cd7533faa7dc9738bde413d258869063f2a67aee2b947140f876b8e0f3bef41eaf854c40e151d4ea0d3849869fcb8112970973c2562d0c9c920444b448bf42bf95d04c1582574a0d576ef427f5247f69aa15fb4cc97caa41273a66901b3a6a93ee8b4270c78b4beed1c3d92d41b28290cfb0c14ad25168e27fded0df19a267eda2e0f32363ac256d63e4e7fb617b6cbb9d4c5b80ed8f5f9629c5af16a50f77b91d39ab5ab4989bb47f6c2809e21770fe7a42317dc579e36c31b3724f0571ae12e4c2b74577c1004446b7c2c7a82f01e401edd3bf6072806438e1b3e9d5caafb1bc9f8b50803cebf8be456875b4c5947bfedc1ced15200d46eb16c81cc2fd69c50130f95787646fd35345eea8da28331923b2caf13fcbdcaac702227fe27929a7a84a9a76f2d77b8bbea43357f22f2e1cfe14a46d9342baf179478bdcb767b4382450cfc5e20c7ab00f03b70c29e3940efa82dec3319d0f73df275cefba2c277b87c2855fa33f5292e2b9747daba51430446c029ad1e608df55e7e72919c5e23ccc39f1aca887a96f954a3dda5480aa089a7012976d8bafa8b7bade12e5878c4a2a08"}], 0x1010}}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2634.516927] FAULT_INJECTION: forcing a failure.
[ 2634.516927] name failslab, interval 1, probability 0, space 0, times 0
[ 2634.518424] CPU: 1 PID: 13677 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2634.519291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2634.520327] Call Trace:
[ 2634.520661]  dump_stack+0x107/0x167
[ 2634.521115]  should_fail.cold+0x5/0xa
[ 2634.521591]  ? create_object.isra.0+0x3a/0xa20
[ 2634.522160]  should_failslab+0x5/0x20
[ 2634.522644]  kmem_cache_alloc+0x5b/0x310
[ 2634.523156]  ? mark_held_locks+0x9e/0xe0
[ 2634.523665]  create_object.isra.0+0x3a/0xa20
[ 2634.524210]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2634.524853]  kmem_cache_alloc_bulk+0x168/0x320
[ 2634.525429]  io_submit_sqes+0x6fe6/0x8610
[ 2634.525967]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.526600]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.527204]  ? find_held_lock+0x2c/0x110
[ 2634.527713]  ? io_submit_sqes+0x8610/0x8610
[ 2634.528260]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2634.528861]  ? wait_for_completion_io+0x270/0x270
[ 2634.529464]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2634.530044]  ? vfs_write+0x354/0xb10
[ 2634.530515]  ? fput_many+0x2f/0x1a0
[ 2634.530973]  ? ksys_write+0x1a9/0x260
[ 2634.531447]  ? __ia32_sys_read+0xb0/0xb0
[ 2634.531963]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2634.532617]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2634.533263]  do_syscall_64+0x33/0x40
[ 2634.533729]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2634.534383] RIP: 0033:0x7f19c82a1b19
[ 2634.534854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2634.537149] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2634.538114] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2634.539007] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2634.539894] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2634.540777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2634.541658] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:34:46 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$F2FS_IOC_GARBAGE_COLLECT(r5, 0x4004f506, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

[ 2634.589955] FAULT_INJECTION: forcing a failure.
[ 2634.589955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2634.592695] CPU: 0 PID: 13680 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2634.594166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2634.595935] Call Trace:
[ 2634.596494]  dump_stack+0x107/0x167
[ 2634.597266]  should_fail.cold+0x5/0xa
[ 2634.598076]  _copy_from_user+0x2e/0x1b0
[ 2634.598937]  move_addr_to_kernel.part.0+0x31/0x110
[ 2634.599982]  move_addr_to_kernel+0x4f/0x70
[ 2634.600881]  io_connect+0x47a/0x610
[ 2634.601651]  ? io_prep_rw+0x1050/0x1050
[ 2634.602530]  ? __lock_acquire+0xbb1/0x5b00
[ 2634.603438]  io_issue_sqe+0x1611/0x77b0
[ 2634.604282]  ? io_dismantle_req+0xdf/0x180
[ 2634.605176]  ? perf_trace_lock+0xac/0x490
[ 2634.606058]  ? SOFTIRQ_verbose+0x10/0x10
[ 2634.606929]  ? io_connect+0x610/0x610
[ 2634.607746]  ? lock_acquire+0x197/0x470
[ 2634.608582]  ? find_held_lock+0x2c/0x110
[ 2634.609466]  ? __fget_files+0x2cf/0x520
[ 2634.610314]  ? lock_downgrade+0x6d0/0x6d0
[ 2634.611198]  __io_queue_sqe+0x90/0x9d0
[ 2634.612026]  ? io_issue_sqe+0x77b0/0x77b0
[ 2634.612901]  ? __fget_files+0x2f8/0x520
[ 2634.613761]  io_submit_sqes+0x44aa/0x8610
[ 2634.614681]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.615730]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.616748]  ? find_held_lock+0x2c/0x110
[ 2634.617615]  ? io_submit_sqes+0x8610/0x8610
[ 2634.618548]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2634.619572]  ? wait_for_completion_io+0x270/0x270
[ 2634.620588]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2634.621568]  ? vfs_write+0x354/0xb10
[ 2634.622367]  ? fput_many+0x2f/0x1a0
[ 2634.623148]  ? ksys_write+0x1a9/0x260
[ 2634.623949]  ? __ia32_sys_read+0xb0/0xb0
[ 2634.624810]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2634.625912]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2634.627025]  do_syscall_64+0x33/0x40
[ 2634.627808]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2634.628885] RIP: 0033:0x7f9e767a8b19
[ 2634.629673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2634.633573] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2634.635173] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2634.636672] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2634.638162] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2634.639671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2634.641169] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x20000004}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x100000f, 0x80010, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

08:34:46 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x1010, r0, 0x0)
r4 = syz_open_dev$usbmon(&(0x7f0000000040), 0x8000, 0x20800)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
dup2(r4, r5)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000003, 0x110, r0, 0x10000000)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2000, @fd_index=0x3, 0x0, 0x8, 0x9, 0x7, 0x0, {0x0, r3}}, 0x29370e13)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:34:46 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000600)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x11, 0x1, {0x0, r7}}, 0xaf)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/167, 0xa7}], 0x1, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r9=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}, 0x2060)
getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=<r10=>0x0)
r11 = semget(0x2, 0x0, 0x20b)
r12 = getuid()
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r13=>0x0})
semctl$IPC_SET(r11, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r12, r10, r13, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000540)={{}, {0x1, 0x4}, [{0x2, 0x7}, {0x2, 0x0, 0xee01}, {0x2, 0x7, r9}], {0x4, 0x2}, [{0x8, 0x4}, {0x8, 0x1, 0xee01}, {0x8, 0x0, 0xee01}, {0x8, 0x1, r10}, {0x8, 0x6, 0xffffffffffffffff}, {0x8, 0x1, 0xffffffffffffffff}, {0x8, 0x2, 0xee00}, {0x8, 0x5, 0xee01}, {0x8, 0x4, 0xee01}], {0x10, 0x2}, {0x20, 0x1}}, 0x84, 0x1)

[ 2634.776339] FAULT_INJECTION: forcing a failure.
[ 2634.776339] name failslab, interval 1, probability 0, space 0, times 0
[ 2634.777657] CPU: 1 PID: 13801 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2634.778444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2634.779392] Call Trace:
[ 2634.779714]  dump_stack+0x107/0x167
[ 2634.780148]  should_fail.cold+0x5/0xa
[ 2634.780613]  ? create_object.isra.0+0x3a/0xa20
[ 2634.781150]  should_failslab+0x5/0x20
[ 2634.781590]  kmem_cache_alloc+0x5b/0x310
[ 2634.782060]  ? mark_held_locks+0x9e/0xe0
[ 2634.782538]  create_object.isra.0+0x3a/0xa20
[ 2634.783033]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2634.783612]  kmem_cache_alloc_bulk+0x168/0x320
[ 2634.784135]  io_submit_sqes+0x6fe6/0x8610
[ 2634.784626]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.785187]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.785735]  ? find_held_lock+0x2c/0x110
[ 2634.786197]  ? io_submit_sqes+0x8610/0x8610
[ 2634.786698]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2634.787240]  ? wait_for_completion_io+0x270/0x270
[ 2634.787787]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2634.788312]  ? vfs_write+0x354/0xb10
[ 2634.788737]  ? fput_many+0x2f/0x1a0
[ 2634.789150]  ? ksys_write+0x1a9/0x260
[ 2634.789580]  ? __ia32_sys_read+0xb0/0xb0
[ 2634.790041]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2634.790643]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2634.791230]  do_syscall_64+0x33/0x40
[ 2634.791657]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2634.792238] RIP: 0033:0x7f19c82a1b19
[ 2634.792664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2634.794734] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2634.795593] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2634.796397] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2634.797200] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2634.798008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2634.798822] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:34:46 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 86)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:34:46 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:34:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)

[ 2634.867044] FAULT_INJECTION: forcing a failure.
[ 2634.867044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2634.868571] CPU: 1 PID: 13810 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2634.869353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2634.870292] Call Trace:
[ 2634.870602]  dump_stack+0x107/0x167
[ 2634.871015]  should_fail.cold+0x5/0xa
[ 2634.871457]  _copy_from_user+0x2e/0x1b0
[ 2634.871914]  move_addr_to_kernel.part.0+0x31/0x110
[ 2634.872475]  move_addr_to_kernel+0x4f/0x70
[ 2634.872955]  io_connect+0x47a/0x610
[ 2634.873375]  ? io_prep_rw+0x1050/0x1050
[ 2634.873839]  ? __lock_acquire+0xbb1/0x5b00
[ 2634.874331]  io_issue_sqe+0x1611/0x77b0
[ 2634.874784]  ? perf_trace_lock+0xac/0x490
[ 2634.875253]  ? SOFTIRQ_verbose+0x10/0x10
[ 2634.875723]  ? io_connect+0x610/0x610
[ 2634.876160]  ? lock_acquire+0x197/0x470
[ 2634.876609]  ? find_held_lock+0x2c/0x110
[ 2634.877070]  ? __fget_files+0x2cf/0x520
[ 2634.877516]  ? lock_downgrade+0x6d0/0x6d0
[ 2634.877985]  __io_queue_sqe+0x90/0x9d0
[ 2634.878432]  ? io_issue_sqe+0x77b0/0x77b0
[ 2634.878896]  ? __fget_files+0x2f8/0x520
[ 2634.879355]  io_submit_sqes+0x44aa/0x8610
[ 2634.879839]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.880409]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2634.880952]  ? find_held_lock+0x2c/0x110
[ 2634.881417]  ? io_submit_sqes+0x8610/0x8610
[ 2634.881905]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2634.882458]  ? wait_for_completion_io+0x270/0x270
[ 2634.883001]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2634.883523]  ? vfs_write+0x354/0xb10
[ 2634.883941]  ? fput_many+0x2f/0x1a0
[ 2634.884349]  ? ksys_write+0x1a9/0x260
[ 2634.884781]  ? __ia32_sys_read+0xb0/0xb0
[ 2634.885239]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2634.885835]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2634.886434]  do_syscall_64+0x33/0x40
[ 2634.886855]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2634.887438] RIP: 0033:0x7f9e767a8b19
[ 2634.887856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2634.889927] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2634.890788] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2634.891592] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2634.892387] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2634.893184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2634.893990] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:34:46 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

08:34:46 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff})
getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000140), &(0x7f00000001c0)=0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000040)={0x1000, 0x4, 0x1000, 0x174c0000, 0x1})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x300000c, 0x12, r5, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$FIONREAD(r6, 0x541b, &(0x7f0000000340))
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0xf9)
recvmsg$unix(r5, &(0x7f0000000540)={&(0x7f0000000240), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000380)=""/250, 0xfa}], 0x1, &(0x7f0000000500)=[@cred={{0x1c, 0x1, 0x2, {<r8=>0x0}}}], 0x20}, 0x10041)
fcntl$lock(r7, 0x27, &(0x7f0000000580)={0x0, 0x3, 0x3, 0x10001, r8})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x40010, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000140)={0xe1a3ed51464feef2, 0x4, 0x3, 0xc09, 0xffffffffffffffff})

08:34:46 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100800009001f00706879310000000005002000000000000c000500000000000000000010da09a33237beec793eede95d78f206fc7994f1ceab5ce2141b19cf4b8e86a5f53ecdc2806e900b6e9fce9bb0cb7fadcd15859c3750d778de1775d9"], 0x34}}, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r2, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x10)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x50, 0x0, 0x800, 0x70bd26, 0x25dfdbfc, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'macvlan0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000000}, 0x1)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x3, 0x20, 0x0, 0x0, 0x0, r4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x40010, r5, 0x0)
io_uring_enter(r5, 0x0, 0x0, 0x1, 0x0, 0x0)

08:34:46 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x8001)
r6 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r6, &(0x7f0000000100)='net/nfsfs\x00')
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x8, 0x6, 0x9, 0x3f, 0x0, 0x5, 0x800, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x800, 0x1, @perf_config_ext={0x10001, 0x5}, 0x10204, 0x9, 0x9, 0x3, 0x4, 0x7f, 0xfff8, 0x0, 0x5, 0x0, 0x80}, r6, 0x5, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:34:46 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

[ 2635.086331] FAULT_INJECTION: forcing a failure.
[ 2635.086331] name failslab, interval 1, probability 0, space 0, times 0
[ 2635.087678] CPU: 1 PID: 13940 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2635.088452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2635.089387] Call Trace:
[ 2635.089690]  dump_stack+0x107/0x167
[ 2635.090103]  should_fail.cold+0x5/0xa
[ 2635.090542]  ? create_object.isra.0+0x3a/0xa20
[ 2635.091057]  should_failslab+0x5/0x20
[ 2635.091485]  kmem_cache_alloc+0x5b/0x310
[ 2635.091944]  ? mark_held_locks+0x9e/0xe0
[ 2635.092405]  create_object.isra.0+0x3a/0xa20
[ 2635.092898]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2635.093477]  kmem_cache_alloc_bulk+0x168/0x320
[ 2635.094001]  io_submit_sqes+0x6fe6/0x8610
[ 2635.094496]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2635.095055]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2635.095598]  ? find_held_lock+0x2c/0x110
[ 2635.096062]  ? io_submit_sqes+0x8610/0x8610
[ 2635.096559]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2635.097104]  ? wait_for_completion_io+0x270/0x270
[ 2635.097648]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2635.098171]  ? vfs_write+0x354/0xb10
[ 2635.098603]  ? fput_many+0x2f/0x1a0
[ 2635.099016]  ? ksys_write+0x1a9/0x260
[ 2635.099443]  ? __ia32_sys_read+0xb0/0xb0
[ 2635.099904]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2635.100498]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2635.101077]  do_syscall_64+0x33/0x40
[ 2635.101496]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.102072] RIP: 0033:0x7f19c82a1b19
[ 2635.102497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2635.104555] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2635.105415] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2635.106219] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2635.107035] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2635.107837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2635.108636] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:35:01 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
execveat(r4, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000140)='\x86%&)}))-{\x00'], &(0x7f0000000480)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='[!\x00', &(0x7f00000003c0)='+\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='[\x00'], 0x1200)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:01 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x88000, 0x0)
r5 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000080)={0x1, 0x0, &(0x7f0000000040)=[r2, r3, r4, r0, r0, r0, r5]}, 0x7)

08:35:01 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:35:01 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 87)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:35:01 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$vcsa(&(0x7f0000000040), 0x4, 0x402001)
syz_io_uring_setup(0x6bb0, &(0x7f0000000240)={0x0, 0xfbe0, 0x8, 0x1, 0x3bf, 0x0, r5}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f00000001c0))

08:35:01 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

08:35:01 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r9, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r10}}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x6000003, 0x4000010, r9, 0x10000000)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r11, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x14, 0x1, {0x0, r12}}, 0xfffff4df)

[ 2650.384272] FAULT_INJECTION: forcing a failure.
[ 2650.384272] name failslab, interval 1, probability 0, space 0, times 0
[ 2650.385901] CPU: 0 PID: 14066 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2650.386842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2650.387982] Call Trace:
[ 2650.388345]  dump_stack+0x107/0x167
[ 2650.388845]  should_fail.cold+0x5/0xa
[ 2650.389373]  ? create_object.isra.0+0x3a/0xa20
[ 2650.389994]  should_failslab+0x5/0x20
[ 2650.390525]  kmem_cache_alloc+0x5b/0x310
[ 2650.391076]  ? mark_held_locks+0x9e/0xe0
[ 2650.391632]  create_object.isra.0+0x3a/0xa20
[ 2650.392237]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2650.392929]  kmem_cache_alloc_bulk+0x168/0x320
[ 2650.393560]  io_submit_sqes+0x6fe6/0x8610
[ 2650.394157]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2650.394853]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2650.395515]  ? find_held_lock+0x2c/0x110
[ 2650.396075]  ? io_submit_sqes+0x8610/0x8610
[ 2650.396675]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2650.397340]  ? wait_for_completion_io+0x270/0x270
[ 2650.398000]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2650.398640]  ? vfs_write+0x354/0xb10
[ 2650.399150]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2650.399773]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2650.400503]  ? ksys_write+0x1a9/0x260
[ 2650.401028]  ? __ia32_sys_read+0xb0/0xb0
[ 2650.401580]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2650.402294]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2650.403002]  do_syscall_64+0x33/0x40
[ 2650.403513]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2650.404210] RIP: 0033:0x7f19c82a1b19
[ 2650.404714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2650.407220] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2650.408253] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2650.409229] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2650.410191] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2650.411159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2650.412124] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:35:01 executing program 7:
r0 = syz_io_uring_setup(0x3705, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x4, 0x2f4}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRESDEC=r3, @ANYRES16])
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0), 0x1, 0x1, 0x1}, 0xe466)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
listen(r4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000001f9000018000000", @ANYRES32, @ANYBLOB="0100010004e83d5437a77be72ff63006f9cc862c078e82aa27b8004dac8afdf32ccf0000e45cd13b581abd407a9e447a56e09f2f8324c58868b753e03b58ab34ffb4e158d98e3c4001877e7f69c30a3406245d4ecc5ce5da255781337700000000"])
setreuid(0x0, 0xee01)
socket$inet6_udp(0xa, 0x2, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000040))
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

