CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:04:58 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 21)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:04:58 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)="ff", 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2114.494464] FAULT_INJECTION: forcing a failure.
[ 2114.494464] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2114.497448] CPU: 1 PID: 11442 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2114.498875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2114.500575] Call Trace:
[ 2114.501124]  dump_stack+0x107/0x167
[ 2114.501884]  should_fail.cold+0x5/0xa
[ 2114.502678]  __alloc_pages_nodemask+0x182/0x600
[ 2114.503652]  ? lock_acquire+0x197/0x470
[ 2114.504464]  ? lockref_get+0x11/0x50
[ 2114.505221]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2114.506450]  ? lock_downgrade+0x6d0/0x6d0
[ 2114.507294]  ? do_raw_spin_lock+0x121/0x260
[ 2114.508196]  ? rwlock_bug.part.0+0x90/0x90
[ 2114.509067]  alloc_pages_current+0x187/0x280
[ 2114.509967]  __get_free_pages+0xc/0xa0
[ 2114.510752]  inode_doinit_with_dentry+0x8f1/0x1240
[ 2114.511763]  ? retrigger_next_event+0x167/0x1f0
[ 2114.512702]  ? hrtimer_init+0x20/0x170
[ 2114.513490]  ? selinux_file_lock+0x280/0x280
[ 2114.514380]  ? current_time+0x1e6/0x2c0
[ 2114.515185]  ? igrab+0xc0/0xc0
[ 2114.515864]  selinux_d_instantiate+0x23/0x30
[ 2114.516756]  security_d_instantiate+0x56/0xe0
[ 2114.517668]  d_instantiate+0x5a/0x90
[ 2114.518427]  __debugfs_create_file+0x246/0x530
[ 2114.519368]  do_blk_trace_setup+0x3fb/0xc10
[ 2114.520255]  ? _copy_from_user+0xfb/0x1b0
[ 2114.521105]  __blk_trace_setup+0xca/0x180
[ 2114.521954]  ? do_blk_trace_setup+0xc10/0xc10
[ 2114.522887]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2114.523975]  blk_trace_setup+0x43/0x60
[ 2114.524772]  sg_ioctl_common+0x634/0x2570
[ 2114.525626]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2114.526669]  ? do_vfs_ioctl+0x283/0x10d0
[ 2114.527514]  ? sg_write+0x120/0x120
[ 2114.528254]  ? generic_block_fiemap+0x60/0x60
[ 2114.529171]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2114.530173]  ? selinux_file_ioctl+0xb6/0x270
[ 2114.531064]  ? sg_compat_ioctl+0x120/0x120
[ 2114.531934]  sg_ioctl+0x8f/0x120
[ 2114.532631]  __x64_sys_ioctl+0x19a/0x210
[ 2114.533463]  do_syscall_64+0x33/0x40
[ 2114.534223]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2114.535258] RIP: 0033:0x7fb64c457b19
[ 2114.536025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2114.539753] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2114.541317] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2114.542761] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2114.544220] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2114.545669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2114.547128] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2114.572672] FAULT_INJECTION: forcing a failure.