[ 2650.469405] loop7: detected capacity change from 0 to 262144
[ 2650.473878] FAULT_INJECTION: forcing a failure.
[ 2650.473878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2650.477045] CPU: 1 PID: 14077 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2650.478725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2650.480736] Call Trace:
[ 2650.481370]  dump_stack+0x107/0x167
[ 2650.482258]  should_fail.cold+0x5/0xa
[ 2650.483204]  _copy_from_user+0x2e/0x1b0
[ 2650.484160]  move_addr_to_kernel.part.0+0x31/0x110
[ 2650.485330]  move_addr_to_kernel+0x4f/0x70
[ 2650.486331]  io_connect+0x47a/0x610
[ 2650.487207]  ? io_prep_rw+0x1050/0x1050
[ 2650.488182]  ? __lock_acquire+0xbb1/0x5b00
[ 2650.489200]  io_issue_sqe+0x1611/0x77b0
[ 2650.490144]  ? io_dismantle_req+0xdf/0x180
[ 2650.491160]  ? perf_trace_lock+0xac/0x490
[ 2650.492142]  ? SOFTIRQ_verbose+0x10/0x10
[ 2650.493115]  ? io_connect+0x610/0x610
[ 2650.494024]  ? lock_acquire+0x197/0x470
[ 2650.494976]  ? find_held_lock+0x2c/0x110
[ 2650.495972]  ? __fget_files+0x2cf/0x520
[ 2650.496917]  ? lock_downgrade+0x6d0/0x6d0
[ 2650.497931]  __io_queue_sqe+0x90/0x9d0
[ 2650.498875]  ? io_issue_sqe+0x77b0/0x77b0
[ 2650.499845]  ? __fget_files+0x2f8/0x520
[ 2650.500811]  io_submit_sqes+0x44aa/0x8610
[ 2650.501833]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2650.503034]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2650.504190]  ? find_held_lock+0x2c/0x110
[ 2650.505168]  ? io_submit_sqes+0x8610/0x8610
[ 2650.506198]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2650.507358]  ? wait_for_completion_io+0x270/0x270
[ 2650.508503]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2650.509593]  ? vfs_write+0x354/0xb10
[ 2650.510473]  ? fput_many+0x2f/0x1a0
[ 2650.511349]  ? ksys_write+0x1a9/0x260
[ 2650.512249]  ? __ia32_sys_read+0xb0/0xb0
[ 2650.513206]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2650.514460]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2650.515683]  do_syscall_64+0x33/0x40
[ 2650.516559]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2650.517775] RIP: 0033:0x7f9e767a8b19
[ 2650.518654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2650.522958] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2650.524747] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2650.526422] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2650.528114] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2650.529784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2650.531471] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2650.539397] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[ 2650.589404] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
08:35:17 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:35:17 executing program 1:
r0 = syz_io_uring_setup(0x5cb, &(0x7f0000000000)={0x0, 0x759, 0x8, 0x0, 0x2000000}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:35:17 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x182}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:17 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000280), 0x2, 0x0)
lseek(r3, 0x0, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:35:17 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_io_uring_setup(0x3a79, &(0x7f0000000080)={0x0, 0x0, 0x20, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x4010, r4, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f00000003c0)=@IORING_OP_FSYNC={0x3, 0x6, 0x0, @fd_index=0x2}, 0x811)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
syz_io_uring_submit(r1, r6, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x7, 0x3, &(0x7f0000000340)="3250df872f2a282e27e5a01881b5e531fb82c035aed8d420ba0a1aef960b60d04bd5098c3ebcbd26f9b1f19df395a96035ad9bcf9384cefb795664b4bb0d7a654a90be68bc928602932b0b2339a69bd78da42e94ef1cca31fe89b07a21bc4786e8f540a7eed026802e2e5e85", 0x6, 0x0, 0x0, {0x3}}, 0x4)
syz_io_uring_setup(0x3c09, &(0x7f0000000240)={0x0, 0x871c, 0x8, 0x81, 0x3c7}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_NOP={0x0, 0x3}, 0x7fff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:17 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

08:35:17 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 88)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:35:17 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x2000)
bind$bt_sco(r5, &(0x7f0000000140)={0x1f, @none}, 0x8)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2665.903042] FAULT_INJECTION: forcing a failure.
[ 2665.903042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2665.905230] CPU: 0 PID: 14204 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2665.906406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2665.907835] Call Trace:
[ 2665.908293]  dump_stack+0x107/0x167
[ 2665.908921]  should_fail.cold+0x5/0xa
[ 2665.909582]  _copy_from_user+0x2e/0x1b0
[ 2665.910266]  move_addr_to_kernel.part.0+0x31/0x110
[ 2665.911128]  move_addr_to_kernel+0x4f/0x70
[ 2665.911862]  io_connect+0x47a/0x610
[ 2665.912483]  ? io_prep_rw+0x1050/0x1050
[ 2665.913187]  ? __lock_acquire+0xbb1/0x5b00
[ 2665.913912]  io_issue_sqe+0x1611/0x77b0
[ 2665.914597]  ? io_dismantle_req+0xdf/0x180
[ 2665.915335]  ? perf_trace_lock+0xac/0x490
[ 2665.916038]  ? SOFTIRQ_verbose+0x10/0x10
[ 2665.916726]  ? io_connect+0x610/0x610
[ 2665.917396]  ? lock_acquire+0x197/0x470
[ 2665.918078]  ? find_held_lock+0x2c/0x110
[ 2665.918807]  ? __fget_files+0x2cf/0x520
[ 2665.919491]  ? lock_downgrade+0x6d0/0x6d0
[ 2665.920215]  __io_queue_sqe+0x90/0x9d0
[ 2665.920891]  ? io_issue_sqe+0x77b0/0x77b0
[ 2665.921599]  ? __fget_files+0x2f8/0x520
[ 2665.922296]  io_submit_sqes+0x44aa/0x8610
[ 2665.923053]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2665.923912]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2665.924741]  ? find_held_lock+0x2c/0x110
[ 2665.925450]  ? io_submit_sqes+0x8610/0x8610
[ 2665.926202]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2665.927048]  ? wait_for_completion_io+0x270/0x270
[ 2665.927882]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2665.928680]  ? vfs_write+0x354/0xb10
[ 2665.929329]  ? fput_many+0x2f/0x1a0
[ 2665.929952]  ? ksys_write+0x1a9/0x260
[ 2665.930621]  ? __ia32_sys_read+0xb0/0xb0
[ 2665.931323]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2665.932222]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2665.933112]  do_syscall_64+0x33/0x40
[ 2665.933758]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2665.934653] RIP: 0033:0x7f9e767a8b19
[ 2665.935294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2665.938477] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2665.939804] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2665.941049] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2665.942307] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2665.943549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2665.944787] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:35:17 executing program 1:
r0 = syz_io_uring_setup(0x8003862, &(0x7f0000000040)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

[ 2665.959406] FAULT_INJECTION: forcing a failure.
[ 2665.959406] name failslab, interval 1, probability 0, space 0, times 0
[ 2665.961405] CPU: 0 PID: 14215 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2665.962603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2665.964068] Call Trace:
[ 2665.964532]  dump_stack+0x107/0x167
[ 2665.965173]  should_fail.cold+0x5/0xa
[ 2665.965835]  ? create_object.isra.0+0x3a/0xa20
[ 2665.966649]  should_failslab+0x5/0x20
[ 2665.967327]  kmem_cache_alloc+0x5b/0x310
[ 2665.968035]  ? mark_held_locks+0x9e/0xe0
[ 2665.968751]  create_object.isra.0+0x3a/0xa20
[ 2665.969514]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2665.970425]  kmem_cache_alloc_bulk+0x168/0x320
[ 2665.971250]  io_submit_sqes+0x6fe6/0x8610
[ 2665.972014]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2665.972897]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2665.973763]  ? find_held_lock+0x2c/0x110
[ 2665.974490]  ? io_submit_sqes+0x8610/0x8610
[ 2665.975267]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2665.976121]  ? wait_for_completion_io+0x270/0x270
[ 2665.976973]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2665.977801]  ? vfs_write+0x354/0xb10
[ 2665.978466]  ? fput_many+0x2f/0x1a0
[ 2665.979120]  ? ksys_write+0x1a9/0x260
[ 2665.979798]  ? __ia32_sys_read+0xb0/0xb0
[ 2665.980520]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2665.981443]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2665.982362]  do_syscall_64+0x33/0x40
[ 2665.983029]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2665.983943] RIP: 0033:0x7f19c82a1b19
[ 2665.984601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2665.987861] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2665.989200] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2665.990463] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2665.991728] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2665.992994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2665.994261] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:35:17 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000340)={0x0, 0x0, 0x1, 0x0, 0x59}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x101800, 0x0)
syz_io_uring_setup(0x7b, &(0x7f0000000040)={0x0, 0x151d, 0x1, 0x3, 0x152, 0x0, r2}, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x104, &(0x7f00000001c0)=0x8, 0x0, 0x4)
syz_io_uring_submit(r3, r1, &(0x7f0000000140)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x2, &(0x7f0000000240)="8231bf6034486d69a3250fb40d961329845db66d0822f8bf25600ab7ae47c5fbf867d14fdce340895c4ed3b1e6ebad8825a3f0dd5cf0630b1edc93c912931b17c82c1eed9cab41d024954f5345f8317984613be43650f5e82563e3127c910e3d541add2baa1f29269ab4c5c5ba8b3b1abfaf3c997e", 0xffffffff, 0x0, 0x0, {0x3}}, 0x5)

08:35:17 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0x0, 0xee01}}, './file0\x00'})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x2000007, 0x10, r4, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)

08:35:17 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 89)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:35:17 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:35:17 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000080)=@hci}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r2 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000001c0), 0xc}}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, &(0x7f0000000140)=0x10, 0x400)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = gettid()
process_vm_readv(r4, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
ioctl$sock_SIOCADDRT(r3, 0x890b, &(0x7f0000000240)={0x0, @ax25={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1}, @tipc=@name={0x1e, 0x2, 0x1, {{0x0, 0x2}, 0x4}}, @nfc={0x27, 0x1, 0x1, 0x6}, 0xb7a, 0x0, 0x0, 0x0, 0xd7ea, 0x0, 0x3, 0x311bb417, 0x40})
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000340))

08:35:17 executing program 5:
r0 = syz_io_uring_setup(0x385f, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000006, 0x30, r0, 0x8000000)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x100000d, 0x50, r0, 0x10000000)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x2007, @fd_index=0x2, 0xfffffffffffffffd, 0x0, 0x0, 0x3, 0x1, {0x1}}, 0x101)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:17 executing program 7:
r0 = syz_io_uring_setup(0x2003842, &(0x7f0000000340)={0x0, 0x1000cf5f, 0x8, 0x5, 0xda}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, r3, 0x8000000)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r7 = signalfd4(r6, &(0x7f0000000040)={[0x8]}, 0x8, 0x800)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x4, 0xbc, 0x4, 0x7, 0x0, 0x4, 0x18000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x4, 0x9}, 0x0, 0xe1e, 0x2, 0x9, 0x4, 0x7101cfde, 0x81, 0x0, 0x40}, 0x0, 0xf, r7, 0xa)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:35:17 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

[ 2666.191443] FAULT_INJECTION: forcing a failure.
[ 2666.191443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2666.193015] CPU: 1 PID: 14345 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2666.193848] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2666.194780] Call Trace:
[ 2666.195103]  dump_stack+0x107/0x167
[ 2666.195547]  should_fail.cold+0x5/0xa
[ 2666.196012]  _copy_from_user+0x2e/0x1b0
[ 2666.196500]  move_addr_to_kernel.part.0+0x31/0x110
[ 2666.197096]  move_addr_to_kernel+0x4f/0x70
[ 2666.197606]  io_connect+0x47a/0x610
[ 2666.198052]  ? io_prep_rw+0x1050/0x1050
[ 2666.198530]  ? mark_held_locks+0x9e/0xe0
[ 2666.199036]  ? __lock_acquire+0xbb1/0x5b00
[ 2666.199554]  io_issue_sqe+0x1611/0x77b0
[ 2666.200036]  ? perf_trace_lock+0xac/0x490
[ 2666.200536]  ? SOFTIRQ_verbose+0x10/0x10
[ 2666.201031]  ? io_connect+0x610/0x610
[ 2666.201495]  ? lock_acquire+0x197/0x470
[ 2666.201973]  ? find_held_lock+0x2c/0x110
[ 2666.202470]  ? __fget_files+0x2cf/0x520
[ 2666.202967]  ? lock_downgrade+0x6d0/0x6d0
[ 2666.203472]  __io_queue_sqe+0x90/0x9d0
[ 2666.203941]  ? io_issue_sqe+0x77b0/0x77b0
[ 2666.204447]  ? __fget_files+0x2f8/0x520
[ 2666.204927]  io_submit_sqes+0x44aa/0x8610
[ 2666.205440]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2666.206030]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2666.206616]  ? find_held_lock+0x2c/0x110
[ 2666.207125]  ? io_submit_sqes+0x8610/0x8610
[ 2666.207651]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2666.208232]  ? wait_for_completion_io+0x270/0x270
[ 2666.208814]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2666.209371]  ? vfs_write+0x354/0xb10
[ 2666.209817]  ? fput_many+0x2f/0x1a0
[ 2666.210263]  ? ksys_write+0x1a9/0x260
[ 2666.210731]  ? __ia32_sys_read+0xb0/0xb0
[ 2666.211219]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2666.211852]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2666.212465]  do_syscall_64+0x33/0x40
[ 2666.212916]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2666.213533] RIP: 0033:0x7f9e767a8b19
[ 2666.213981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2666.216183] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2666.217031] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2666.217881] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2666.218750] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2666.219536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2666.220392] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
[ 2666.267105] FAULT_INJECTION: forcing a failure.
[ 2666.267105] name failslab, interval 1, probability 0, space 0, times 0
[ 2666.269517] CPU: 0 PID: 14406 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2666.270751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2666.272215] Call Trace:
[ 2666.272685]  dump_stack+0x107/0x167
[ 2666.273336]  should_fail.cold+0x5/0xa
[ 2666.274021]  ? create_object.isra.0+0x3a/0xa20
[ 2666.274837]  should_failslab+0x5/0x20
[ 2666.275512]  kmem_cache_alloc+0x5b/0x310
[ 2666.276241]  ? mark_held_locks+0x9e/0xe0
[ 2666.276965]  create_object.isra.0+0x3a/0xa20
[ 2666.277756]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2666.278666]  kmem_cache_alloc_bulk+0x168/0x320
[ 2666.279477]  io_submit_sqes+0x6fe6/0x8610
[ 2666.280242]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2666.281128]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2666.281993]  ? find_held_lock+0x2c/0x110
[ 2666.282726]  ? io_submit_sqes+0x8610/0x8610
[ 2666.283495]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2666.284350]  ? wait_for_completion_io+0x270/0x270
[ 2666.285206]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2666.286022]  ? vfs_write+0x354/0xb10
[ 2666.286674]  ? fput_many+0x2f/0x1a0
[ 2666.287308]  ? ksys_write+0x1a9/0x260
[ 2666.287970]  ? __ia32_sys_read+0xb0/0xb0
[ 2666.288679]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2666.289593]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2666.290488]  do_syscall_64+0x33/0x40
[ 2666.291143]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2666.292035] RIP: 0033:0x7f19c82a1b19
[ 2666.292680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2666.295875] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2666.297197] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2666.298435] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2666.299688] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2666.300933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2666.302177] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
08:35:31 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

08:35:31 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:35:31 executing program 1:
r0 = syz_io_uring_setup(0x214d, &(0x7f00000002c0)={0x0, 0x8cd2, 0x1, 0xfffffffc, 0xfffffffd}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000180))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r1=>0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r1}, &(0x7f00000002c0))
timer_delete(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$unix(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = dup(r3)
close(0xffffffffffffffff)
r5 = accept(r2, &(0x7f0000000180)=@l2, &(0x7f0000000100)=0x80)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x1a, 0x2, 0x70bd2a, 0x25dfdbff, {0xc}, [@typed={0x8, 0x1a, 0x0, 0x0, @fd=r5}]}, 0x1c}}, 0x8040)
recvmmsg(r4, &(0x7f0000007940)=[{{0x0, 0x200000, 0x0}}], 0x500, 0x20000022, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, r0, 0x0)
io_uring_enter(r0, 0x7913, 0xe7f0, 0x1, 0x0, 0x0)

08:35:31 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r7, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
dup3(r6, r7, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1004010}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)={0x2e8, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x290, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x27, 0x5, "b603a51e006c4be65f0c6684012f71b334d7476546b7e14c16dc78a8575c8e6ac835c2"}, @ETHTOOL_A_BITSET_BITS={0xdc, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ')\x00'}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffff58}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffff}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x88, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, ',\'\',@$\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '^/+#&\x00'}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9e21}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x20}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xdaa}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '^.)\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '!\'\\[{-(\\\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x82, 0x5, "96c4922dd5e238673d01fbca3bde3de5074f6a95ae6f4358f0a435fbccd0b5aac87520cab2aad9af22bf92e9621e0b454ec8d247e19244d4539a5103f2a3095c910e6c0f41854950e96537207185e274d9a5679462c8d8e43c4fecd85d4e1ff5f2ca1e85ea0870fbc1f9629e37fdd6811f524f1c074da1d0c0c90eb1271a"}, @ETHTOOL_A_BITSET_VALUE={0x75, 0x4, "230a2875d86f00c08f97a369ee8d0e5f42c67e9dc8a310a160afedb2406ca8a8e3841bb3ed3193e30b71491c2575a1f88d4eeda13a7f7061ab4cf4abfb2fc3b00b421c24b7269fc2e156e5b19d47811426bcc59defc36f6f40d536b99a27b6cc045492e06ae3cc675dd560c074def9a6fb"}]}, @ETHTOOL_A_DEBUG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_DEBUG_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x2e8}}, 0x40)

08:35:31 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x3}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='io\x00')
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f00000001c0)=r3, 0x1)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1800000, 0x50, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0xfffff58c, 0x1, 0x0, {0x0, 0x0, r3}}, 0x7fffffff)
openat(r5, &(0x7f0000000240)='./file0\x00', 0x404400, 0x110)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:35:31 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x80d, 0x592, 0x3, &(0x7f0000000140)={[0x9]}, 0x8)
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:31 executing program 3:
r0 = syz_io_uring_setup(0xc18, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_complete(r1)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, r5, 0x80, &(0x7f0000000240)=@ieee802154={0x24, @none={0x0, 0xae6272d386cc6eea}}}, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0xc0100, 0x52, 0x1f}, 0x18)
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r9, 0x0, 0x0}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r10, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r8, &(0x7f0000000340)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0x7, 0x7407, 0x0, 0xeed}, 0x1)

08:35:31 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 90)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2680.408862] FAULT_INJECTION: forcing a failure.
[ 2680.408862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2680.411911] CPU: 1 PID: 14466 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2680.413682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2680.415778] Call Trace:
[ 2680.416461]  dump_stack+0x107/0x167
[ 2680.417400]  should_fail.cold+0x5/0xa
[ 2680.418391]  _copy_from_user+0x2e/0x1b0
[ 2680.419398]  move_addr_to_kernel.part.0+0x31/0x110
[ 2680.420445]  move_addr_to_kernel+0x4f/0x70
[ 2680.421339]  io_connect+0x47a/0x610
[ 2680.422112]  ? io_prep_rw+0x1050/0x1050
[ 2680.422957]  ? __lockdep_reset_lock+0x180/0x180
[ 2680.423951]  ? lock_acquire+0x197/0x470
[ 2680.424792]  ? __lock_acquire+0xbb1/0x5b00
[ 2680.425693]  io_issue_sqe+0x1611/0x77b0
[ 2680.426556]  ? perf_trace_lock+0xac/0x490
[ 2680.427441]  ? SOFTIRQ_verbose+0x10/0x10
[ 2680.428311]  ? lock_chain_count+0x20/0x20
[ 2680.429197]  ? io_connect+0x610/0x610
[ 2680.430011]  ? lock_acquire+0x197/0x470
[ 2680.430860]  ? find_held_lock+0x2c/0x110
[ 2680.431727]  ? __fget_files+0x2cf/0x520
[ 2680.432569]  ? lock_downgrade+0x6d0/0x6d0
[ 2680.433457]  __io_queue_sqe+0x90/0x9d0
[ 2680.434293]  ? io_issue_sqe+0x77b0/0x77b0
[ 2680.435181]  ? __fget_files+0x2f8/0x520
[ 2680.436046]  io_submit_sqes+0x44aa/0x8610
[ 2680.436961]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2680.438016]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2680.439050]  ? find_held_lock+0x2c/0x110
[ 2680.439920]  ? io_submit_sqes+0x8610/0x8610
[ 2680.440851]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2680.441879]  ? wait_for_completion_io+0x270/0x270
[ 2680.442913]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2680.443900]  ? vfs_write+0x354/0xb10
[ 2680.444700]  ? fput_many+0x2f/0x1a0
[ 2680.445471]  ? ksys_write+0x1a9/0x260
[ 2680.446279]  ? __ia32_sys_read+0xb0/0xb0
[ 2680.447157]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2680.448277]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.449379]  do_syscall_64+0x33/0x40
[ 2680.450172]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2680.451275] RIP: 0033:0x7f19c82a1b19
[ 2680.452074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.455993] RSP: 002b:00007f19c5817188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2680.457611] RAX: ffffffffffffffda RBX: 00007f19c83b4f60 RCX: 00007f19c82a1b19
[ 2680.459044] FAULT_INJECTION: forcing a failure.
[ 2680.459044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2680.459145] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2680.459157] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.459168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2680.459179] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
[ 2680.469385] CPU: 0 PID: 14471 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2680.471038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2680.473012] Call Trace:
[ 2680.473652]  dump_stack+0x107/0x167
[ 2680.474534]  should_fail.cold+0x5/0xa
[ 2680.475459]  _copy_from_user+0x2e/0x1b0
[ 2680.476421]  move_addr_to_kernel.part.0+0x31/0x110
[ 2680.477601]  move_addr_to_kernel+0x4f/0x70
[ 2680.478620]  io_connect+0x47a/0x610
[ 2680.479509]  ? io_prep_rw+0x1050/0x1050
[ 2680.480487]  ? __lock_acquire+0xbb1/0x5b00
[ 2680.481511]  io_issue_sqe+0x1611/0x77b0
[ 2680.482476]  ? io_dismantle_req+0xdf/0x180
[ 2680.483502]  ? perf_trace_lock+0xac/0x490
[ 2680.484510]  ? SOFTIRQ_verbose+0x10/0x10
[ 2680.485492]  ? io_connect+0x610/0x610
[ 2680.486430]  ? lock_acquire+0x197/0x470
[ 2680.487391]  ? find_held_lock+0x2c/0x110
[ 2680.488380]  ? __fget_files+0x2cf/0x520
[ 2680.489339]  ? lock_downgrade+0x6d0/0x6d0
[ 2680.490354]  __io_queue_sqe+0x90/0x9d0
[ 2680.491325]  ? io_issue_sqe+0x77b0/0x77b0
[ 2680.492323]  ? __fget_files+0x2f8/0x520
[ 2680.493309]  io_submit_sqes+0x44aa/0x8610
[ 2680.494357]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2680.495566]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2680.496732]  ? find_held_lock+0x2c/0x110
[ 2680.497694]  ? io_submit_sqes+0x8610/0x8610
[ 2680.498610]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2680.499643]  ? wait_for_completion_io+0x270/0x270
[ 2680.500659]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2680.501643]  ? vfs_write+0x354/0xb10
[ 2680.502434]  ? fput_many+0x2f/0x1a0
[ 2680.503211]  ? ksys_write+0x1a9/0x260
[ 2680.504018]  ? __ia32_sys_read+0xb0/0xb0
[ 2680.504885]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2680.505999]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.507096]  do_syscall_64+0x33/0x40
[ 2680.507886]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2680.508962] RIP: 0033:0x7f9e767a8b19
[ 2680.509747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.513630] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2680.515255] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2680.516772] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2680.518287] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.519818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2680.521328] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:35:32 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:32 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x0)
io_uring_enter(r0, 0x58e4, 0x4c60, 0x2, &(0x7f0000000000)={[0x7f]}, 0x8)
syncfs(r0)
r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$HIDIOCSUSAGE(r1, 0x4018480c, &(0x7f0000000040)={0x3, 0x3, 0x800, 0x8000, 0x4, 0x28})

08:35:32 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

08:35:32 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff1000/0x2000)=nil, 0x2000, 0x1000000, 0x110, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f00000008c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x1, 0x1}, 0x200)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
sendmmsg$inet6(r6, &(0x7f0000000e00)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, 0x6}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000340)="87cf3eb297684df4083050bceda14f5175b40eaa943c3e86bef37b4978d09c8d4f31b9c1b1c941cc8d66dbd8ba5f35f9527e46972e5c3ec0c8a49d2153d55fed6ce03a30275110cbc9f4e9d0bac508c773778327a24849a8fe00cca6981df4aec5053c26eaf75dfdcb20cb065a46b299bf86b3e0cb7b59ff224a098119bbd7ea53d93302a66b224535353c404a9aecf9be508fccdba0e30e6b773c1e366e0103a690ca4d2dd8903d0e9895b504a9b96c23a90b3f0d7459d8e676b326fe1b671c20a5ad14cd691e7f61fff01edff8ffa214de2dd9a0370e2d33b1df1a9277d72014653575662d6e879f55", 0xea}, {&(0x7f0000000440)="714be57de7cd751fa26a0ae81a08a4affe48a3db48dd82d73d50029e7c587abaf517bb3aae4f1f98e490550463a1bee712e6103fe8636f6961ec0389c997ac3effb4eb1977df6012d128dfdc1b3b4b4d3fb655a778b8be2eba66d44790c1f83bf4b04bff507c4f0a695a58c09300926a8e187dbc72774f8d05a799dbf35a2a4ae382c47e89819dc9e813184a1bada13fdff62758f6c2e59f69a4cacab96aff67402e347fc4126e69b35a1207e4c6a1e03f785e628ebe4441c06e5412f38f2c3b107bd176dc30e1", 0xc7}, {&(0x7f0000000540)="03691a7c67069e838a72c849774d21e32672f275fa0a65a3375800aec02594c09ae38e86120cf54bc55a8d4f7fdc7bd2d2651d76eec9c4828d807a9f9c58e609af8913127b5b47dd291c0ac5e1b8b55d0af0a4b3e275e75246b3e61d519c744d0d99a1c78a0efe3a1a4e99d7bfe379552598103528a4814a1a37bbe40c43e68aa143b9a147561198f4335d89a7653bb4152b019cb0ee4b9fd3a12fc4aa6ffcd3cd96ceb0b245f5de371b3d0314b8585d6289104fed34b9df8e31cb1c0c8ccc8c668d573dd3fae671d2f6384b32660bb4a17f26f3670174d948a69e8ef142de2a6c6f67dbbed4c72e9a15b9f539bf7a7e23", 0xf1}], 0x3}}, {{&(0x7f0000000240)={0xa, 0x4e20, 0x305, @dev={0xfe, 0x80, '\x00', 0x23}, 0xffff}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000640)="b838431025a815f2a62106717b748eb5e250f7108b03552b47daf6d01fcfd1adf9ee0916e9592b20bf893d4aa23bac5ccbc8281e4ac8cc74e82417471ec8162514b300d32849d256128d4480a3cbb1fedd0472ec61faeabbbbf4ae0c89c0a7830ea14ff87b7378f7f2a788d6782bc8a07ca25f7f6c304b3ab16d2af6093e69b9a2f715db01d2a84ad0459c3034a54bae36ef7a1b7eb19ce7c0fe7249ee486ba75db019e66b5d9cf848ad61c62acf", 0xae}], 0x1, &(0x7f0000000700)=[@rthdrdstopts={{0x20, 0x29, 0x37, {0x11, 0x0, '\x00', [@pad1]}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000740)="d3afd28a49d5985d048eea91bcba7240a7b7c980c15e5dbcaba9b371fd316017b284132deb920800a21ad23fb707831f0f7f66c35d4d35446635244560b008e40ccdf53dcb584fcc03ed3bd4d8d0d75fb7a4e0903ad30a487e9671ebbfdb7bdccfe317cfbb22fa6d08865ae1db96c1b01025585198d42e9beb8f149c", 0x7c}, {&(0x7f00000007c0)="77bdd89c3e054f2c8e5a65eb8e32c486cfb5a89f26c91d9f97f439380036f69ed617a2145d739a22207e7c56d73d939ccc9cced4fbdc48fb4ff3c9c40da64c66f48d220a22da1f0889314460f73d098599b096cc1320a1e38b5da7db3541e3161b32007da36138cf4e1134ce97141179576ae277ffb3be2a41154e6d4672fb5273b94b3501da5ba27e6cf81a12cfd26c5a8d6ca306e8d37dfe99b8a41692586b608c468b6bb08509ccb87f76493fade3a50c91bc2e6aeea6c058007c5b4f06f5b7d9ef0d988e7959c210f39bb19c", 0xce}, {&(0x7f00000008c0)}, {&(0x7f0000000900)="eb75168bb6d8b88ebafacb38d8d390ec862fc8c44d27a903e0539b9a4fa3fd7e2d89b15cbae787aa62d19017289917102e374e35bc2555fc6a7bca0219a87c1973f1086a05b1e4220fc3529c3488edecb04b7133923d1540aa7cab8554b8679a24e976ef4e68587226f70d6449c68ad8eae536741c0f7d070eafe1f8c3c0554a296ca2eb7d71565ca815051faaae64979f3b6a73399debeb5cd80d9415f837", 0x9f}, {&(0x7f00000009c0)="5c228a0a", 0x4}, {&(0x7f0000000a00)="21d4b8fc660b31707a26362133bcd744bf9dc4f2f05babb56e0aa6dd2fda22111c0d3b25fc85827f07ba7bc7cede55d54b38a319977bc0a6e96222f08cb6f2c03888188b02bdaaa299c88a9f09056143851f3ef6d3a20d842dc9ffc63bdf08ccd6a01a57b29d08e8c10e748f45c24a4b756c0cdf909d11ade58c8470f6da1a0011b3b24cd4b62a6ac091b1fed4b9c6616954b026a8ffdb6d7b6d929cf14a9a5c1b84af0ee69dbae4cc41d56ef3edb9fae09bb254d8687e268456b9b229ae00ff85f7885437d0375647e3e3f7d4c3394ebdb8bd756e1fdc70bf13d1", 0xdb}, {&(0x7f0000000b00)="1a38e87d59b59c5c945078983145e25de48e6d9bd4d5534e8a60bddb016773d6eb225277", 0x24}, {&(0x7f0000000b40)="0c94e604277ca10760dd206ebda154cb3a070eb876762aebf8ca7d9026915115fa7d85d47794d82190d15f1aa2a7ebbcc898a320ea46d96ea91497b86253d619141e21deb9b134255b4e06d1b1df836e7abc5e60c409a0ed774bd33fd892f74109a4e8dfcf476bbe56f2d89e43fba8c455a4f0bb3e0d0d48e9d9dda4e1cd98261b09c233ee593cf06c245aaef559bfdd90e59558675209fe511516675f0c8915b5976ae7d42fa28f8dfb36fb9f877a8c858930fa58f7ad27", 0xb8}], 0x8, &(0x7f0000000c80)=[@hoplimit={{0x14, 0x29, 0x34, 0x80000001}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x33, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x1}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @pktinfo={{0x24, 0x29, 0x32, {@remote}}}, @rthdrdstopts={{0xd0, 0x29, 0x37, {0x5c, 0x16, '\x00', [@generic={0x7, 0x3, "eb9701"}, @padn={0x1, 0x2, [0x0, 0x0]}, @generic={0x1f, 0x6d, "a8e10acf5cc33ffed6d1f06e3f7db38067ced8cb9c1352317d5cf375e5f97986d42dd30668dfa325ec442c9385a7f306795e89e952a76024ea28c0f4052e7d39e765394c55505368d40d9424e3c55a06eda44d774c0e8c7e237e0144bb39083670db89ad458e9fea378597e63c"}, @calipso={0x7, 0x18, {0x0, 0x4, 0x1, 0xfd, [0x7, 0x5]}}, @calipso={0x7, 0x10, {0x2, 0x2, 0x8, 0xfe01, [0xffffffff]}}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}], 0x148}}], 0x3, 0x8000)

08:35:45 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = syz_open_dev$rtc(&(0x7f0000000040), 0x7, 0x20400)
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029d308734b091464030eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r10, &(0x7f0000000240)=0x3, r4, &(0x7f0000000280)=0xffff, 0x5, 0x1)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd=r4, 0x6, 0x0, 0xfffffff8, 0x0, 0x1, {0x0, r9}}, 0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140)=<r13=>0x0)
r14 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r14, 0x0, 0x0}, 0x0)
r15 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0)
syz_io_uring_submit(r15, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80800}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:45 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000006, 0x12, r0, 0x10000000)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_WRITEV={0x2, 0x5, 0x2007, @fd_index=0x3, 0x4, &(0x7f00000008c0)=[{&(0x7f0000000240)="848b17a2ce3679f472a6d0ea3421e447442af8f4e457bd1ebd9f1cb8e89f0cdd05a1ed110c0e74041beea283566e55841df10ac6f986b59848d3339187c687ee1579d4e21460e30b", 0x48}, {&(0x7f0000000340)="888e1fb7c777ac9ad9f1cc87246d737c450f3d42425c80841a58c7954ce533375766ecc837fe1e907f79c8abcca8df49f6cfe6290ff1f09fa98a25f494ad327a3e31c46b07f2d1f981f926519041fee8a630d435fc739d68b779", 0x5a}, {&(0x7f0000000500)="38bf0f9ee77712b137b9632d63828288fa870c781b1a135078e9a8697daed3862b17dd98c1c2b9550bf37d41b787a4c3d668d2df3d3a68497ac049bfd5f41b554e33e16bfa6cf2f0befb1143259ba8d6d174c73028ca8c64c02218d25fda9b0612a54bb1ec57b776a951c80ff450eb2e53f4c98bfa109c89bd6befdf1942661fec62f5e3a5f87221b4e896c86f05c484c822479388fc39c1015999c36828d5ea3d5bd7c189f8e48fcb3bae6a8923ab5d1edb7a7b78ed41e9017bd14bf9e18a4cc895ff", 0xc3}, {&(0x7f0000000040)="c0eca7d24ba2d9bfac69c6d14eff28a77c1a915bcae46f7be344c2f0c0a2a24dc1fd3b83290e7880be", 0x29}, {&(0x7f00000003c0)="ac2a52fceb068f3437ba53af4c5da39fab5d5322a29731fc2c35b89ec2d39f6714f7e51915ea5214887a27e77dff9e2a3771f6b1459ac985bbd3e8ea06b0896955c06800d04bbf4a87c6bceec1505105b1f7bd8ec4a14369a9941ed1fd71968a", 0x60}, {&(0x7f0000000600)="0d34b4c4a2fab96f8087304f09a46e975a31c88f782a56a0c83ed01545681353d31ca32d93c963f306ff5f7c02944619790181e864f524b443a8edc607e3e0fa6398c7ce140a8858e5920474e050bc7fb0ed745de60b44931864b7d2e9e9be609040681be3dd7da103171e03eec5af9d5c348514f96fb6a2b7ff47ece54de75b6306c68e95e458b14dc3c8586955a56d7d2c9a0b9c21c36a24142b18f58147682a3bd7770f663e6f5b8b223a86e83a4909c363b32a0d2987dbd4b9d01fe4bb9a9564ff17b51684fd4deba807d7bf7ae4ad501408e2930243d3", 0xd9}, {&(0x7f0000000700)="e72007571fc1378a682e46f8dc7eb3e304a78684d408c21db8cb81ed0d7e024e39abe1ccf28a373eab2023c9bc943531a529f496ecbf6c6e28cf5e3bf20981b85b82c089abaaaab137e2a805744f69e7f2dd2ad60d282797aad581ea97c9d6c74ee2d28181c37b413124ca18cf99f621a872dd4cec5356c3e0582f2400bb63783b1079860b14ae9676b96a1f2f1f775d1d9ad5161707e9b9e3f2d2cd8d316b13cd79bfbf39e6f1f103d989f809d6ebaae1c9f3e0ce84bbae245d545d75d18cea9ffddda1a63f2ef4a5608aeb400e5186efb70b404cb90712257aef611bb9", 0xde}, {&(0x7f0000000800)="0260278af3c4df8475070a11289c4fd0db3be45b820cd26358ef44aab7b27a56d7e72261c7e26fd3c6037d261776179f89c354181dfcbab477a7c6b7f5aa138f2efa8370db97f754721f30396b22a2fa96fe046e8abb336ae1d8c28b90349d459d0f0dacd61180f7a3f645b9f1a7abefcc7871ce45732f6c0bca920b24d8d33db2462ba659e8721e71926fabe71adb79469f60452206e5eac6429c16402f812dc74ceb81a118f9be9ac8b0ab310b6d1daaa8d3b8d3", 0xb5}], 0x8, 0x2, 0x1}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:45 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 91)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:35:45 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

08:35:45 executing program 1:
r0 = syz_io_uring_setup(0x2a53, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2, 0x214}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x2000005, 0x10, r0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r1, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x12, 0x8010, r1, 0x8000000)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x20)
fcntl$lock(r2, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
io_uring_enter(r2, 0x48e2, 0x47, 0x2, &(0x7f0000000040)={[0x333]}, 0x8)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:35:45 executing program 7:
r0 = syz_io_uring_setup(0x13860, &(0x7f00000002c0)={0x0, 0x4, 0x20, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITEV={0x2, 0x0, 0x6000, @fd_index=0x9, 0x83a, &(0x7f0000000400)=[{&(0x7f0000000340)="e1044ea46476649ea68999b98378613dd34a06d7b2d69aa269a673f25d861929389e2c3942f2bb83c0c7b7c2b074f67b53f4968086fa19caee70b0bf187580a0fd6d65e5ff4cce975bb237969933ccfabdc665df593c813e902dc71a", 0x5c}, {&(0x7f0000000280)="0033fd9f2ffb293aaefc0c1c8852c3fb7bcc72d324a479cf0dc67fb79e78fb59664b", 0x22}, {&(0x7f00000003c0)="ee411272849d1bd4f8e75bb189a9e0b8a9351c23e78fc88cffad772bb48e2fab342645ed000000000000", 0x6c}], 0x3, 0x18, 0x0, {0x2}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="400800000febd8ccefc200d4e39f433d2a04fce2c56cb59d6510d2f06bc1ee886102b82dc041c2d6bf9e78a6093c81eee785b99a826b4a512300000000", @ANYRES16=r6, @ANYBLOB="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", @ANYBLOB="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", @ANYRES32=r9], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000140)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0\x00', 0x90, 0x24000, 0x12345, {0x0, r10}}, 0x4)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000006c0)={<r11=>0x0, @local, @remote}, &(0x7f0000000700)=0xc)
bind$packet(0xffffffffffffffff, &(0x7f0000000740)={0x11, 0x0, r11, 0x1, 0x2d}, 0x14)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, 0x0)

08:35:45 executing program 5:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x14, 0x7, 0x1, 0x201, 0x0, 0x0, {0xc, 0x0, 0x8}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000044}, 0x800)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'veth1_to_bridge\x00'})
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)