[ 2114.572672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2114.575206] CPU: 1 PID: 11443 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2114.576643] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2114.578317] Call Trace:
[ 2114.578856]  dump_stack+0x107/0x167
[ 2114.579614]  should_fail.cold+0x5/0xa
[ 2114.580391]  _copy_from_user+0x2e/0x1b0
[ 2114.581212]  move_addr_to_kernel.part.0+0x31/0x110
[ 2114.582210]  move_addr_to_kernel+0x4f/0x70
[ 2114.583076]  io_connect+0x47a/0x610
[ 2114.583828]  ? io_prep_rw+0x1050/0x1050
[ 2114.584663]  ? __lock_acquire+0xbb1/0x5b00
[ 2114.585571]  io_issue_sqe+0x1611/0x7700
[ 2114.586391]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2114.587466]  ? lock_chain_count+0x20/0x20
[ 2114.588303]  ? __is_insn_slot_addr+0x14c/0x290
[ 2114.589227]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2114.590287]  ? io_connect+0x610/0x610
[ 2114.591063]  ? lock_acquire+0x197/0x470
[ 2114.591876]  ? find_held_lock+0x2c/0x110
[ 2114.592704]  ? __fget_files+0x26d/0x4c0
[ 2114.593504]  ? lock_downgrade+0x6d0/0x6d0
[ 2114.594346]  __io_queue_sqe+0x90/0x9d0
[ 2114.595137]  ? io_issue_sqe+0x7700/0x7700
[ 2114.596013]  io_submit_sqes+0x4461/0x85c0
[ 2114.596883]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2114.597887]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2114.598864]  ? lock_downgrade+0x6d0/0x6d0
[ 2114.599707]  ? find_held_lock+0x2c/0x110
[ 2114.600531]  ? io_submit_sqes+0x85c0/0x85c0
[ 2114.601409]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2114.602381]  ? wait_for_completion_io+0x270/0x270
[ 2114.603357]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2114.604313]  ? vfs_write+0x354/0xa70
[ 2114.605071]  ? fput_many+0x2f/0x1a0
[ 2114.605806]  ? ksys_write+0x1a9/0x260
[ 2114.606576]  ? __ia32_sys_read+0xb0/0xb0
[ 2114.607400]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2114.608471]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2114.609515]  do_syscall_64+0x33/0x40
[ 2114.610279]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2114.611320] RIP: 0033:0x7f1edfa23b19
[ 2114.612089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2114.615826] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2114.617368] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2114.618811] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2114.620266] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2114.621709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2114.623147] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:05:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0xf}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:12 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:05:12 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 22)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:05:12 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 5)

04:05:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x400000000000000, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:05:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:12 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x6}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:12 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

[ 2128.603419] FAULT_INJECTION: forcing a failure.
[ 2128.603419] name failslab, interval 1, probability 0, space 0, times 0
[ 2128.605404] device veth0_vlan entered promiscuous mode
[ 2128.606463] CPU: 0 PID: 11466 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2128.608291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2128.610008] Call Trace:
[ 2128.610564]  dump_stack+0x107/0x167
[ 2128.611335]  should_fail.cold+0x5/0xa
[ 2128.612147]  ? __d_alloc+0x2a/0x990
[ 2128.612910]  should_failslab+0x5/0x20
[ 2128.613708]  kmem_cache_alloc+0x5b/0x310
[ 2128.614563]  __d_alloc+0x2a/0x990
[ 2128.615300]  d_alloc_parallel+0x111/0x1bc0
[ 2128.616213]  ? __lock_acquire+0x1657/0x5b00
[ 2128.617114]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2128.618220]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2128.619089]  ? mark_lock+0xf5/0x2df0
[ 2128.619887]  ? lockdep_init_map_type+0x2c7/0x780
[ 2128.620885]  ? lockdep_init_map_type+0x2c7/0x780
[ 2128.621892]  __lookup_slow+0x193/0x490
[ 2128.622713]  ? lookup_open.isra.0+0x1270/0x1270
[ 2128.623705]  ? __d_lookup+0x3bf/0x760
[ 2128.624517]  ? d_lookup+0xcc/0x130
[ 2128.625270]  lookup_one_len+0x167/0x1a0
[ 2128.626091]  ? __lookup_slow+0x490/0x490
[ 2128.626940]  ? down_write_killable+0x180/0x180
[ 2128.627899]  ? do_raw_spin_unlock+0x4f/0x220
[ 2128.628817]  ? mntput+0xc/0x90
[ 2128.629504]  start_creating.part.0+0x10a/0x230
[ 2128.630464]  __debugfs_create_file+0xdb/0x530
[ 2128.631411]  do_blk_trace_setup+0x43c/0xc10
[ 2128.632327]  ? _copy_from_user+0xfb/0x1b0
[ 2128.633199]  __blk_trace_setup+0xca/0x180
[ 2128.634066]  ? do_blk_trace_setup+0xc10/0xc10
[ 2128.634995]  ? perf_trace_lock+0xac/0x490
[ 2128.635879]  blk_trace_setup+0x43/0x60
[ 2128.636682]  sg_ioctl_common+0x634/0x2570
[ 2128.637529]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2128.638584]  ? do_vfs_ioctl+0x283/0x10d0
[ 2128.639442]  ? sg_write+0x120/0x120
[ 2128.640194]  ? generic_block_fiemap+0x60/0x60
[ 2128.641108]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2128.642105]  ? selinux_file_ioctl+0xb6/0x270
[ 2128.642997]  ? sg_compat_ioctl+0x120/0x120
[ 2128.643871]  sg_ioctl+0x8f/0x120
[ 2128.644566]  __x64_sys_ioctl+0x19a/0x210
[ 2128.645398]  do_syscall_64+0x33/0x40
[ 2128.646157]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2128.647205] RIP: 0033:0x7fb64c457b19
[ 2128.648001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2128.651751] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2128.653303] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2128.654755] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2128.656214] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2128.657690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2128.659173] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2128.676508] FAULT_INJECTION: forcing a failure.