08:35:45 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

[ 2694.082738] FAULT_INJECTION: forcing a failure.
[ 2694.082738] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2694.084135] CPU: 1 PID: 14729 Comm: syz-executor.2 Not tainted 5.10.240 #1
[ 2694.084939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2694.085900] Call Trace:
[ 2694.086212]  dump_stack+0x107/0x167
[ 2694.086636]  should_fail.cold+0x5/0xa
[ 2694.087089]  _copy_to_user+0x2e/0x180
[ 2694.087536]  simple_read_from_buffer+0xcc/0x160
[ 2694.088073]  proc_fail_nth_read+0x198/0x230
[ 2694.088569]  ? proc_sessionid_read+0x230/0x230
[ 2694.089092]  ? security_file_permission+0xb1/0xe0
[ 2694.089650]  ? proc_sessionid_read+0x230/0x230
[ 2694.090173]  vfs_read+0x228/0x620
[ 2694.090574]  ksys_read+0x12d/0x260
[ 2694.090993]  ? vfs_write+0xb10/0xb10
[ 2694.091429]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2694.092030]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2694.092623]  do_syscall_64+0x33/0x40
[ 2694.093067]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2694.093657] RIP: 0033:0x7f19c825469c
[ 2694.094083] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2694.096204] RSP: 002b:00007f19c5817170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2694.097075] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f19c825469c
[ 2694.097895] RDX: 000000000000000f RSI: 00007f19c58171e0 RDI: 0000000000000004
[ 2694.098713] RBP: 00007f19c58171d0 R08: 0000000000000000 R09: 0000000000000000
[ 2694.099567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2694.100381] R13: 00007ffff156d22f R14: 00007f19c5817300 R15: 0000000000022000
[ 2694.110988] FAULT_INJECTION: forcing a failure.
[ 2694.110988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2694.113949] CPU: 0 PID: 14716 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2694.115667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2694.117713] Call Trace:
[ 2694.118371]  dump_stack+0x107/0x167
[ 2694.119286]  should_fail.cold+0x5/0xa
[ 2694.120238]  _copy_from_user+0x2e/0x1b0
[ 2694.121233]  move_addr_to_kernel.part.0+0x31/0x110
[ 2694.122454]  move_addr_to_kernel+0x4f/0x70
[ 2694.123515]  io_connect+0x47a/0x610
[ 2694.124420]  ? io_prep_rw+0x1050/0x1050
[ 2694.125435]  ? __lock_acquire+0xbb1/0x5b00
[ 2694.126490]  io_issue_sqe+0x1611/0x77b0
[ 2694.127487]  ? io_dismantle_req+0xdf/0x180
[ 2694.128527]  ? perf_trace_lock+0xac/0x490
[ 2694.129538]  ? SOFTIRQ_verbose+0x10/0x10
[ 2694.130530]  ? io_connect+0x610/0x610
[ 2694.131492]  ? lock_acquire+0x197/0x470
[ 2694.132459]  ? find_held_lock+0x2c/0x110
[ 2694.133463]  ? __fget_files+0x2cf/0x520
[ 2694.134433]  ? lock_downgrade+0x6d0/0x6d0
[ 2694.135470]  __io_queue_sqe+0x90/0x9d0
[ 2694.136430]  ? io_issue_sqe+0x77b0/0x77b0
[ 2694.137448]  ? __fget_files+0x2f8/0x520
[ 2694.138446]  io_submit_sqes+0x44aa/0x8610
[ 2694.139509]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2694.140730]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2694.141926]  ? find_held_lock+0x2c/0x110
[ 2694.142929]  ? io_submit_sqes+0x8610/0x8610
[ 2694.144009]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2694.145185]  ? wait_for_completion_io+0x270/0x270
[ 2694.146362]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2694.147492]  ? vfs_write+0x354/0xb10
[ 2694.148397]  ? fput_many+0x2f/0x1a0
[ 2694.149275]  ? ksys_write+0x1a9/0x260
[ 2694.150205]  ? __ia32_sys_read+0xb0/0xb0
[ 2694.151217]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2694.152498]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2694.153780]  do_syscall_64+0x33/0x40
[ 2694.154691]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2694.155952] RIP: 0033:0x7f9e767a8b19
[ 2694.156846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2694.161304] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2694.163168] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2694.164914] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2694.166667] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2694.168376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2694.170086] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:35:45 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000380)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="10379e1f71998e18a717699599216577d3001d6cbc0672911177b5ba72bd782834515decc0f270aadac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857bf38871904c607271ec486112143e77b51b9bd4d531a539591ce5cc3afca9888317f342d59e9697bef7d256ca", @ANYRES32=r7], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r9, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x1, 0x0, 0x0, {0x0, r8, r9}}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:35:45 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x26, &(0x7f00000001c0)={0x2, 0x0, 0x80000000})
fsetxattr$security_capability(r5, &(0x7f0000000040), &(0x7f0000000140)=@v3={0x3000000, [{0x81, 0x8000}, {0x5, 0x66f1}], 0xffffffffffffffff}, 0x18, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:45 executing program 7:
r0 = syz_open_dev$vcsa(&(0x7f0000000140), 0x0, 0x200000)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r6 = dup(r4)
r7 = accept4(r6, 0x0, &(0x7f0000000040), 0x800)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$dupfd(r7, 0x0, r0)
io_uring_enter(r1, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x10, r0, 0x8000000)
recvmmsg$unix(r9, &(0x7f0000001440)=[{{&(0x7f0000000240)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000400)=""/43, 0x2b}], 0x2, &(0x7f0000000500)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000680)=""/145, 0x91}, {&(0x7f0000000740)=""/77, 0x4d}, {&(0x7f00000007c0)=""/104, 0x68}, {&(0x7f0000000840)=""/135, 0x87}, {&(0x7f0000000900)=""/252, 0xfc}], 0x5}}, {{&(0x7f0000000a80)=@abs, 0x6e, &(0x7f0000000cc0)=[{&(0x7f0000000b00)=""/85, 0x55}, {&(0x7f0000000b80)}, {&(0x7f0000000bc0)=""/217, 0xd9}], 0x3, &(0x7f0000000d00)=[@rights={{0x10}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000000dc0)=@abs, 0x6e, &(0x7f00000010c0)=[{&(0x7f0000000e40)=""/222, 0xde}, {&(0x7f0000000f40)=""/255, 0xff}, {&(0x7f0000001040)=""/114, 0x72}], 0x3}}, {{&(0x7f0000001100), 0x6e, &(0x7f00000012c0)=[{&(0x7f0000001180)}, {&(0x7f00000011c0)=""/134, 0x86}, {&(0x7f0000001280)=""/32, 0x20}], 0x3, &(0x7f0000001300)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}], 0x5, 0x0, &(0x7f0000001580))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x80010, r10, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r8, 0x1, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:35:45 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(0x0, &(0x7f0000000100)='net/nfsfs\x00')

08:35:45 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:35:45 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000440)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)
syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x40010, r0, 0x10000000)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x3, &(0x7f00000001c0)={0x0, 0x989680}}, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x2c0c, &(0x7f0000000080)={0x0, 0x35e7, 0x20, 0x1, 0x33d}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

08:35:45 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 92)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2694.443911] FAULT_INJECTION: forcing a failure.
[ 2694.443911] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2694.445525] CPU: 1 PID: 14964 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2694.446322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2694.447279] Call Trace:
[ 2694.447596]  dump_stack+0x107/0x167
[ 2694.448015]  should_fail.cold+0x5/0xa
[ 2694.448457]  _copy_from_user+0x2e/0x1b0
[ 2694.448919]  move_addr_to_kernel.part.0+0x31/0x110
[ 2694.449480]  move_addr_to_kernel+0x4f/0x70
[ 2694.449965]  io_connect+0x47a/0x610
[ 2694.450384]  ? io_prep_rw+0x1050/0x1050
[ 2694.450856]  ? __lock_acquire+0xbb1/0x5b00
[ 2694.451347]  io_issue_sqe+0x1611/0x77b0
[ 2694.451802]  ? io_dismantle_req+0xdf/0x180
[ 2694.452288]  ? perf_trace_lock+0xac/0x490
[ 2694.452765]  ? SOFTIRQ_verbose+0x10/0x10
[ 2694.453241]  ? io_connect+0x610/0x610
[ 2694.453681]  ? lock_acquire+0x197/0x470
[ 2694.454135]  ? find_held_lock+0x2c/0x110
[ 2694.454603]  ? __fget_files+0x2cf/0x520
[ 2694.455069]  ? lock_downgrade+0x6d0/0x6d0
[ 2694.455545]  __io_queue_sqe+0x90/0x9d0
[ 2694.455996]  ? io_issue_sqe+0x77b0/0x77b0
[ 2694.456467]  ? __fget_files+0x2f8/0x520
[ 2694.456939]  io_submit_sqes+0x44aa/0x8610
[ 2694.457431]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2694.457999]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2694.458558]  ? find_held_lock+0x2c/0x110
[ 2694.459040]  ? io_submit_sqes+0x8610/0x8610
[ 2694.459545]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2694.460097]  ? wait_for_completion_io+0x270/0x270
[ 2694.460653]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2694.461188]  ? vfs_write+0x354/0xb10
[ 2694.461619]  ? fput_many+0x2f/0x1a0
[ 2694.462033]  ? ksys_write+0x1a9/0x260
[ 2694.462469]  ? __ia32_sys_read+0xb0/0xb0
[ 2694.462934]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2694.463542]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2694.464130]  do_syscall_64+0x33/0x40
[ 2694.464554]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2694.465138] RIP: 0033:0x7f9e767a8b19
[ 2694.465562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2694.467678] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2694.468543] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2694.469361] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2694.470177] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2694.470998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2694.471808] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:02 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:02 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index=0x3, 0x3f, 0x0, 0xfff, 0x7}, 0xffff9622)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:02 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xd, 0x4010, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000008, 0x50, r3, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
pipe2(&(0x7f00000005c0)={<r7=>0xffffffffffffffff}, 0x84000)
io_uring_enter(r7, 0x652b, 0x6d0d, 0x1, &(0x7f0000000600)={[0x861a]}, 0x8)
syz_io_uring_submit(r5, r2, &(0x7f0000000580)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000140)={0x12000, 0x80, 0x4}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x23456}, 0x80000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x4, 0x1010, r0, 0x0)
syz_io_uring_setup(0x3a2f, &(0x7f0000000680)={0x0, 0x30cb, 0x2, 0x3, 0x32b, 0x0, r8}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f00000018c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r3, 0x7, &(0x7f0000001880)=[{&(0x7f0000000780)=""/19, 0x13}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/48, 0x30}, {&(0x7f0000001800)=""/74, 0x4a}], 0x4, 0x1, 0x1, {0x0, r11}}, 0x76)
fcntl$lock(r8, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$EXT4_IOC_GETSTATE(r8, 0x40046629, &(0x7f0000000640))
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:02 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e24, @loopback}, 0x4, 0x2, 0x3, 0x1}}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r6 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r6, &(0x7f0000000100)='net/nfsfs\x00')
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r7, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x7, 0x20, 0x2a, 0x6, 0x0, 0x80000000, 0x20000, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xffff7dc0, 0x0, @perf_config_ext={0x6, 0x1000}, 0x180, 0x1, 0x1b, 0x9, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, r6, 0xa, r7, 0x0)

08:36:02 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, 0x0)

08:36:02 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)

08:36:02 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xb, 0x11, r4, 0x8000000)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, &(0x7f0000000040)=0x7)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:02 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 93)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 2711.343017] FAULT_INJECTION: forcing a failure.
[ 2711.343017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2711.345766] CPU: 1 PID: 14994 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2711.347232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2711.348969] Call Trace:
[ 2711.349537]  dump_stack+0x107/0x167
[ 2711.350316]  should_fail.cold+0x5/0xa
[ 2711.351132]  _copy_from_user+0x2e/0x1b0
[ 2711.351989]  move_addr_to_kernel.part.0+0x31/0x110
[ 2711.353035]  move_addr_to_kernel+0x4f/0x70
[ 2711.353933]  io_connect+0x47a/0x610
[ 2711.354710]  ? io_prep_rw+0x1050/0x1050
[ 2711.355582]  ? __lock_acquire+0xbb1/0x5b00
[ 2711.356484]  io_issue_sqe+0x1611/0x77b0
[ 2711.357324]  ? io_dismantle_req+0xdf/0x180
[ 2711.358219]  ? perf_trace_lock+0xac/0x490
[ 2711.359097]  ? SOFTIRQ_verbose+0x10/0x10
[ 2711.359978]  ? io_connect+0x610/0x610
[ 2711.360801]  ? lock_acquire+0x197/0x470
[ 2711.361650]  ? find_held_lock+0x2c/0x110
[ 2711.362511]  ? __fget_files+0x2cf/0x520
[ 2711.363360]  ? lock_downgrade+0x6d0/0x6d0
[ 2711.364236]  __io_queue_sqe+0x90/0x9d0
[ 2711.364882] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted
[ 2711.365062]  ? io_issue_sqe+0x77b0/0x77b0
[ 2711.368023]  ? __fget_files+0x2f8/0x520
[ 2711.368891]  io_submit_sqes+0x44aa/0x8610
[ 2711.369814]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2711.370861]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2711.371884]  ? find_held_lock+0x2c/0x110
[ 2711.372745]  ? io_submit_sqes+0x8610/0x8610
[ 2711.373670]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2711.375101]  ? wait_for_completion_io+0x270/0x270
[ 2711.376188]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2711.377365]  ? vfs_write+0x354/0xb10
[ 2711.378268]  ? fput_many+0x2f/0x1a0
[ 2711.379264]  ? ksys_write+0x1a9/0x260
[ 2711.380185]  ? __ia32_sys_read+0xb0/0xb0
[ 2711.381215]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2711.382597]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2711.383868]  do_syscall_64+0x33/0x40
[ 2711.384754]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2711.386015] RIP: 0033:0x7f9e767a8b19
[ 2711.387003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2711.391573] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2711.393570] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2711.395406] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2711.397222] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2711.399050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2711.400922] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:03 executing program 1:
r0 = io_uring_setup(0x7498, &(0x7f0000000000)={0x0, 0x16ae, 0x0, 0x2, 0x3c9})
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xd286, 0x8, 0x0, 0x375, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r1, 0x0, 0x0, 0x1, 0x0, 0x0)

08:36:03 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0)

[ 2711.584906] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted
08:36:03 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, 0x0)

08:36:03 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x35ae, &(0x7f0000000240)={0x0, 0xe1ea, 0x2, 0x0, 0x1cc, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000140), &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x2, 0x2000, @fd_index=0x7, 0x8, &(0x7f0000000480)=[{&(0x7f0000000380)="6dcc3ebb94fddd4062a4084f5b9930afed0882cf7776ae9784d048f0a73df07462ff69cbe0db1632fe9e03eaa25348ff6ebd50e4ae0c98ed3a1e339df2a1994a9ddd7af8813d87764e3e41f7e90b7ecfba492b7d9fffb408c3939957ecba95bd7f2c5317504cb5e3e5232280accc6d43753b6b3899a924e9d610dc829c5ee4920ebfd4dcae5592775df129734b4c7a62b285", 0x92}], 0x1, 0x83d86969a3e76315, 0x0, {0x1}}, 0x8)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x2a010, r2, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000008, 0x30, r6, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x0, @fd=r6, 0x1, 0x20, 0x0, 0x1d, 0x0, {0x3}}, 0x9)

08:36:03 executing program 5:
r0 = syz_io_uring_setup(0x1933, &(0x7f00000002c0), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x4e31, 0x20, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r7, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x3b36, &(0x7f0000000240)={0x0, 0xa7c6, 0x24cc77dca6e16491, 0x1, 0x391, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index, 0x2b9c, {0x0, r0}, 0xff, 0x2faed505ba367f7f}, 0x45d)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:03 executing program 7:
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000040)={{0x2, 0x1, 0x30, 0x2, 0x7ff}})
r0 = syz_io_uring_setup(0x3860, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:36:03 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x4000, 0x0, 0x0, 0x0)

08:36:03 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r6, 0x0, &(0x7f0000000280)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0xe4, 0x2, &(0x7f0000000340)="ac7d74912d37ba25d4bd4c9e7b7a14a3822adb9e756522f2749d768add1b75b85cd35f371c8b4f6761b78bfd8e6c44675a35a47ec0a21b56c2f93a57ed98d6a50713a1a0f21264e8512e8b3da577e69bab73c68291b5cd8118563e7eacf90ddd4c82a898eda95405a54dfc64ce", 0x100}, 0x80000001)
r7 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = syz_io_uring_setup(0x4411, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffa, 0x388}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r10], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r11)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4004, @fd_index=0x7, 0x0, 0x0, 0x0, 0x1a, 0x1, {0x0, r11}}, 0x1)
read(r5, &(0x7f0000000140)=""/152, 0x98)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:03 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 94)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:36:03 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
accept4(r3, &(0x7f0000000240)=@in={0x2, 0x0, @dev}, &(0x7f0000000040)=0x80, 0x800)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2711.879018] FAULT_INJECTION: forcing a failure.
[ 2711.879018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2711.881993] CPU: 0 PID: 15183 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2711.883586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2711.885461] Call Trace:
[ 2711.886066]  dump_stack+0x107/0x167
[ 2711.886897]  should_fail.cold+0x5/0xa
[ 2711.887781]  _copy_from_user+0x2e/0x1b0
[ 2711.888694]  move_addr_to_kernel.part.0+0x31/0x110
[ 2711.889809]  move_addr_to_kernel+0x4f/0x70
[ 2711.890770]  io_connect+0x47a/0x610
[ 2711.891609]  ? io_prep_rw+0x1050/0x1050
[ 2711.892539]  ? __lock_acquire+0xbb1/0x5b00
[ 2711.893504]  io_issue_sqe+0x1611/0x77b0
[ 2711.894408]  ? io_dismantle_req+0xdf/0x180
[ 2711.895377]  ? perf_trace_lock+0xac/0x490
[ 2711.896310]  ? SOFTIRQ_verbose+0x10/0x10
[ 2711.897229]  ? io_connect+0x610/0x610
[ 2711.898093]  ? lock_acquire+0x197/0x470
[ 2711.898987]  ? find_held_lock+0x2c/0x110
[ 2711.899923]  ? __fget_files+0x2cf/0x520
[ 2711.900846]  ? lock_downgrade+0x6d0/0x6d0
[ 2711.901786]  __io_queue_sqe+0x90/0x9d0
[ 2711.902671]  ? io_issue_sqe+0x77b0/0x77b0
[ 2711.903610]  ? __fget_files+0x2f8/0x520
[ 2711.904521]  io_submit_sqes+0x44aa/0x8610
[ 2711.905486]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2711.906603]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2711.907693]  ? find_held_lock+0x2c/0x110
[ 2711.908604]  ? io_submit_sqes+0x8610/0x8610
[ 2711.909571]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2711.910648]  ? wait_for_completion_io+0x270/0x270
[ 2711.911737]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2711.912774]  ? vfs_write+0x354/0xb10
[ 2711.913607]  ? fput_many+0x2f/0x1a0
[ 2711.914420]  ? ksys_write+0x1a9/0x260
[ 2711.915288]  ? __ia32_sys_read+0xb0/0xb0
[ 2711.916198]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2711.917365]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2711.918513]  do_syscall_64+0x33/0x40
[ 2711.919353]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2711.920489] RIP: 0033:0x7f9e767a8b19
[ 2711.921315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2711.925395] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2711.927078] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2711.928650] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2711.930212] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2711.931794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2711.933325] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:03 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x400000, 0x0, 0x0, 0x0)

08:36:03 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, 0x0)