[ 2128.676508] name failslab, interval 1, probability 0, space 0, times 0
[ 2128.678903] CPU: 1 PID: 11455 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2128.680365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2128.682192] Call Trace:
[ 2128.682729]  dump_stack+0x107/0x167
[ 2128.683475]  should_fail.cold+0x5/0xa
[ 2128.684302]  should_failslab+0x5/0x20
[ 2128.685067]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2128.685976]  io_submit_sqes+0x6f76/0x85c0
[ 2128.686839]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2128.687842]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2128.688824]  ? lock_downgrade+0x6d0/0x6d0
[ 2128.689647]  ? find_held_lock+0x2c/0x110
[ 2128.690460]  ? io_submit_sqes+0x85c0/0x85c0
04:05:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2128.691348]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2128.692495]  ? wait_for_completion_io+0x270/0x270
[ 2128.693494]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2128.694428]  ? vfs_write+0x354/0xa70
[ 2128.695180]  ? fput_many+0x2f/0x1a0
[ 2128.695947]  ? ksys_write+0x1a9/0x260
[ 2128.696726]  ? __ia32_sys_read+0xb0/0xb0
[ 2128.697553]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2128.698591]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2128.699652]  do_syscall_64+0x33/0x40
[ 2128.700394]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
04:05:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x4}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2128.701433] RIP: 0033:0x7f1edfa23b19
[ 2128.702316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2128.706099] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2128.707682] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2128.709143] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2128.710600] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2128.712077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2128.713495] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2128.723721] FAULT_INJECTION: forcing a failure.
[ 2128.723721] name failslab, interval 1, probability 0, space 0, times 0
[ 2128.726030] CPU: 1 PID: 11463 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2128.727396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2128.729059] Call Trace:
[ 2128.729577]  dump_stack+0x107/0x167
[ 2128.730302]  should_fail.cold+0x5/0xa
[ 2128.731063]  should_failslab+0x5/0x20
[ 2128.731827]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2128.732834]  ? netlink_trim+0x1ee/0x250
[ 2128.733630]  pskb_expand_head+0x15a/0x1040
[ 2128.734487]  netlink_trim+0x1ee/0x250
[ 2128.735263]  netlink_broadcast_filtered+0x60/0xdc0
[ 2128.736256]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2128.737223]  ? rtmsg_ifinfo_build_skb+0xd1/0x1a0
[ 2128.738159]  nlmsg_notify+0x94/0x290
[ 2128.738901]  rtmsg_ifinfo+0xf0/0x120
[ 2128.739648]  dev_close_many+0x23f/0x460
[ 2128.740433]  ? __dev_close_many+0x2f0/0x2f0
[ 2128.741283]  ? lock_downgrade+0x6d0/0x6d0
[ 2128.742115]  unregister_netdevice_many+0x349/0x1490
[ 2128.743109]  ? __queue_work+0x681/0xf40
[ 2128.743905]  ? netdev_pick_tx+0xc70/0xc70
[ 2128.744732]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2128.745763]  ? queue_delayed_work_on+0xb4/0xe0
[ 2128.746680]  ? trace_hardirqs_on+0x5b/0x180
[ 2128.747539]  unregister_netdevice_queue+0x201/0x2c0
[ 2128.748548]  ? unregister_netdevice_many+0x1490/0x1490
[ 2128.749589]  ? linkwatch_fire_event+0x63/0x190
[ 2128.750503]  __tun_detach+0xf92/0x1280
[ 2128.751302]  tun_chr_close+0xc4/0x250
[ 2128.752069]  __fput+0x285/0x980
[ 2128.752725]  ? __tun_detach+0x1280/0x1280
[ 2128.753556]  task_work_run+0xe2/0x1a0
[ 2128.754327]  exit_to_user_mode_prepare+0x186/0x190
[ 2128.755317]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2128.756291]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2128.757328] RIP: 0033:0x7ff4e0665b19
[ 2128.758056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2128.761705] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2128.763248] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2128.764660] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2128.766064] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2128.767459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2128.768883] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
[ 2128.803073] device veth0_vlan entered promiscuous mode
[ 2128.838104] perf: interrupt took too long (7962 > 7956), lowering kernel.perf_event_max_sample_rate to 25000
04:05:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)="1f", 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:05:12 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x7}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:13 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:13 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 6)

04:05:13 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

[ 2129.073668] device veth0_vlan entered promiscuous mode
[ 2129.084592] device veth0_vlan entered promiscuous mode
[ 2129.133940] FAULT_INJECTION: forcing a failure.
[ 2129.133940] name failslab, interval 1, probability 0, space 0, times 0
[ 2129.137311] CPU: 0 PID: 11505 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2129.138756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2129.140493] Call Trace:
[ 2129.141050]  dump_stack+0x107/0x167
[ 2129.141807]  should_fail.cold+0x5/0xa
[ 2129.142612]  ? ___slab_alloc+0x360/0x700
[ 2129.143455]  ? create_object.isra.0+0x3a/0xa20
[ 2129.144458]  should_failslab+0x5/0x20
[ 2129.145256]  kmem_cache_alloc+0x5b/0x310
[ 2129.146119]  create_object.isra.0+0x3a/0xa20
[ 2129.147048]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2129.148135]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2129.149205]  ? netlink_trim+0x1ee/0x250
[ 2129.150055]  pskb_expand_head+0x15a/0x1040
[ 2129.150959]  netlink_trim+0x1ee/0x250
[ 2129.151774]  netlink_broadcast_filtered+0x60/0xdc0
[ 2129.152794]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2129.153778]  ? rtmsg_ifinfo_build_skb+0xd1/0x1a0
[ 2129.154760]  nlmsg_notify+0x94/0x290
[ 2129.155534]  rtmsg_ifinfo+0xf0/0x120
[ 2129.156321]  dev_close_many+0x23f/0x460
[ 2129.157144]  ? __dev_close_many+0x2f0/0x2f0
[ 2129.158035]  ? lock_chain_count+0x20/0x20
[ 2129.158885]  ? find_held_lock+0x2c/0x110
[ 2129.159743]  unregister_netdevice_many+0x349/0x1490
[ 2129.160786]  ? netdev_pick_tx+0xc70/0xc70
[ 2129.161646]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2129.162723]  ? queue_delayed_work_on+0xb4/0xe0
[ 2129.163673]  ? trace_hardirqs_on+0x5b/0x180
[ 2129.164559]  unregister_netdevice_queue+0x201/0x2c0
[ 2129.165587]  ? unregister_netdevice_many+0x1490/0x1490
[ 2129.166663]  ? linkwatch_fire_event+0x63/0x190
[ 2129.167609]  __tun_detach+0xf92/0x1280
[ 2129.168423]  tun_chr_close+0xc4/0x250
[ 2129.169206]  __fput+0x285/0x980
[ 2129.169885]  ? __tun_detach+0x1280/0x1280
[ 2129.170739]  task_work_run+0xe2/0x1a0
[ 2129.171524]  exit_to_user_mode_prepare+0x186/0x190
[ 2129.172538]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2129.173533]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2129.174586] RIP: 0033:0x7ff4e0665b19
[ 2129.175348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2129.179126] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2129.180681] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2129.182137] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2129.183589] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2129.185074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2129.186562] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:05:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x9}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2142.067638] FAULT_INJECTION: forcing a failure.