08:36:03 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_setup(0xb789, &(0x7f0000000000)={0x0, 0x487e, 0x0, 0x2, 0x1f6, 0x0, r1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

08:36:03 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0)
r6 = accept$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x0, @initdev}, &(0x7f0000000380)=0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x10000, &(0x7f00000003c0)=[r3, r0, r0, r4, r5, r0, r6], 0x7}, 0x1)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff6000/0x9000)=nil, 0x9000, 0x3000000, 0x50, r0, 0x0)
io_uring_enter(r0, 0x44b1, 0xa3f1, 0x1, &(0x7f0000000140)={[0x8]}, 0x8)
syz_io_uring_submit(r9, r2, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r0, 0xffff, 0x0, 0xff, 0x3, 0x1}, 0x6)
r10 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r10, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
getsockopt$bt_BT_CHANNEL_POLICY(r10, 0x112, 0xa, &(0x7f00000001c0)=0x2ab47c77, &(0x7f0000000240)=0x4)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ae, 0x61b9, 0x2, 0x0, 0x0)

08:36:19 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 95)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:36:19 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x4000, @fd_index=0x4, 0x0, 0x0, 0x0, 0x12}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6000044e477b5fa72bd782834715d630c4e66badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca916133a75f16a10a93e35b3d3e23176a632f5924f29fa1bd9652c6c36d7420244e69141aed810c81e5b854b76d88616181e796e0015a0e66af82401a04cdb3dbcce56d283b381393ed298d9d93d23241dbea64b6a037c142138b78e9494588fb6541bd557246533564f4b775f3d06529864874dabc530f7121f8151a30948d82e17a647de6f6ad7", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r9)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0xba, &(0x7f0000000040)=[r4], 0x1, 0x0, 0x0, {0x0, r9}}, 0x66e)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:36:19 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000002, 0x10, r0, 0x8000000)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x13, r0, 0x10000000)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r3}}, 0x7)

08:36:19 executing program 5:
r0 = syz_io_uring_setup(0x7733, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xdb}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r5 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x9, 0x0, 0x8, 0x2, 0x0, 0xfffffffffffff801, 0x8, 0x8, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0x9, 0x80000001}, 0x1000, 0x9, 0x2, 0x2, 0x9, 0x4, 0x9, 0x0, 0x4, 0x0, 0x7d6}, 0x0, 0x10, r5, 0x2)

08:36:19 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0)

08:36:19 executing program 3:
r0 = syz_io_uring_setup(0x350c, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:19 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000480)='./file0\x00', 0x80, 0x0, 0x23456, {0x0, r7}}, 0x279)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000004000000000000000a631805e5d7f6db441e0effb22119aa2c1290ac0e55e80a615d215fc7eae410bac87559c5ca68b0027f1cd535cc863fd5b909bbf3cfb9ca8e89ba4c5feda08381cd0ac4cb6e92852b7d90b269d9ead117d1fdf1af8bb4f1bf374abbfac729c8a447561ab1e32ad9b3ad73ecdaa2f2cb2d2cb35242d74639222aa3b8dc231d420406e977859", @ANYRES32=<r9=>r0, @ANYBLOB="07cbb84c200000002e2f66696c653000"])
r10 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r10, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r9, 0xc0189374, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r11=>r10, {0x10000}}, '\x00'})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_NOP={0x0, 0x2}, 0x1)
syz_io_uring_submit(r12, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
fcntl$setstatus(r11, 0x4, 0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x4, 0x20, 0x0, 0x4307, 0x841, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0xb}, 0x2088}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x1, 0x0, 0x0)

08:36:19 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000006, 0x12, r0, 0x10000000)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_WRITEV={0x2, 0x5, 0x2007, @fd_index=0x3, 0x4, &(0x7f00000008c0)=[{&(0x7f0000000240)="848b17a2ce3679f472a6d0ea3421e447442af8f4e457bd1ebd9f1cb8e89f0cdd05a1ed110c0e74041beea283566e55841df10ac6f986b59848d3339187c687ee1579d4e21460e30b", 0x48}, {&(0x7f0000000340)="888e1fb7c777ac9ad9f1cc87246d737c450f3d42425c80841a58c7954ce533375766ecc837fe1e907f79c8abcca8df49f6cfe6290ff1f09fa98a25f494ad327a3e31c46b07f2d1f981f926519041fee8a630d435fc739d68b779", 0x5a}, {&(0x7f0000000500)="38bf0f9ee77712b137b9632d63828288fa870c781b1a135078e9a8697daed3862b17dd98c1c2b9550bf37d41b787a4c3d668d2df3d3a68497ac049bfd5f41b554e33e16bfa6cf2f0befb1143259ba8d6d174c73028ca8c64c02218d25fda9b0612a54bb1ec57b776a951c80ff450eb2e53f4c98bfa109c89bd6befdf1942661fec62f5e3a5f87221b4e896c86f05c484c822479388fc39c1015999c36828d5ea3d5bd7c189f8e48fcb3bae6a8923ab5d1edb7a7b78ed41e9017bd14bf9e18a4cc895ff", 0xc3}, {&(0x7f0000000040)="c0eca7d24ba2d9bfac69c6d14eff28a77c1a915bcae46f7be344c2f0c0a2a24dc1fd3b83290e7880be", 0x29}, {&(0x7f00000003c0)="ac2a52fceb068f3437ba53af4c5da39fab5d5322a29731fc2c35b89ec2d39f6714f7e51915ea5214887a27e77dff9e2a3771f6b1459ac985bbd3e8ea06b0896955c06800d04bbf4a87c6bceec1505105b1f7bd8ec4a14369a9941ed1fd71968a", 0x60}, {&(0x7f0000000600)="0d34b4c4a2fab96f8087304f09a46e975a31c88f782a56a0c83ed01545681353d31ca32d93c963f306ff5f7c02944619790181e864f524b443a8edc607e3e0fa6398c7ce140a8858e5920474e050bc7fb0ed745de60b44931864b7d2e9e9be609040681be3dd7da103171e03eec5af9d5c348514f96fb6a2b7ff47ece54de75b6306c68e95e458b14dc3c8586955a56d7d2c9a0b9c21c36a24142b18f58147682a3bd7770f663e6f5b8b223a86e83a4909c363b32a0d2987dbd4b9d01fe4bb9a9564ff17b51684fd4deba807d7bf7ae4ad501408e2930243d3", 0xd9}, {&(0x7f0000000700)="e72007571fc1378a682e46f8dc7eb3e304a78684d408c21db8cb81ed0d7e024e39abe1ccf28a373eab2023c9bc943531a529f496ecbf6c6e28cf5e3bf20981b85b82c089abaaaab137e2a805744f69e7f2dd2ad60d282797aad581ea97c9d6c74ee2d28181c37b413124ca18cf99f621a872dd4cec5356c3e0582f2400bb63783b1079860b14ae9676b96a1f2f1f775d1d9ad5161707e9b9e3f2d2cd8d316b13cd79bfbf39e6f1f103d989f809d6ebaae1c9f3e0ce84bbae245d545d75d18cea9ffddda1a63f2ef4a5608aeb400e5186efb70b404cb90712257aef611bb9", 0xde}, {&(0x7f0000000800)="0260278af3c4df8475070a11289c4fd0db3be45b820cd26358ef44aab7b27a56d7e72261c7e26fd3c6037d261776179f89c354181dfcbab477a7c6b7f5aa138f2efa8370db97f754721f30396b22a2fa96fe046e8abb336ae1d8c28b90349d459d0f0dacd61180f7a3f645b9f1a7abefcc7871ce45732f6c0bca920b24d8d33db2462ba659e8721e71926fabe71adb79469f60452206e5eac6429c16402f812dc74ceb81a118f9be9ac8b0ab310b6d1daaa8d3b8d3", 0xb5}], 0x8, 0x2, 0x1}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2727.857005] FAULT_INJECTION: forcing a failure.
[ 2727.857005] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2727.859772] CPU: 0 PID: 15387 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2727.861232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2727.862990] Call Trace:
[ 2727.863566]  dump_stack+0x107/0x167
[ 2727.864341]  should_fail.cold+0x5/0xa
[ 2727.865156]  _copy_from_user+0x2e/0x1b0
[ 2727.866011]  move_addr_to_kernel.part.0+0x31/0x110
[ 2727.867051]  move_addr_to_kernel+0x4f/0x70
[ 2727.867962]  io_connect+0x47a/0x610
[ 2727.868738]  ? io_prep_rw+0x1050/0x1050
[ 2727.869606]  ? __lock_acquire+0xbb1/0x5b00
[ 2727.870504]  io_issue_sqe+0x1611/0x77b0
[ 2727.871357]  ? io_dismantle_req+0xdf/0x180
[ 2727.872245]  ? perf_trace_lock+0xac/0x490
[ 2727.873113]  ? SOFTIRQ_verbose+0x10/0x10
[ 2727.873970]  ? io_connect+0x610/0x610
[ 2727.874784]  ? lock_acquire+0x197/0x470
[ 2727.875634]  ? find_held_lock+0x2c/0x110
[ 2727.876488]  ? __fget_files+0x2cf/0x520
[ 2727.877320]  ? lock_downgrade+0x6d0/0x6d0
[ 2727.878196]  __io_queue_sqe+0x90/0x9d0
[ 2727.879013]  ? io_issue_sqe+0x77b0/0x77b0
[ 2727.879895]  ? __fget_files+0x2f8/0x520
[ 2727.880744]  io_submit_sqes+0x44aa/0x8610
[ 2727.881646]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2727.882691]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2727.883708]  ? find_held_lock+0x2c/0x110
[ 2727.884575]  ? io_submit_sqes+0x8610/0x8610
[ 2727.885483]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2727.886497]  ? wait_for_completion_io+0x270/0x270
[ 2727.887524]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2727.888500]  ? vfs_write+0x354/0xb10
[ 2727.889283]  ? fput_many+0x2f/0x1a0
[ 2727.890052]  ? ksys_write+0x1a9/0x260
[ 2727.890852]  ? __ia32_sys_read+0xb0/0xb0
[ 2727.891726]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2727.892830]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2727.893920]  do_syscall_64+0x33/0x40
[ 2727.894700]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2727.895790] RIP: 0033:0x7f9e767a8b19
[ 2727.896576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2727.900462] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2727.902068] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2727.903587] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2727.905093] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2727.906602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2727.908116] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:19 executing program 1:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/rcutree', 0x163101, 0x16c)
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x8100, 0x4)
r2 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f00000017c0)={'sit0\x00', <r4=>0x0, 0x29, 0x7, 0xff, 0x7, 0x19, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x20, 0x7800, 0x9, 0x5488}})
sendmmsg$sock(r3, &(0x7f0000001980)=[{{&(0x7f0000000080)=@caif=@rfm={0x25, 0x9, "c671768bf631194240b813b3e2c1d8a5"}, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000340)="ad73b174b709cc450b6fea0aeb9b3143be57db67c3297ee4d7d004854f87c199c2c862382d9311d1dbd3bf0e3d0af5894d52ab223f512faa6a4e7c6f627049fe534a58b04b0c2254524dac3eea444839ccfaaa3f07e07d976fe3379a6d53aef2b66bf5dbc1e12fe925b762150cb389d4280f45057e075c4b5570ff3a3edf90de84ac4c2938224c77bff7b3a967390d53788287cac0fdb8baad9abca2a6f57b237b63075d5f36e09d8462949b4a09c9f05551beb4238c803def039163fcc36e4e4fc83f0cd96ff0561d24687528a0b58f4dc2740a09", 0xd5}, {&(0x7f0000000100)="9b0bb7fb3b75085408e5cedf301bc74e763ed1ef65295d08b8f713e781118c03ba80e16749f693b971db029f8070e06b0cdc9ec97a21088f95e8e016ab834ba6ad26a85a19f7c8b723882e138a22c52489c6cb3da2fa3ae834ef5b3261edf2c4239f6a002ab82586a6709d2618c57161157a75cf98", 0x75}, {&(0x7f0000000440)="9ed825bdbb8878c6817630a70fee06a95585c78d2b3a679cda2fcbd42dce0d1e963d839263aeb166deda5c3312e57b42ff3280c8406cedf6bb4e10f67860ad218de5a062c88b21d26ac8fc46607b1e5b061e09e094ddb7346c7b02e456bedb8581272e02fe086a592b800a3d4bb9b4eeafffb173eaafdc0f5c2544fc2d2ca94bc8a25fbf45844b700da02818", 0x8c}, {&(0x7f0000000240)="922523bee4ca972535a55b44fcca3e093968df8d680ec51f5c318562ad5a4557a3c8b8e3d7769255e553ce418cbcf850ecbebcc4c0119869a16c7ac821a24a6248330561ad4cb05c6967b0c125683c06e1d6cb67aff0ad763fe3a31c65402a97e1c1f2197cd229cee28b1765dc77b5", 0x6f}, {&(0x7f0000000500)="e9b05539cca83239bb151727d5131c004f4dddc788ce83366c801c434132c40031ec8ab6a91f3f6ddeb51a5cee67cfe7f975b02674808d399ee9993e076ec894aa55bf1a6f16574437be7367c25e006ce696eb6febdf741f1606e68ba8b4eb55b05d11c011742617a4156f3805b192f17703efe42ef190108e9517f1d58dddfdf4042f7b46fb327f5c6082dbbe0a2ef715cb98e192fb0b67c14a8f528cabe814", 0xa0}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="e66a8b68ea79c85604ac04ab90c4664bb3e604cb630e5b426fefbdaf79cc66e96b355da32413554a9147fa5db04cdb8e26ced3b292788e92055018beb29790000c13e30dcc46", 0x46}, {&(0x7f0000001640)="8badc674ae6a54e00c27e584a268a9848ade08b556387c5674bf45a0c811eeb633af0495ddbc6fc4c3515caa41906718c1c827c07aefe1aef3baec244a97138c509b4c4b6faf184d05d6f8ce4b32fd7d1a0ed2f2a05451862dc34e0641a6edce8d8856bc4f64407eca499974", 0x6c}], 0x8, &(0x7f0000001740)=[@timestamping={{0x14, 0x1, 0x25, 0x51}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}], 0x48}}, {{&(0x7f0000001840)=@can={0x1d, r4}, 0x80, &(0x7f0000001940)=[{&(0x7f00000018c0)="2de847ffcb49f08d82845744f402ba3ff0016fcbd36fd00b6b74ff4186e2c7a437b5d722", 0x24}, {&(0x7f0000001900)="b83405c302", 0x5}], 0x2}}], 0x2, 0x40)
io_uring_enter(r2, 0x0, 0x0, 0x1, 0x0, 0x0)

08:36:19 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0)

08:36:19 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r10 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r10, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r11 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000004, 0x30, r5, 0x10000000)
syz_io_uring_submit(r9, r11, &(0x7f0000000100)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x800e, @fd=r10, 0x10000, 0xffffffff, 0x3, 0x0, 0x0, {0x3}}, 0x8001)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:19 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000010000001800000031f694f00f6852bcf140bf684b88acbb726cf87eb8f6db2c4f6ba0510a1bdd789287bec027d010a8191a26adfe3f2d12ba124da00f77ead3dd14f542f97275b905e41a0d164f06fd44779f", @ANYRES32=<r5=>0xffffffffffffffff, @ANYBLOB="02000000000000002e2f66696c653000"])
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x43, 0x4, 0x6, 0x8, 0x0, 0x6678e998, 0x12000, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_config_ext={0x1, 0x8}, 0x400, 0x0, 0x8, 0x3, 0x1ff, 0x4, 0x4, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x10, r5, 0x8)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x40, 0x1, 0x40, 0x9, 0x0, 0x1000, 0x4000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000140), 0xc}, 0x51000, 0x1, 0x9, 0x8, 0x0, 0x10000, 0x100, 0x0, 0x8001, 0x0, 0x8000}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x30, r6, 0x10000000)

08:36:19 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:19 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = getpgrp(0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x5, 0x9, 0x1, 0x5, 0x0, 0x5, 0x20081, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000040)}, 0x1180, 0x80000000, 0x4, 0x0, 0x1, 0x6676f1b3, 0xff, 0x0, 0x40, 0x0, 0x45}, r6, 0x4, r5, 0x8)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:36:19 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x20000000, 0x0, 0x0, 0x0)

08:36:19 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffc000/0x1000)=nil)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
r8 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r9 = openat$cgroup_netprio_ifpriomap(r8, &(0x7f0000000080), 0x2, 0x0)
r10 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r10, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r8)
sendmsg$NL80211_CMD_SET_PMK(r10, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x40, r11, 0x4, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "06255a61eaaef04b7ed33c187e2872e4"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
fcntl$lock(r9, 0x26, &(0x7f00000000c0)={0x1, 0x0, 0x80000000, 0x6})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x200000e, 0x110, r8, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x6, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r7}}, 0x6)

08:36:19 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 96)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:36:19 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:19 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0xf5ffffff, 0x0, 0x0, 0x0)

08:36:19 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x8}}, './file0\x00'})
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e22, 0x2a, @private1}, 0x1c)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r6 = accept4$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, &(0x7f0000000280)=0x10, 0x0)
setsockopt$inet_group_source_req(r6, 0x0, 0x2c, &(0x7f0000000340)={0x7, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @multicast1}}}, 0x108)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x10181, 0x120)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:19 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
r5 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x800)
setsockopt$sock_timeval(r5, 0x1, 0x42, &(0x7f0000000140), 0x10)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)

08:36:19 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$TCGETS2(r0, 0x802c542a, &(0x7f0000000000))
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r1, 0x0, 0x0, 0x1, 0x0, 0x0)

08:36:20 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)

[ 2728.538929] FAULT_INJECTION: forcing a failure.
[ 2728.538929] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2728.541606] CPU: 1 PID: 15444 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2728.543050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2728.544786] Call Trace:
[ 2728.545341]  dump_stack+0x107/0x167
[ 2728.546105]  should_fail.cold+0x5/0xa
[ 2728.546909]  _copy_from_user+0x2e/0x1b0
[ 2728.547757]  move_addr_to_kernel.part.0+0x31/0x110
[ 2728.548776]  move_addr_to_kernel+0x4f/0x70
[ 2728.549645]  io_connect+0x47a/0x610
[ 2728.550400]  ? io_prep_rw+0x1050/0x1050
[ 2728.551245]  ? __lock_acquire+0xbb1/0x5b00
[ 2728.552136]  io_issue_sqe+0x1611/0x77b0
[ 2728.552957]  ? io_dismantle_req+0xdf/0x180
[ 2728.553833]  ? perf_trace_lock+0xac/0x490
[ 2728.554680]  ? SOFTIRQ_verbose+0x10/0x10
[ 2728.555526]  ? io_connect+0x610/0x610
[ 2728.556318]  ? lock_acquire+0x197/0x470
[ 2728.557138]  ? find_held_lock+0x2c/0x110
[ 2728.557984]  ? __fget_files+0x2cf/0x520
[ 2728.558805]  ? lock_downgrade+0x6d0/0x6d0
[ 2728.559676]  __io_queue_sqe+0x90/0x9d0
[ 2728.560484]  ? io_issue_sqe+0x77b0/0x77b0
[ 2728.561334]  ? __fget_files+0x2f8/0x520
[ 2728.562176]  io_submit_sqes+0x44aa/0x8610
[ 2728.563066]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2728.564099]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2728.565102]  ? find_held_lock+0x2c/0x110
[ 2728.565951]  ? io_submit_sqes+0x8610/0x8610
[ 2728.566849]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2728.567858]  ? wait_for_completion_io+0x270/0x270
[ 2728.568852]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2728.569811]  ? vfs_write+0x354/0xb10
[ 2728.570585]  ? fput_many+0x2f/0x1a0
[ 2728.571348]  ? ksys_write+0x1a9/0x260
[ 2728.572132]  ? __ia32_sys_read+0xb0/0xb0
[ 2728.572954]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2728.574014]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2728.575076]  do_syscall_64+0x33/0x40
[ 2728.575847]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2728.576897] RIP: 0033:0x7f9e767a8b19
[ 2728.577663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2728.581414] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2728.582965] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2728.584461] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2728.585912] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2728.587377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2728.588831] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:34 executing program 4:
r0 = syz_io_uring_setup(0x214d, &(0x7f00000002c0)={0x0, 0x8cd2, 0x1, 0xfffffffc, 0xfffffffd}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000180))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r1=>0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r1}, &(0x7f00000002c0))
timer_delete(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$unix(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = dup(r3)
close(0xffffffffffffffff)
r5 = accept(r2, &(0x7f0000000180)=@l2, &(0x7f0000000100)=0x80)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x1a, 0x2, 0x70bd2a, 0x25dfdbff, {0xc}, [@typed={0x8, 0x1a, 0x0, 0x0, @fd=r5}]}, 0x1c}}, 0x8040)
recvmmsg(r4, &(0x7f0000007940)=[{{0x0, 0x200000, 0x0}}], 0x500, 0x20000022, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, r0, 0x0)
io_uring_enter(r0, 0x7913, 0xe7f0, 0x1, 0x0, 0x0)