[ 2142.067638] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.069245] CPU: 1 PID: 11518 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2142.070045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.070987] Call Trace:
[ 2142.071300]  dump_stack+0x107/0x167
[ 2142.071726]  should_fail.cold+0x5/0xa
[ 2142.072181]  ? create_object.isra.0+0x3a/0xa20
[ 2142.072710]  should_failslab+0x5/0x20
[ 2142.073149]  kmem_cache_alloc+0x5b/0x310
[ 2142.073621]  create_object.isra.0+0x3a/0xa20
[ 2142.074125]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2142.074715]  kmem_cache_alloc+0x159/0x310
[ 2142.075198]  __d_alloc+0x2a/0x990
[ 2142.075607]  d_alloc_parallel+0x111/0x1bc0
[ 2142.076107]  ? __lock_acquire+0x1657/0x5b00
[ 2142.076606]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2142.077228]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2142.077697]  ? mark_lock+0xf5/0x2df0
[ 2142.078144]  ? lockdep_init_map_type+0x2c7/0x780
[ 2142.078681]  ? lockdep_init_map_type+0x2c7/0x780
[ 2142.079262]  __lookup_slow+0x193/0x490
[ 2142.079715]  ? lookup_open.isra.0+0x1270/0x1270
[ 2142.080296]  ? __d_lookup+0x3bf/0x760
[ 2142.080761]  ? d_lookup+0xcc/0x130
[ 2142.081189]  lookup_one_len+0x167/0x1a0
[ 2142.081669]  ? __lookup_slow+0x490/0x490
[ 2142.082163]  ? down_write_killable+0x180/0x180
[ 2142.082705]  ? do_raw_spin_unlock+0x4f/0x220
[ 2142.083232]  ? mntput+0xc/0x90
[ 2142.083618]  start_creating.part.0+0x10a/0x230
[ 2142.084181]  __debugfs_create_file+0xdb/0x530
[ 2142.084729]  do_blk_trace_setup+0x43c/0xc10
[ 2142.085246]  ? _copy_from_user+0xfb/0x1b0
[ 2142.085742]  __blk_trace_setup+0xca/0x180
[ 2142.086240]  ? do_blk_trace_setup+0xc10/0xc10
[ 2142.086797]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2142.087431]  blk_trace_setup+0x43/0x60
[ 2142.087906]  sg_ioctl_common+0x634/0x2570
[ 2142.088405]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2142.089024]  ? do_vfs_ioctl+0x283/0x10d0
[ 2142.089501]  ? sg_write+0x120/0x120
[ 2142.089938]  ? generic_block_fiemap+0x60/0x60
[ 2142.090474]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2142.091065]  ? selinux_file_ioctl+0xb6/0x270
[ 2142.091584]  ? sg_compat_ioctl+0x120/0x120
[ 2142.092095]  sg_ioctl+0x8f/0x120
[ 2142.092503]  __x64_sys_ioctl+0x19a/0x210
[ 2142.092970]  do_syscall_64+0x33/0x40
[ 2142.093419]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.093995] RIP: 0033:0x7fb64c457b19
[ 2142.094446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.096546] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2142.097449] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2142.098252] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2142.099097] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.099898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2142.100740] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:05:26 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 7)

04:05:26 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:05:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:26 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:05:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x3}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:26 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 23)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2142.124466] FAULT_INJECTION: forcing a failure.
[ 2142.124466] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.126236] CPU: 1 PID: 11527 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2142.127043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.128010] Call Trace:
[ 2142.128319]  dump_stack+0x107/0x167
[ 2142.128756]  should_fail.cold+0x5/0xa
[ 2142.129197]  ? create_object.isra.0+0x3a/0xa20
[ 2142.129740]  should_failslab+0x5/0x20
[ 2142.130192]  kmem_cache_alloc+0x5b/0x310
[ 2142.130217]  create_object.isra.0+0x3a/0xa20
[ 2142.131589]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2142.132215]  kmem_cache_alloc_bulk+0x168/0x320
[ 2142.132767]  io_submit_sqes+0x6f76/0x85c0
[ 2142.133291]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2142.133876]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2142.134463]  ? lock_downgrade+0x6d0/0x6d0
[ 2142.134472]  ? find_held_lock+0x2c/0x110
[ 2142.134486]  ? io_submit_sqes+0x85c0/0x85c0
[ 2142.134502]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2142.134516]  ? wait_for_completion_io+0x270/0x270
[ 2142.134531]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2142.134540]  ? vfs_write+0x354/0xa70
[ 2142.134553]  ? fput_many+0x2f/0x1a0
[ 2142.134572]  ? ksys_write+0x1a9/0x260
[ 2142.139330]  ? __ia32_sys_read+0xb0/0xb0
[ 2142.139812]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2142.140437]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2142.141041]  do_syscall_64+0x33/0x40
[ 2142.141483]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.142094] RIP: 0033:0x7f1edfa23b19
[ 2142.142532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.144705] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2142.145597] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2142.146442] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2142.147280] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.148118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2142.148948] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2142.162438] device veth0_vlan entered promiscuous mode
04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0xf}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2142.168290] device veth0_vlan entered promiscuous mode
04:05:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2142.212761] FAULT_INJECTION: forcing a failure.
[ 2142.212761] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.215497] CPU: 0 PID: 11528 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2142.216930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.218644] Call Trace:
[ 2142.219205]  dump_stack+0x107/0x167
[ 2142.219989]  should_fail.cold+0x5/0xa
[ 2142.220786]  ? __alloc_skb+0x6d/0x5b0
[ 2142.221584]  should_failslab+0x5/0x20
[ 2142.222376]  kmem_cache_alloc_node+0x55/0x330
[ 2142.223325]  __alloc_skb+0x6d/0x5b0
[ 2142.224102]  inet6_rt_notify+0xed/0x2a0
[ 2142.224931]  fib6_del+0xf4c/0x1540
[ 2142.225685]  ? fib6_locate+0x660/0x660
[ 2142.226490]  ? fib6_ifdown+0xc5/0x8f0
[ 2142.227285]  fib6_clean_node+0x39e/0x570
[ 2142.228144]  ? fib6_del+0x1540/0x1540
[ 2142.228939]  ? fib6_clean_tree+0x14c/0x260
[ 2142.229856]  fib6_walk_continue+0x35c/0x710
[ 2142.230778]  ? trace_hardirqs_on+0x5b/0x180
[ 2142.231682]  fib6_clean_tree+0x154/0x260
[ 2142.232537]  ? fib6_ifup+0x260/0x260
[ 2142.233315]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2142.234305]  ? fib6_del+0x1540/0x1540
[ 2142.235101]  ? fib6_ifup+0x260/0x260
[ 2142.235892]  ? rwlock_bug.part.0+0x90/0x90
[ 2142.236784]  ? lock_chain_count+0x20/0x20
[ 2142.237671]  ? fib6_ifup+0x260/0x260
[ 2142.238452]  __fib6_clean_all+0xf0/0x2a0
[ 2142.239295]  rt6_disable_ip+0x4d5/0x5b0
[ 2142.240150]  ? rt6_sync_down_dev+0x150/0x150
[ 2142.241091]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2142.242101]  ? addrconf_dad_run+0x180/0x180
[ 2142.243039]  addrconf_notify+0x159/0x2410
[ 2142.243925]  ? tun_device_event+0x71/0x1160
[ 2142.244843]  ? mark_held_locks+0x9e/0xe0
[ 2142.245691]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2142.246785]  ? inet6_ifinfo_notify+0x150/0x150
[ 2142.247730]  ? failover_register+0x530/0x530
[ 2142.248695]  raw_notifier_call_chain+0xb3/0x110
[ 2142.249687]  call_netdevice_notifiers_info+0xb5/0x130
[ 2142.250764]  dev_close_many+0x25b/0x460
[ 2142.251610]  ? __dev_close_many+0x2f0/0x2f0
[ 2142.252517]  ? __mod_timer+0x7fb/0xd10
[ 2142.253368]  unregister_netdevice_many+0x349/0x1490
[ 2142.254428]  ? netdev_pick_tx+0xc70/0xc70
[ 2142.255296]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2142.256398]  ? queue_delayed_work_on+0xb4/0xe0
[ 2142.257360]  ? trace_hardirqs_on+0x5b/0x180
[ 2142.258271]  unregister_netdevice_queue+0x201/0x2c0
[ 2142.259308]  ? unregister_netdevice_many+0x1490/0x1490
[ 2142.260410]  ? linkwatch_fire_event+0x63/0x190
[ 2142.261363]  __tun_detach+0xf92/0x1280
[ 2142.262202]  tun_chr_close+0xc4/0x250
[ 2142.263001]  __fput+0x285/0x980
[ 2142.263684]  ? __tun_detach+0x1280/0x1280
[ 2142.264571]  task_work_run+0xe2/0x1a0
[ 2142.265375]  exit_to_user_mode_prepare+0x186/0x190
[ 2142.266418]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2142.267429]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.268526] RIP: 0033:0x7ff4e0665b19
[ 2142.269302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.273132] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2142.274707] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2142.276208] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2142.277682] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.279172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2142.280682] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:05:26 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:05:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x4}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2142.337809] FAULT_INJECTION: forcing a failure.