08:36:34 executing program 7:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
clone3(&(0x7f0000000880)={0x9000, &(0x7f00000006c0), &(0x7f0000000700), &(0x7f0000000740)=<r5=>0x0, {0x16}, &(0x7f0000000780)=""/185, 0xb9, &(0x7f0000001480)=""/4096, &(0x7f0000000840)=[0x0, 0x0, 0x0, 0xffffffffffffffff], 0x4}, 0x58)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800000007fffffff}, 0x42480}, r5, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xe, 0x10010, r0, 0x10000000)
syz_io_uring_setup(0x4faa, &(0x7f0000000240)={0x0, 0x95d8, 0x20, 0x3, 0x1d8, 0x0, r0}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540)=<r7=>0x0)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_io_uring_submit(r4, r7, &(0x7f0000000680)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, r8, 0x0, &(0x7f0000000580)="2366e6ea14c2068f2cede807281324fd38f46626443218aa08ee12ac1ee161c473996b7f8644b786feeebb16bbb1b031f8265c303606950bb4258b41384d310cfedbf781a0723e3847b08f87da3efa71a7052027a18bc27df96102b508d7b4074706013307269bead734bb03387d7ef6d00827d04fa977262f6a3adbdcc11305e796e2bb597fccc5fec73a0c2dbfb1665b9e3b40243b2bd60b7ec4fe32c6ae4ad099cddcec54ff0d19931b3624e48a2603b914afb08b3d2e85eb1644efc1b8f065f2517625fc0210555d0c24f2", 0xcd, 0x40000000}, 0x1)
r9 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r10, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a6c359cb705fd10e270fcdc357ddc5cae111d305894061b68164e0c7500fce007c742a3c6e9d97c6c1123c62c1a68c07437e57952d26b76ba53b7f95f52ab2307360c225e8bba6c46f31935985c32b6c72b8b7a56c540d08dc3666cd9a8d8c1cf1877ee0ecf8eb66f0ccf10f118102d1bd3284bba965572d958408cd45e9d68be", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r13)
syz_io_uring_submit(r1, r6, &(0x7f0000000140)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)='./file0\x00', 0x108, 0x200000, 0x23456, {0x0, r13}}, 0x9)

08:36:34 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 97)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:36:34 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x10000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:34 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000440)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000000)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x2, 0x4, {0x0, r0}, 0x7, 0x2, 0x0, {0x0, 0x0, r0}}, 0x6)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:36:34 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(r0, 0x439b, 0x30f4, 0x3, &(0x7f0000000040)={[0x7d00000000000000]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:34 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000, 0x0, 0x0)

08:36:34 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r4, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x40, r5, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0x1b}}, @FOU_ATTR_AF={0x5, 0x2, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x41}, 0x6004001)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2742.983661] FAULT_INJECTION: forcing a failure.
[ 2742.983661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2742.986490] CPU: 1 PID: 15478 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2742.987881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2742.989200] Call Trace:
[ 2742.989621]  dump_stack+0x107/0x167
[ 2742.990217]  should_fail.cold+0x5/0xa
[ 2742.990910]  _copy_from_user+0x2e/0x1b0
[ 2742.991823]  move_addr_to_kernel.part.0+0x31/0x110
[ 2742.992622]  move_addr_to_kernel+0x4f/0x70
[ 2742.993393]  io_connect+0x47a/0x610
[ 2742.993953]  ? io_prep_rw+0x1050/0x1050
[ 2742.994583]  ? __lock_acquire+0xbb1/0x5b00
[ 2742.995362]  io_issue_sqe+0x1611/0x77b0
[ 2742.996013]  ? io_dismantle_req+0xdf/0x180
[ 2742.996769]  ? perf_trace_lock+0xac/0x490
[ 2742.997438]  ? SOFTIRQ_verbose+0x10/0x10
[ 2742.998104]  ? io_connect+0x610/0x610
[ 2742.998809]  ? lock_acquire+0x197/0x470
[ 2742.999464]  ? find_held_lock+0x2c/0x110
[ 2743.000213]  ? __fget_files+0x2cf/0x520
[ 2743.000859]  ? lock_downgrade+0x6d0/0x6d0
[ 2743.001500]  __io_queue_sqe+0x90/0x9d0
[ 2743.002133]  ? io_issue_sqe+0x77b0/0x77b0
[ 2743.002869]  ? __fget_files+0x2f8/0x520
[ 2743.003494]  io_submit_sqes+0x44aa/0x8610
[ 2743.004271]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2743.005073]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2743.005820]  ? find_held_lock+0x2c/0x110
[ 2743.006453]  ? io_submit_sqes+0x8610/0x8610
[ 2743.007183]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2743.008011]  ? wait_for_completion_io+0x270/0x270
[ 2743.008836]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2743.009616]  ? vfs_write+0x354/0xb10
[ 2743.010232]  ? fput_many+0x2f/0x1a0
[ 2743.010887]  ? ksys_write+0x1a9/0x260
[ 2743.011472]  ? __ia32_sys_read+0xb0/0xb0
[ 2743.012227]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2743.013059]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2743.013983]  do_syscall_64+0x33/0x40
[ 2743.014551]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2743.015444] RIP: 0033:0x7f9e767a8b19
[ 2743.016043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2743.019220] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2743.020591] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2743.021730] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2743.022959] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2743.024200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2743.025337] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:34 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000, 0x0, 0x0)

[ 2743.124000] perf: interrupt took too long (20493 > 20457), lowering kernel.perf_event_max_sample_rate to 9000
[ 2743.133925] perf: interrupt took too long (25696 > 25616), lowering kernel.perf_event_max_sample_rate to 7000
08:36:34 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x28e5, &(0x7f0000000000)={0x0, 0xb187, 0x2, 0x3, 0x22b}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x3ff)
r3 = syz_mount_image$msdos(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x1ff, 0x1, &(0x7f00000004c0)=[{&(0x7f0000000400)="e05e1a47fd02c8ab5f07e8d985b5875ec6457c78dc1ee4fb7c5d7f1a1031132cc5e6423c114ad9aeefb5d1619f43c74f662315aa7abf681f186054a0f93bf3b32853fd674cc8122764716e6c0a06933a9c42e1fe50655e50657731fb9525dcedf2201d333c9cc7c11076f35067cce78a638cb5bbb60b2b7db31c71dd829b3eb04dde768cea21c98971c764d25263c04e089457283c68ead6e3d3eb0cf6b5e785980579d8b12219cd3204643a4127", 0xae, 0x5}], 0x40000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f646f74732c6e6f646f74732c646f74732c646f74732c6e6f646f74732c636f6465706167653d3836362c6e6f646f74732c6e6f646f74732c7375626a83000000653d002c61707072616973655f747969672c00"])
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000001, 0x810, r0, 0x0)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r9 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r10, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r13)
syz_io_uring_submit(r4, r7, &(0x7f0000000580)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r13}}, 0xf21)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r14=>r3, @ANYBLOB="0000033000"])
syz_io_uring_setup(0x593a, &(0x7f0000000240)={0x0, 0x4a30, 0x4, 0x3, 0x121, 0x0, r14}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000340))

08:36:34 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f00000001c0)='./file0/file0\x00', 0x6000, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xc, 0x110, r0, 0x10000000)
syz_io_uring_submit(r5, r8, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r3, 0x80, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e20, @loopback}, 0x0, 0x2, 0x4, 0x2}}}, 0xffffffd1)

08:36:34 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xd, 0x10, r4, 0x8000000)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:34 executing program 4:
r0 = syz_io_uring_setup(0x214d, &(0x7f00000002c0)={0x0, 0x8cd2, 0x1, 0xfffffffc, 0xfffffffd}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000180))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r1=>0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r1}, &(0x7f00000002c0))
timer_delete(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$unix(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = dup(r3)
close(0xffffffffffffffff)
r5 = accept(r2, &(0x7f0000000180)=@l2, &(0x7f0000000100)=0x80)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x1a, 0x2, 0x70bd2a, 0x25dfdbff, {0xc}, [@typed={0x8, 0x1a, 0x0, 0x0, @fd=r5}]}, 0x1c}}, 0x8040)
recvmmsg(r4, &(0x7f0000007940)=[{{0x0, 0x200000, 0x0}}], 0x500, 0x20000022, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, r0, 0x0)
io_uring_enter(r0, 0x7913, 0xe7f0, 0x1, 0x0, 0x0)

08:36:34 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000500)={<r4=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000001500)={r4, 0x0, "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", "f2f5f1287494452ed185bfacb89d0e905b2afe8a62206f67ab7b9e2c4f7f7a0c15f44b04822c58e40bdb1796f642d63fb6c74ffa2d742e5a67dd82ea0e4c5f120273c919ed2ae2c02b17e50ec3e4cb3e08831b8eec59b878a5e7381e90c662518059d470ba6479239537fd929e1e0b2ec1dd15c90263f5a00aabfafec769ba8a228562f4ccf1cbc8ea0321ba1d050a6555b549ba2ade7afad116dfc06b9c68c492eb39d0e0d5982eeca782814f59662f2db6b1b4933f5f3613ce8a54a9984f05e307c4fcdbbda6f301a1a9ad51def357f5262f89e3c679f1c4d4c9fefd6cc2cf75c7fd8d4622da1efbd4cd582ff1f85e1f52e3cac7943ab51e7cf3519a6af2867ed432bd2cc0841e056f3f864b51f7c8ebf40eb765db1682dd38dc944a38b4410f528feb593f3130a1c0fad901a3d0bcd63d870115d84f4d94c6d58edcec84a8242d8fc945b832bcebf83d8555f7d4781c79b37ea53955a7ccd1fe45f0c247427b1b11cd7e8f26d99edef2dc5f68537b8476c4a05ad178cfdc719159fb0538727794162192f1c090f22e7ce3b719370e8a9982f911a29249f7bb8606e48cb9e233acdcea2f64b9ca964f8d07f43525308529759c0b30c68fb2c8c51c482700a24c65d7a0053fe5b35db1a5826498beb0438534aa5a6ecb88bcfa1469d562a021060aea99a52a84af248a8b0afc63341ee1efdebfe6796c4fbb5913be51511f25c307170e2505de60ad7948b3f52b8fd3e8222d721a2eb95b385410358fb473f4a98c7c6de2abf3af5e1430cb4ecd9c04ba5f2d49424ac3d94f727aa2b829c66e66a3eaa42a32c3164648930c4dcb0d08d454c12345089bf7c5bb2747d853d0c76d0ea12812eb67262d8b7eb6e2fe53a36d79a573edeef6d2543d0b425bda756870d07a46cdb2b683aaf308879bd145ee39c68f4495c04b276e75188b2f172c3a8154b36f24f363be60dcca4aebb0cbc2654f3bc944e7dd5fb2ce6d1dce5686a689599a300084545cc7af5b643b5356c180612fd903fbe0f05e57b06cec1e23e136a67a019b2637b68bddb5316ee0c8f5d650c414771f2556c5044af7a66528c70a1bc0be947ea758f73edb6318b7804ddb75bbaa4e843bf22f37cdf14c443172daac1e082fc122bbfde2016213830b691bd81560335b9cb88427122e37109d12ccb7ed746b1d68bfae1dcba994b087e5c0496eb13864e8e29339992e763f528cdc0612ede3ca27a06604427299d01cbbbb7cc50603296e455f0a1fc8ef964062f5fc65ffb31e1e98924e170ce62c964ba6f8d2901f1cff4a4a8081e474207a6a1cc990d5fcc87d3620acfa6e82048f49b334d258a97a9b2f905e22ba0d32f346dd771cb9586bc07c3da4abcd8521d20a1c4efaf401795430cd5809566973c6cd569682c2cac48cd31fdb3a6786232cad7bb89f8ba32e6f2f7212e499be28c2fca2b33af47831eabba5530c3f2ccc95aef180b7ccee5b0e5a21bc5a238b185acdb3b315c1ea343899a4d4ba328a0bf574f80e567977fb4adeb5114bd7c4b3a412740571bb8ab80ac1420f320f916c2f7f02aa76d3edd76c2318c1dc1cfab4d64becd85894b717c5955bdbed8e5905123aae09782c1c9d2560f57739d1270dc4c54838e9a7b2f7d8cc5a90d66e968c9bfac22345a74976f86e0b0cf1cf36ac9afdef919cfcc2e3334692de8cceb082294ebeddecd5dd98c042f247f3d3c253cbfd57545de54410a1c9bb0e1505b960d560c083eb09a74f3d15b948e706a7fa8a42da9795c8a7b8fcfe24d6e0a527af620093e6da188216ebfa4838676a7eb25ead012e28c47f06edd00b3c5ccf4a89ea284bdd7c7edc56909c8a1370da95b2731f088bb0b85143b8d50a7c209576e1dada2ee38c18bdcb2496f05441a750adec2b1a720ff29fafb2d6bc6a43bab78da97b623919e9dbb00ed0c58d06d975ba343a9ac2680b5195306462f325f4d47b02b2c0a883a719f209f4cd29cd39d38b78ede7cd12a8ee3e582342f7d94c543276e09d5d981d024eaf5df46dbe0e7f339e67b1af98b1c5b235a68cd6b68680be925b465e42d561aac5c6802c0c020e020e0555d0cbd09f0439274734ba8ca3df0e86791c5b610eb25600d4dbd7049bf9c3cb5d25839e27c6e7cf64d055ce333e46303aad27b4e4a702477fa5ba54c5a2197ec923bbd7e1ff4c0ca743a6e96e0efc11e2d487d13e1a367d2e2ef66a023dd0c8a06797d5e99dd2cd4136e0f5fc68bd8f6e037fb131a573862e13d28a093daf3171b1a557dc499f44722bbcc7cb7c5b68e4bafdb3200fde24e8a10401e27a894b2e9d2d921ac56cb323d2cd33a60b6925ba528e576760f05120bc16b00c2e48b665d5696edb518cadc9885b5744c9ff70fc3d4689a4381d0e358dce9e00f945ebe50f1822d50d0ff26d267d507bafb3a1112883868932d64e6868f3b03b56097f349ff2f9ec264021a26dba6608213cbd0fcefde76dc5642e9e8005e19968a456bf63c40d58e77eb190aa4a6d9037f385efa2cdcc151f35f3dc559f8b7acd3b36c1d7a9ea9717ed95250b746ad6eef1d75cb6f9986fa1423e539a17693d3a0c536640b9cbe2dfe4f28c4433afcad89d904c8c703f2427b28b16293c88f086ab982703cb27692ea4975c0eb8fa396b3d42174cca286dc844e87cd9963b7a292a5c960c7e7dba0ddfea6045714e8bcda3d429ab1c0ae8ab62f6c794ac63e5192b71b06a0adf9a2035face41528d92e6097799f2ee263900e87d020b2fac0431f51ae30c2fe638560eda787847862ba974a725fff9f3d3e3ded58073fff20aafe94d637a34d51bb99638418d5cc72c3d08c927b7470cecf61b0d4a6fa68ef1800e238a2177ec26c6e9a62578cd5a14104842b45780c65b0844721e4fb8c9a12f9fa5358754927f4bc6c1c992dc20490d29829404ac0a945cde6dc1320e836de5f446a82786999da8c889730d26bb484bc18670c1a1c77d39e0b8cd6349cea88ea4fbb5cf2b98060cf7165b6bf76fc736b7e5454eb7afce6c75233d16637e9d52e90766d223ab28bad4eb2b23c30549763a0d311ddebc98f18b0e1857af738c5b95443bc18006a7ba79a32da78aa9cba3a89974301c3c850ea6640ea1cc5bcb41187a293f49cb70d9455aa8bed2fb296099d9d5e1bf50f5177af77b7c7a2a01b4f5a245539113b93f9702a74da6a5fe73d4a3a0f2d19c350c0bb7f4583e69f575f36e9f9125235e78a4e596a6c6eb57f1f10a61d1aa1b2444d41e34f416ce5359fc2e51cd7a55d46bfab1989b9f337954d1b1ceb80dddc555992e29bd431776538d5d2287fe9831d47d80db7c9916a4aaa20415a60ff45f01d6670a79efbf23eda280e934cffaaefbea716218d1d9069c13939d839b40b83bffd36cfbf7723d026c79bdef384ec7bc019b2fb2813a6d8e2a45bd606b924c6af92885438c003f56caa04eeae8c09c7ce317524b077a4c2aece1d0ab00a42d59458fcd69307a2f763bcf9c4057866a29a50272c69c05c608842fc7f367b693b4c1c1333ef94d2453bc30e6535e7a5ed401db3ceccb06f7a4891f4d615d79bf1b355f9654b08cbe29e5850daad26cbc6a06d9f947e5d050feed8d608db85f2346f6a6f0c552cb1d4c0cd41691b8e372331e4d977c7a4277c801212d4ac14d39b2407a25988ea9e262a2352b028d29965b8ddbbb858470557f1db4146993eb8f4ce2c8ef820a8a97b2ce2d258c9236bb48a8fcdfd8d303d06c2f57d769fb2b02f36d08c01be17309a541491af2151b8b7efcc966481b417f6785017e69facdaba52ac2cd3d35ef1f62d5d36d43f9083b15f46c36acfed54b00dc3a62efb265f97c35b17b9b1ab008f025a2b0fb4407b02470a1fbc4d9f7b1e75c811e53f026f2e04ce219d6453958b010eb02ea9e8f7168a0ede4f64343c45f61ee4dc410f66beae21933eb6057628ce8c4e0ce67043438bf630620fd7b2f67c25ab529e6577a62cf147bc5a2b112687916cca958283868a19e65c3c17b2bb725e1b5d6e2adfaed2a99ca11a67cf76d6a4674be5e7a8cd1b5e8c8cc3d8c1db7054227fd9fc235a2138233faef7ae548edbc463a8cf2643332786fb66e617c88bd30ffd0a8b77a8f66dcf1f6a6265dcc9b812451bfd097fca406a45f4f5ac7db560f0127cfda7025ad2686a96091950dc4a7887c022ba22925053f6654da99c166ea797c38580a127cfee5256c22c3ee80c66f32e96161e3ed97c94c75204c1c83c3254c3bfc42b0f7dc9cf33617f91e60197057a2b7e3f47b7c959a10b2c783f6ce4b6d7debfa6a91253071f783998e00afd83685ad724e0135653b66ac814e6eb870e172955e7ac78ccd369a2cf26b375f9a0db051801f6541db17cb69b9979740093360ecddfa2ad5dd5e11e5cfe8e70c3513504082fcc8678595179e20808cb8a8d1381d96c2304b3c7858fcb5023c13edf9695c2d3b7b0cc919ca3f79d2d64d49fe9ab0385ada223ec2828bae895dd4c1b7b31aea98ddfd586c381eee5eedc8cce59ef983d777c99e320832bd6a1082128e506636fd0068ac0b19b511b2c1d9111c67917884f2158849f1ec8d68ef8b770cb2f3a1b20e5bd7b8293c8ff245582f6b5eeb54ceecadb3abbf7fc68d659eb53b67c77b3f795d25b734b67e7f1fde826a244d5c0db748b9ca8a2f149d5663114476b800eed6c7d22e47438376c9639f8a9c7e29a8007dd07feb6e9ca6f11eb4b4e823b9ce1bc351a62e4c144eec55b28a34a231cd027e182150241aca829a2ba8c3d1557de70fcb21a2d54431d635d0460abb2a6415fc53e5ed7a2b09456d8710d56c565525376b39f48864785cf13dd451e4bffc50f7d16bcadda7f2e8a2f7a227d319d9f83fe6ff3eae42d36b12aaa364ae071531a70fffe82f8b59a561872b602bcb38bf3f95dcbe26e9c3ac377fb1518508497f34629b85fffefe6e08149e0ecbc5aafd61ccf6aa6e744a98ee5b1fc32c83088f00517ddf86082a746aaaef3bf5e8f8d4900d0206875a1c9d66c68516d7ed2865ff078649c9c34327a85b8595c6778213f6af0ea423f17a87d0e04a9d80ca7dedbced3e510a31043c399588ecfd621740c9c946a0388a2069176befb12bd3b1abb7b688be286a74685cad55411796ac49971928d317a71098cd07a893bd3ce6a31881c3a43c6444e0af6c55f37d0a2c997b37b9926fc999c2b54ff9a534e61de2f26e0666e6f39bd7f6ffed25d104243e2c0e9dd584743f33f2d6588f05cd43aed69ef7e50d9729e0a026fae4e6aad07cb73d279d08b018124d33bf49f6edfc83fcb8eed9742825d79a31e90e7fc18455494d2ddaffd1d44cb807ae4e47259fcd3c244f8158f7d11e59a60f3aaec56006e86c8a9bcee4f6f2415049e9becc60c273c21634c3f16a9eaff516eb4cd5ed91110b213b5a7b851c38"})
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_setup(0x5c11, &(0x7f0000000240)={0x0, 0x2d51, 0x13, 0x1, 0xcb, 0x0, r5}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140), &(0x7f00000001c0)=<r6=>0x0)
r7 = socket(0xf, 0x5, 0xffffa281)
syz_io_uring_submit(r1, r6, &(0x7f0000000380)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd, 0x0, 0x0, 0xcce9, 0x8, 0x1, {0x0, 0x0, r7}}, 0x86)
ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
io_uring_enter(r0, 0x58ac, 0x80, 0x0, 0x0, 0x0)

08:36:34 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x400000, 0x0, 0x0)

08:36:48 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)

08:36:48 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001880)=[{{&(0x7f00000001c0)={0xa, 0x4e23, 0x20, @remote, 0x1313}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000340)="b4f68ca0574f813c1e879ea21e61479cf4965421f4ac91203959ea8e30d6d38edbb949ca6591ea0f6f7c23cf621fa0c0c046c3d92a41559c820a72e1075cdfe85d38a1dfd2f67a111f83635585a468aaa456d04d1657b8b40280ce32ae705d9819213843a41107c749633cce54f4b0fe2c1198cf", 0x74}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000400)}, {&(0x7f0000000440)="2606373465d473b09b", 0x9}, {&(0x7f0000000500)="7fd122661c63f110aeb997bc57c4bdef9e3d9edfc34b2603e89fbd7f21766800e7c4e1072e5666cc26cdd43d9c7d316e201dcb06daadc13ce53b048830996a62d4abd593033d13bd2e04a2f69c936ad8", 0x50}, {&(0x7f0000000580)="029455d1f2ba3e8ac48a9c7fc025ac4d9bea3450abd0f4", 0x17}], 0x4, &(0x7f0000000600)=[@tclass={{0x14, 0x29, 0x43, 0x8}}], 0x18}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000640)="40af443d865d6b3f3bd88b39b6a761b07a88", 0x12}, {&(0x7f0000000680)="f664435e39d4076fc65e79ec9d6f228690f10ea5a295df251bb37a8785eeb4124306419a7d7672594f", 0x29}], 0x2, &(0x7f0000000700)=[@hoplimit={{0x14, 0x29, 0x34, 0x7}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}, @hoplimit={{0x14, 0x29, 0x34, 0x5}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x2}}, @tclass={{0x14, 0x29, 0x43, 0x4}}, @rthdrdstopts={{0x48, 0x29, 0x37, {0x2e, 0x5, '\x00', [@padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x5, 0x7, "f771876be482b9"}, @jumbo={0xc2, 0x4, 0x8000}, @pad1, @jumbo={0xc2, 0x4, 0xb31}, @jumbo={0xc2, 0x4, 0x77f}, @jumbo={0xc2, 0x4, 0xf7ce}, @pad1]}}}], 0xc0}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000007c0)="9e24f51d4ace3e1f7f2982fb956c47", 0xf}], 0x1, &(0x7f0000000840)=[@dstopts_2292={{0x1020, 0x29, 0x4, {0x2f, 0x200, '\x00', [@pad1, @generic={0x81, 0x1000, "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"}]}}}], 0x1020}}], 0x4, 0x4000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x80010, r0, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITEV={0x2, 0x1, 0x6000, @fd_index, 0x1, &(0x7f0000000040)=[{&(0x7f0000000240)="a358e8b5fe74aa127e6194ab13ae7546c80628b22da7803a08d41c250aa96afa22272f15bab7766a381d5e0202e133999c537a35e0f18a813390579f07a3564d5ec1ef4ff6d95e9a9929e582b5537af740cc293f6d5fb0e730b60f4bc0cccf9d2aa1", 0x62}], 0x1, 0x11, 0x0, {0x3}}, 0x4)

08:36:48 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff}) (fail_nth: 1)
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

[ 2757.117644] FAULT_INJECTION: forcing a failure.
[ 2757.117644] name failslab, interval 1, probability 0, space 0, times 0
[ 2757.118984] CPU: 1 PID: 15643 Comm: syz-executor.7 Not tainted 5.10.240 #1
[ 2757.119779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2757.120727] Call Trace:
[ 2757.121038]  dump_stack+0x107/0x167
[ 2757.121455]  should_fail.cold+0x5/0xa
[ 2757.121895]  ? __request_module+0x2e0/0x920
[ 2757.122389]  ? sock_ioctl+0x6a3/0x710
[ 2757.122831]  should_failslab+0x5/0x20
[ 2757.123271]  kmem_cache_alloc_trace+0x55/0x320
[ 2757.123808]  ? sock_ioctl+0x6a3/0x710
[ 2757.124242]  __request_module+0x2e0/0x920
[ 2757.124717]  ? free_modprobe_argv+0x90/0x90
[ 2757.125215]  ? perf_trace_lock+0xac/0x490
[ 2757.125687]  ? SOFTIRQ_verbose+0x10/0x10
[ 2757.126171]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2757.126825]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2757.127421]  ? do_vfs_ioctl+0x283/0x10d0
[ 2757.127901]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2757.128531]  ? generic_block_fiemap+0x60/0x60
[ 2757.129047]  sock_ioctl+0x6a3/0x710
[ 2757.129489]  ? dlci_ioctl_set+0x30/0x30
[ 2757.129948]  ? selinux_file_ioctl+0xb6/0x270
[ 2757.130454]  ? dlci_ioctl_set+0x30/0x30
[ 2757.130911]  __x64_sys_ioctl+0x19a/0x210
[ 2757.131373]  do_syscall_64+0x33/0x40
[ 2757.131815]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
08:36:48 executing program 3:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000280)={0x2, 0x8, 0x7})
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffe}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x40001}, 0x8004)
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@ax25={{0x3, @null}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null]}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:48 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000009, 0x10, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:36:48 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x11, r0, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r2, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_enter(r2, 0x665, 0x62e5, 0x2, &(0x7f0000000140)={[0x4]}, 0x8)
syz_io_uring_setup(0x7fab, &(0x7f0000000040)={0x0, 0xee5e, 0x0, 0x2, 0x72, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000001c0)={0x3, [0x0, 0x0, 0x0]})

08:36:48 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 98)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:36:48 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000, 0x0, 0x0)

[ 2757.132439] RIP: 0033:0x7f5702679b19
[ 2757.133095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2757.137369] RSP: 002b:00007f56ffbef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2757.139074] RAX: ffffffffffffffda RBX: 00007f570278cf60 RCX: 00007f5702679b19
[ 2757.140680] RDX: 0000000020000040 RSI: 0000000000008982 RDI: 0000000000000004
[ 2757.142284] RBP: 00007f56ffbef1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2757.143893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2757.145431] R13: 00007ffeededa00f R14: 00007f56ffbef300 R15: 0000000000022000
[ 2757.195881] FAULT_INJECTION: forcing a failure.
[ 2757.195881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2757.198617] CPU: 0 PID: 15656 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2757.200204] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2757.202108] Call Trace:
[ 2757.202721]  dump_stack+0x107/0x167
[ 2757.203558]  should_fail.cold+0x5/0xa
[ 2757.204455]  _copy_from_user+0x2e/0x1b0
[ 2757.205374]  move_addr_to_kernel.part.0+0x31/0x110
[ 2757.206499]  move_addr_to_kernel+0x4f/0x70
[ 2757.207476]  io_connect+0x47a/0x610
[ 2757.208329]  ? io_prep_rw+0x1050/0x1050
[ 2757.209273]  ? __lock_acquire+0xbb1/0x5b00
[ 2757.210264]  io_issue_sqe+0x1611/0x77b0
[ 2757.211177]  ? io_dismantle_req+0xdf/0x180
[ 2757.212157]  ? perf_trace_lock+0xac/0x490
[ 2757.213098]  ? SOFTIRQ_verbose+0x10/0x10
[ 2757.214036]  ? io_connect+0x610/0x610
[ 2757.214916]  ? lock_acquire+0x197/0x470
[ 2757.215830]  ? find_held_lock+0x2c/0x110
[ 2757.216771]  ? __fget_files+0x2cf/0x520
[ 2757.217685]  ? lock_downgrade+0x6d0/0x6d0
[ 2757.218639]  __io_queue_sqe+0x90/0x9d0
[ 2757.219545]  ? io_issue_sqe+0x77b0/0x77b0
[ 2757.220492]  ? __fget_files+0x2f8/0x520
[ 2757.221427]  io_submit_sqes+0x44aa/0x8610
[ 2757.222427]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2757.223570]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2757.224692]  ? find_held_lock+0x2c/0x110
[ 2757.225634]  ? io_submit_sqes+0x8610/0x8610
[ 2757.226647]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2757.227760]  ? wait_for_completion_io+0x270/0x270
[ 2757.228882]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2757.229956]  ? vfs_write+0x354/0xb10
[ 2757.230811]  ? fput_many+0x2f/0x1a0
[ 2757.231673]  ? ksys_write+0x1a9/0x260
[ 2757.232553]  ? __ia32_sys_read+0xb0/0xb0
[ 2757.233495]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2757.234687]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2757.235863]  do_syscall_64+0x33/0x40
[ 2757.236710]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2757.237861] RIP: 0033:0x7f9e767a8b19
[ 2757.238698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2757.242891] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2757.244646] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2757.246293] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2757.247928] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2757.249545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2757.251182] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:36:48 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)

08:36:48 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000009c0)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000980)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd, 0x0, 0x0, 0x8b4, 0x6, 0x1, {0x0, 0x0, r5}}, 0x80000000)
r6 = syz_io_uring_setup(0x5377, &(0x7f0000000240)={0x0, 0xbb49, 0x10, 0x2, 0x3a6}, &(0x7f0000fef000/0xf000)=nil, &(0x7f0000fee000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_mount_image$tmpfs(&(0x7f0000000600), &(0x7f0000000200)='./file0/file0\x00', 0x0, 0x2, &(0x7f0000000800)=[{&(0x7f0000000740)="31ff20bf07113f5cf27451a892811080076e09a75ef0de5abfb8bce4303333d9", 0x20, 0x5}, {&(0x7f0000000780)="dc19a5d4a5e20e247b4af9a1d494ce7cd96363c8dac5bae163736d0e029a3dcaee429fd2cdc2f10ae973dc623f67da30f44a0681b875c0d2fafbf39262f78856f6c0f817c8fbba48f1e8", 0x4a, 0x1}], 0x80, &(0x7f0000000a00)=ANY=[@ANYBLOB="6e725f696e6f6465733d6b356b1b7025352c6d6f64653d30303030303030303030303030303030303030303430302c687567653d6e657665722c6e725f626c6f636b733d25672c6e725f626c6f636b733d6b3778362c6e725f696e6f6465733d33332d31742d332537322c6e725f626c6f6363733d65743970676b372c687567653d6e657665722c6e725f696e6f6465733d2d3700782c6d6f64653d30303030303030303030303031373737373737373737372c666f776e65723d31443f3073b68f6cbccfe7c3686e5f1f51e4249f7e7db2", @ANYRESDEC=0xee00, @ANYBLOB="2c61707072616973652c7063723d30303030303030303030303030b03030303030322c6f62645f757305003d2d5c232f2c00"])
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r8, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
close_range(r7, r8, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)
r10 = mmap$IORING_OFF_SQES(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x8, 0x10cdbe89aab3e719, r6, 0x10000000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f00000006c0)=@IORING_OP_WRITEV={0x2, 0x2, 0x2000, @fd, 0xfffffffffffffffa, &(0x7f0000000640)=[{&(0x7f0000000340)="5cd90a8782af99f6f5588c4cffff0cb9b8946abb48707716708e8dedfe05fcbc935a4cc8734e088a132f43ab93de3807d991fd30a2e11d7b438b353ac7f3d8eb7b07017745743a9124f16926a0cb663910091a0ae9640adfc89a165f0690a9e60f485717c3a61472809c735dfb0ecad60ce246ae116a5c4dd97a7b34dd9dfab3442b7ee67c8abdf499644b752ae226194a6da23809d823e45999ad7838b4b330258dfc114c85ecf9b935a2d22679a9b882aa2c54507d49f28191ec7cbdc3", 0xbe}, {&(0x7f0000000400)="732d51a0ad812a65417cccc7808dd4904b4207898d7d8c42d3c6b3668e2ea77ee0e62cbb2f5889543b8a620a304563a322a57f8350c76edfbce019cd711befd663979b45e19eea348c32a028ab9a257368ac436bec875d44785838d696e9b0b3626f4520ee7325fd6097127c13454eb7e9e675aa4ef5b923311856", 0x7b}, {&(0x7f0000000500)="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", 0xfa}, {&(0x7f00000001c0)="623f199195a01adf249bcf9506fd6d", 0xf}, {&(0x7f0000000600)}], 0x5, 0x0, 0x0, {0x1, r11}}, 0x6)

08:36:48 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x1000000, 0x0, 0x0)

08:36:48 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:36:48 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:05 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x2, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:05 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x3}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x323b, &(0x7f0000000240)={0x0, 0xee31, 0x8, 0x2, 0x3bb, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r5=>0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x2000, @fd=r6, 0x2, 0x6, 0x1, 0x8, 0x1, {0x2, r7}}, 0xffff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:05 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r0, &(0x7f0000000ec0)=[{{&(0x7f0000000240)=@xdp, 0x80, &(0x7f0000000140)=[{&(0x7f0000000340)=""/152, 0x98}, {&(0x7f0000000040)=""/59, 0x3b}], 0x2, &(0x7f0000000500)=""/244, 0xf4}}, {{&(0x7f0000000400)=@rc={0x1f, @none}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000001c0)=""/46, 0x2e}, {&(0x7f0000000600)=""/239, 0xef}, {&(0x7f0000000700)=""/55, 0x37}, {&(0x7f0000000740)=""/233, 0xe9}, {&(0x7f0000000840)=""/191, 0xbf}, {&(0x7f0000000900)=""/10, 0xa}, {&(0x7f0000000940)=""/93, 0x5d}, {&(0x7f00000009c0)=""/160, 0xa0}], 0x8, &(0x7f0000000b00)=""/253, 0xfd}, 0x9}, {{&(0x7f0000000c00)=@nfc, 0x80, &(0x7f0000000d80)=[{&(0x7f0000000c80)=""/200, 0xc8}], 0x1, &(0x7f0000000dc0)=""/238, 0xee}, 0xffffffff}], 0x3, 0x10002, &(0x7f0000000f80))
r1 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:05 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x20000000, 0x0, 0x0)

08:37:05 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 99)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:37:05 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)

08:37:05 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x80010, r0, 0x0)

08:37:05 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x13, r0, 0x0)
r5 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r8], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r9 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r9, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
sendmsg$DCCPDIAG_GETSOCK(r9, &(0x7f0000000640)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000600)={&(0x7f0000000380)={0x258, 0x13, 0x1, 0x70bd26, 0x25dfdbfb, {0xf, 0x7, 0x6, 0xfc, {0x4e22, 0x4e20, [0xffffffff, 0x233, 0x1ff, 0xffffffff], [0x9, 0xffffff00, 0x1802, 0x1], 0x0, [0x4, 0x4]}, 0x8001, 0x3}, [@INET_DIAG_REQ_BYTECODE={0x55, 0x1, "726002c3712fb3961b295f62abb412feae61ab757f7082be2d3eb004ee5b73e497afe8327df4978ee26222204a6b3a64b06728742a32268f6352c277a2c8806566b84307e374fc8161ad06bc93b2e2bc6e"}, @INET_DIAG_REQ_BYTECODE={0xe, 0x1, "40c5e608afabb1ad9c81"}, @INET_DIAG_REQ_BYTECODE={0xdb, 0x1, "2559ad2b3932c891a79c37792c4f3db4d8f48c6fdcbe5ed86ea529d2db03d31daaed23918218a284039bfd7e17bee3e485291eab1fb6819b791889da966faad281978d1aaaaf4c8ccbbcaee89246c2402bc83af305a27ee447c0d25f6eea4a32008e2bbc8406186a2403140eab412cc93758bfa8457d04e7f56e44faa77d1cac2aa6442a26ae4a4bae5f6b9823e92390bfd199e4819f2a0844e4a5dfb733940b04a5ff5bb2223deba9a95841c449d94175889f9422bb3722e06c621d714e2085c70ee0717c88a71efb1a8d7df99b63966fa147e18f988c"}, @INET_DIAG_REQ_BYTECODE={0xb7, 0x1, "0235ff31e3a15134a0b91d8c36779b93145e1dd17527369b12d5d1e3162561b5c461226caa957a4904f88d54b19313d3ed11d8668bb6166490d96e10813b327d827e26d26bd42c1091fe37b07730017295387204a17093972477dab4a6768cc37903421a4eaa1c8c347d28d34cd21d031081b3aa3b7bc1977f0c2d6556d22744557d529e82442ff850500f698d313bb370c6c784c983301d1302ce0c16147be074535610f3ba2af93b96d0f689928d2c33f498"}, @INET_DIAG_REQ_BYTECODE={0xf, 0x1, "38d7e480c6e178e100b531"}]}, 0x258}, 0x1, 0x0, 0x0, 0xc010}, 0x4000010)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r11 = syz_open_dev$vcsu(&(0x7f0000000240), 0x7, 0x67a000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r6, 0xc018937a, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r12=>r3, {0xf}}, './file0\x00'})
dup3(r11, r12, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r10)
syz_io_uring_submit(r4, r2, &(0x7f0000000140)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x400, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x0, {0x0, r10}}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:05 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x4b47, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

[ 2774.214615] FAULT_INJECTION: forcing a failure.
[ 2774.214615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2774.217301] CPU: 0 PID: 15716 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2774.218796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2774.220587] Call Trace:
[ 2774.221157]  dump_stack+0x107/0x167
[ 2774.221942]  should_fail.cold+0x5/0xa
[ 2774.222770]  _copy_from_user+0x2e/0x1b0
[ 2774.223633]  move_addr_to_kernel.part.0+0x31/0x110
[ 2774.224696]  move_addr_to_kernel+0x4f/0x70
[ 2774.225608]  io_connect+0x47a/0x610
[ 2774.226392]  ? io_prep_rw+0x1050/0x1050
[ 2774.227272]  ? __lock_acquire+0xbb1/0x5b00
[ 2774.228195]  io_issue_sqe+0x1611/0x77b0
[ 2774.229053]  ? io_dismantle_req+0xdf/0x180
[ 2774.229964]  ? perf_trace_lock+0xac/0x490
[ 2774.230854]  ? SOFTIRQ_verbose+0x10/0x10
[ 2774.231734]  ? io_connect+0x610/0x610
[ 2774.232568]  ? lock_acquire+0x197/0x470
[ 2774.233421]  ? find_held_lock+0x2c/0x110
[ 2774.234308]  ? __fget_files+0x2cf/0x520
[ 2774.235165]  ? lock_downgrade+0x6d0/0x6d0
[ 2774.236069]  __io_queue_sqe+0x90/0x9d0
[ 2774.236914]  ? io_issue_sqe+0x77b0/0x77b0
[ 2774.237804]  ? __fget_files+0x2f8/0x520
[ 2774.238679]  io_submit_sqes+0x44aa/0x8610
[ 2774.239604]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2774.240685]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2774.241723]  ? find_held_lock+0x2c/0x110
[ 2774.242601]  ? io_submit_sqes+0x8610/0x8610
[ 2774.243533]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2774.244576]  ? wait_for_completion_io+0x270/0x270
[ 2774.245613]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2774.246609]  ? vfs_write+0x354/0xb10
[ 2774.247411]  ? fput_many+0x2f/0x1a0
[ 2774.248206]  ? ksys_write+0x1a9/0x260
[ 2774.249023]  ? __ia32_sys_read+0xb0/0xb0
[ 2774.249899]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2774.251021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2774.252139]  do_syscall_64+0x33/0x40
[ 2774.252939]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2774.254038] RIP: 0033:0x7f9e767a8b19
[ 2774.254840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2774.258803] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2774.260445] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2774.261974] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2774.263506] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2774.265047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2774.266579] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:37:05 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x727a, 0xc50f, 0x1, &(0x7f0000000000)={[0xfffffffffffffff7]}, 0x8)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:37:05 executing program 3:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
r1 = syz_io_uring_setup(0x2eab, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:05 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5ffffff, 0x0, 0x0)

08:37:05 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000140)=0x1c, 0x80000)
pread64(r5, &(0x7f0000000240)=""/109, 0x6d, 0x1)

08:37:05 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0)

08:37:05 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x4b49, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:05 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x6, 0xffffffffffffff01, 0x0, 0x1000, 0x0, 0x1, {0x0, r3}}, 0x80)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
r5 = syz_io_uring_setup(0xc54, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2, 0x1a4, 0x0, r4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r11, 0x0, 0x0}, 0x0)
syz_io_uring_complete(r9)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r12, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0xc0, &(0x7f0000000000)=0x5b, 0x0, 0x4)
r13 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x401, 0x101000)
sendfile(r13, r5, &(0x7f00000001c0)=0x5, 0x10000)

08:37:06 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:06 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xfffffff5, 0x0, 0x0)

08:37:22 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x1, 0x1}, 0xff)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000003, 0x8010, r3, 0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
dup2(r0, r0)

08:37:22 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0) (fail_nth: 100)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:37:22 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:22 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000440)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000)
syz_io_uring_submit(r11, r10, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x11}, 0x80000001)
syz_io_uring_submit(r5, r10, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x7, &(0x7f0000000040)={0x0, 0x3938700}, 0x1, 0x1, 0x1}, 0x8)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:22 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x541b, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:22 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000002, 0x40010, r0, 0x8000000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x6, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x100)

08:37:22 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)

08:37:22 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x40000000000000, 0x0, 0x0)

[ 2790.555447] FAULT_INJECTION: forcing a failure.
[ 2790.555447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2790.558202] CPU: 1 PID: 15792 Comm: syz-executor.6 Not tainted 5.10.240 #1
[ 2790.559692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2790.561489] Call Trace:
[ 2790.562058]  dump_stack+0x107/0x167
[ 2790.562842]  should_fail.cold+0x5/0xa
[ 2790.563671]  _copy_from_user+0x2e/0x1b0
[ 2790.564554]  move_addr_to_kernel.part.0+0x31/0x110
[ 2790.565611]  move_addr_to_kernel+0x4f/0x70
[ 2790.566523]  io_connect+0x47a/0x610
[ 2790.567309]  ? io_prep_rw+0x1050/0x1050
[ 2790.568199]  ? __lock_acquire+0xbb1/0x5b00
[ 2790.569112]  io_issue_sqe+0x1611/0x77b0
[ 2790.569971]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.571095]  ? perf_trace_lock+0xac/0x490
[ 2790.571984]  ? SOFTIRQ_verbose+0x10/0x10
[ 2790.572870]  ? io_connect+0x610/0x610
[ 2790.573694]  ? lock_acquire+0x197/0x470
[ 2790.574550]  ? find_held_lock+0x2c/0x110
[ 2790.575429]  ? __fget_files+0x2cf/0x520
[ 2790.576292]  ? lock_downgrade+0x6d0/0x6d0
[ 2790.577189]  __io_queue_sqe+0x90/0x9d0
[ 2790.578033]  ? io_issue_sqe+0x77b0/0x77b0
[ 2790.578919]  ? __fget_files+0x2f8/0x520
[ 2790.579795]  io_submit_sqes+0x44aa/0x8610
[ 2790.580723]  ? __do_sys_io_uring_enter+0x6b2/0x1890
[ 2790.581787]  __do_sys_io_uring_enter+0x6b2/0x1890
[ 2790.582823]  ? find_held_lock+0x2c/0x110
[ 2790.583706]  ? io_submit_sqes+0x8610/0x8610
[ 2790.584647]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2790.585696]  ? wait_for_completion_io+0x270/0x270
[ 2790.586761]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2790.587754]  ? vfs_write+0x354/0xb10
[ 2790.588566]  ? fput_many+0x2f/0x1a0
[ 2790.589346]  ? ksys_write+0x1a9/0x260
[ 2790.590161]  ? __ia32_sys_read+0xb0/0xb0
[ 2790.591037]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2790.592171]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2790.593280]  do_syscall_64+0x33/0x40
[ 2790.594087]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2790.595183] RIP: 0033:0x7f9e767a8b19
[ 2790.595981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2790.599937] RSP: 002b:00007f9e73d1e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2790.601569] RAX: ffffffffffffffda RBX: 00007f9e768bbf60 RCX: 00007f9e767a8b19
[ 2790.603093] RDX: 00000000fffffff5 RSI: 00000000000058ab RDI: 0000000000000003
[ 2790.604629] RBP: 00007f9e73d1e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2790.606152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 2790.607678] R13: 00007ffe81c8c27f R14: 00007f9e73d1e300 R15: 0000000000022000
08:37:22 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x1, 0x0, 0x2a}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

08:37:22 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5421, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:22 executing program 4:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:37:22 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

08:37:22 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x26, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x5})
io_uring_enter(r5, 0xbb5, 0x0, 0x0, 0x0, 0x0)

08:37:22 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x4, 0x0, 0x122}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000140)={0x100, 0x2, 0x1, 0x5, 0x6})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
syz_io_uring_setup(0x2831, &(0x7f0000000040)={0x0, 0x5b81, 0x1, 0x3, 0x144, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100))

08:37:22 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5450, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:22 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000080)=@hci}, 0x0)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:37:22 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x100000000000000, 0x0, 0x0)

08:37:22 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:37:38 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x2000, 0x0, 0x0)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:37:38 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:38 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

08:37:38 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
syz_io_uring_setup(0x7772, &(0x7f0000000000)={0x0, 0x4706, 0x10, 0x0, 0x53, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_io_uring_setup(0xc98, &(0x7f0000000380)={0x0, 0xaf6b, 0x8, 0x3, 0x3ac, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000400), &(0x7f0000000440))
pselect6(0x40, &(0x7f0000000100)={0x48, 0x7, 0x100000001, 0x7, 0x0, 0x100, 0x6, 0x673e}, &(0x7f0000000140)={0x1f, 0x100000000, 0x7, 0x5, 0x5, 0x3, 0x9, 0x7}, &(0x7f00000001c0)={0x1000, 0x5, 0x0, 0x2c, 0x7, 0x4, 0x1, 0x9}, &(0x7f0000000240)={0x77359400}, &(0x7f0000000340)={&(0x7f0000000280)={[0x9]}, 0x8})

08:37:38 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x4}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000)
syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001)
r9 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r10, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r13)
syz_io_uring_submit(r4, r7, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x12, 0x0, {0x0, r13}}, 0x2)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000, 0x1}, 0x7ffe)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:38 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:37:38 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(0x0, r7, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x2007, @fd, 0x7, 0x0, 0x0, 0x3, 0x62fdec46d65b8ed7, {0x1}}, 0x80000000)
syz_io_uring_setup(0xc7b, &(0x7f0000000240)={0x0, 0xe124, 0x2, 0x0, 0x303, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r8=>0x0)
r9 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r10, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB="4001fffa", @ANYRES16=r9, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r13)
syz_io_uring_submit(0x0, r8, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r3, 0x0, &(0x7f0000000340)="544352527dfe13157ab81194bd027b460aeabc0867c63b12949f2f1340c5802b24c343cf6d5d48cde45e89c7c8e6182f35cc3c6b673442e41701f24c8abe3d0e705db2df643a268b307c9b14eb9860a68d5a19397836d970", 0x58, 0x40000, 0x1, {0x0, r13}}, 0x4)

08:37:38 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5451, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:38 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5452, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:38 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:37:38 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf5ffffff00000000, 0x0, 0x0)

08:37:38 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_setup(0x18ae, &(0x7f0000000000)={0x0, 0x9002, 0x0, 0x3, 0x3aa, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/bnep\x00')
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000140)=r3, 0x1)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'lo\x00', <r6=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@local, r6}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32=r6, @ANYBLOB="00010700000001000000056b482000670000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f0000010a01010264010100e00000027f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00000000"]})
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESDEC, @ANYBLOB="000229bd7000fedbdf250c00000008003a00a5db000008003a000900000005002d000000000008000600", @ANYRES32=r4, @ANYBLOB="0500290001000000080034000000010008003c00000000000500380000000000"], 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x84)
r7 = syz_io_uring_setup(0x2203, &(0x7f0000000440)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x4e}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000980)=ANY=[@ANYBLOB="cb0b050000834def5aa256f301f6fd209c374e595dbc9eecf00c2662581a49673494c4c1a08ffd07f997dbe093891070c2d577c4c74abed6af21e7c2c5413d6e27544ef1592c653a187f1452ad687a6318643e0ebed525b14e5c6c129e0adb500a31bebdb03ab011c28ddaebd982c442edbbe7ade0981c70b8a555abce356975f321e71777618711a3f5e0b76400e451dc340ffb493a4f1c90569bd15267dd159184dcc78800"/177, @ANYRES16, @ANYBLOB="20e70c000000000000df250eef0000080006e26e414b37efa93320ec99a150b77c044cf4804c0a862b0763", @ANYRESOCT=r1, @ANYBLOB="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"/317], 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r8)

08:37:38 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5460, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:38 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

08:37:38 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:52 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x2010, r0, 0x10000000)
r6 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="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", @ANYRES32=r10], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32, @ANYBLOB="00010700000001000000056b482000670000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f0000010a01010264010100e00000027f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00000000"]})
r11 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000000c0)={'lo\x00', <r12=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@local, r12}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)=ANY=[@ANYRES32=r12, @ANYBLOB="00010700000001000000056b482000670000f82f907800000000ac1e010107171500000000e000000200000000ffffffff7f000001440c3730000000030000d8e18307b30a010101072bd87f0000010a01010264010100e00000027f00000164010101ac141411ac1e00017f000001ac141422830b22e0000001e0000002070f647f000001ac1414bbe0000002861b00000003020554a5900510922ab528a61b70d7504713ac746f00000000"]})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r7, &(0x7f0000004dc0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1142a004}, 0xc, &(0x7f0000004d80)={&(0x7f0000004b80)={0x1e0, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x64, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x0, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x50}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x40408c4}, 0x1)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r13)
syz_io_uring_submit(r1, r5, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r13}}, 0x3c4)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:52 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8901, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:37:52 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
io_uring_enter(r5, 0x49a5, 0xafcb, 0x0, &(0x7f0000000040)={[0xab9]}, 0x8)
syz_io_uring_setup(0x28f9, &(0x7f0000000240)={0x0, 0x963f, 0x1, 0x2, 0x2f9, 0x0, r5}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000140)=<r6=>0x0, &(0x7f00000001c0))
r7 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000140))
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f0000001400)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001440)={&(0x7f0000001540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000fc5487df250eef0000080006", @ANYBLOB="1099216577d33318a1a6b37844e477b5fa72bd782834715decc0f270badac948e1caaaa95a063038ac7c79ad24d6c63194586800f9a86c857be18871904c607271ec486112bf3e77b51b9bd4d531a539591ce5cc3af592fa2c28fca9888317f316133a75f16a", @ANYRES32=r10], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r11)
syz_io_uring_submit(r6, r2, &(0x7f00000003c0)=@IORING_OP_WRITE={0x17, 0x0, 0x4000, @fd_index=0x1, 0x3, &(0x7f0000000340)="93bb378ffa762e24cebfc834c2e84b705c67d4451b008e38af81d4d8cd13ed0a296f65c5d75594e221da5bfd87d004afaf88b07441aef862af8ece85990533cf46a2", 0x42, 0x0, 0x1, {0x0, r11}}, 0x1)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:52 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x2, 0x35d}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_complete(r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000a, 0x4010, r0, 0x10000000)
syz_io_uring_submit(r1, r9, &(0x7f0000000000)=@IORING_OP_NOP={0x0, 0x3}, 0x3)

08:37:52 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:37:52 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:37:52 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

08:37:52 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x4000, 0x0, 0x0)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:37:52 executing program 4:
syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0xebc6, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:38:08 executing program 5:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(r5, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r7, 0x80, &(0x7f0000000240)=@llc={0x1a, 0x0, 0x2, 0x4, 0x57, 0xf3}, 0x0, 0x0, 0x1}, 0x3)
r8 = signalfd(r3, &(0x7f0000000040)={[0x6]}, 0x8)
io_uring_enter(r8, 0x31ce, 0x6456, 0x1, &(0x7f0000000140)={[0xfff]}, 0x8)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:38:08 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8902, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:38:08 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

08:38:08 executing program 0:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x2000c, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0xbb}, 0x0, 0xfffffffffffffffc, 0x80, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000240)={@ipv4={'\x00', '\xff\xff', @loopback}, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, 0x50a, 0x8, 0xfe, 0x500, 0x3ff, 0x40000000})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:38:08 executing program 6:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0xfffffff5, 0x400000, 0x0, 0x0)
pipe(&(0x7f00000000c0))
socket$inet(0x2, 0xa, 0x100)
socketpair(0x9, 0x805, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000240)={0x7ff, 0x6, 0x200, 0x7fff, 0x7})
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:38:08 executing program 1:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180))
io_uring_enter(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x70)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, 0x810, 0xffffffffffffffff, 0x10000000)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$lock(r6, 0x7, &(0x7f0000000340)={0x1, 0x0, 0x80000000})
syz_io_uring_submit(r2, r5, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x4000, @fd=r6, 0x9, 0x7ff, 0x60d5679b, 0x0, 0x0, {0x1}}, 0x1f)

08:38:08 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:38:08 executing program 3:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x20140, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fsetxattr$trusted_overlay_origin(r4, &(0x7f00000001c0), &(0x7f0000000240), 0x2, 0x1)
fcntl$lock(r5, 0x6, &(0x7f0000000600)={0x1, 0x0, 0x0, 0x2})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140), 0x8, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@debug={'debug', 0x3d, 0x1ff}}], [{@obj_role={'obj_role', 0x3d, '\xbe'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}]}})
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

08:38:08 executing program 7:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8903, &(0x7f0000000040)={0x1, 'vlan0\x00', {}, 0xff})
r1 = clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_procfs(r1, &(0x7f0000000100)='net/nfsfs\x00')

08:38:08 executing program 4:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000040)=0x8, &(0x7f0000000140)=0x2)

08:38:09 executing program 2:
r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@hci}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x400000)


VM DIAGNOSIS:
08:43:19  Registers:
info registers vcpu 0
RAX=ffffffff83e953c0 RBX=0000000000000000 RCX=ffffffff83e7d02c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e95b88 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85679448 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e953ce RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8ef0d8d010 CR3=00000000174d0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000004184a39340000000 XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=1ffff11003831e87 RCX=0000000000000000 RDX=ffff8880214e9a40
RSI=0000000000000008 RDI=ffff8880214ea384 RBP=0000000000000001 RSP=ffff88801c18f428
R8 =0000000000000000 R9 =ffffffff8567944f R10=fffffbfff0acf289 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=ffff888045ff4228 R15=0000000000000000
RIP=ffffffff81275a12 RFL=00000013 [----A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f32d8aee700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055f9bbe02678 CR3=000000004c2fe000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000003fd0000000000000
XMM02=000000000000000041b031447e000000 XMM03=000000c007237b00000000c007237380
XMM04=000000c000314440000000c000314280 XMM05=000000c006b44060000000c00b4e9dc0
XMM06=000000c00a9410b0000000c00c203a18 XMM07=000000c001d279e0000000c00a941920
XMM08=000000c00b71df00000000c007ee3700 XMM09=000000c008085f40000000c0080e2ac0
XMM10=000000c007237b00000000c007237380 XMM11=000000c006c58c00000000c007237bc0
XMM12=000000c002c0fd40000000c002c0fd10 XMM13=65786509006e65672063657865080073
XMM14=746f7420636578650a007a7a75662063 XMM15=00006873616d7320636578650a006c61