[ 2142.337809] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.339180] CPU: 1 PID: 11548 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2142.339934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.340837] Call Trace:
[ 2142.341137]  dump_stack+0x107/0x167
[ 2142.341540]  should_fail.cold+0x5/0xa
[ 2142.341957]  ? create_object.isra.0+0x3a/0xa20
[ 2142.342464]  should_failslab+0x5/0x20
[ 2142.342871]  kmem_cache_alloc+0x5b/0x310
[ 2142.343315]  ? mark_held_locks+0x9e/0xe0
[ 2142.343752]  create_object.isra.0+0x3a/0xa20
[ 2142.344236]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2142.344784]  kmem_cache_alloc_bulk+0x168/0x320
[ 2142.345290]  io_submit_sqes+0x6f76/0x85c0
[ 2142.345750]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2142.346295]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2142.346822]  ? lock_downgrade+0x6d0/0x6d0
[ 2142.347282]  ? find_held_lock+0x2c/0x110
[ 2142.347730]  ? io_submit_sqes+0x85c0/0x85c0
[ 2142.348240]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2142.348783]  ? wait_for_completion_io+0x270/0x270
[ 2142.349325]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2142.349828]  ? vfs_write+0x354/0xa70
[ 2142.350248]  ? fput_many+0x2f/0x1a0
[ 2142.350637]  ? ksys_write+0x1a9/0x260
[ 2142.351056]  ? __ia32_sys_read+0xb0/0xb0
[ 2142.351507]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2142.352096]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2142.352668]  do_syscall_64+0x33/0x40
[ 2142.353084]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.353651] RIP: 0033:0x7f1edfa23b19
[ 2142.354065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.356110] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2142.356954] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2142.357749] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2142.358536] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.359335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2142.360131] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:26 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:05:26 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 24)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:05:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:26 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 8)

04:05:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x5}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x3}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x8, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2142.502500] FAULT_INJECTION: forcing a failure.
[ 2142.502500] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.505565] CPU: 0 PID: 11569 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2142.507013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.508728] Call Trace:
[ 2142.509276]  dump_stack+0x107/0x167
[ 2142.510036]  should_fail.cold+0x5/0xa
[ 2142.510957]  ? alloc_inode+0x171/0x240
[ 2142.510981]  should_failslab+0x5/0x20
[ 2142.511000]  kmem_cache_alloc+0x5b/0x310
[ 2142.511020]  ? __lookup_slow+0x490/0x490
[ 2142.511042]  alloc_inode+0x171/0x240
[ 2142.511059]  new_inode+0x23/0x250
[ 2142.511084]  debugfs_get_inode+0x1a/0x130
[ 2142.511102]  __debugfs_create_file+0x14e/0x530
[ 2142.511129]  do_blk_trace_setup+0x43c/0xc10
[ 2142.511150]  ? _copy_from_user+0xfb/0x1b0
[ 2142.511170]  __blk_trace_setup+0xca/0x180
[ 2142.511188]  ? do_blk_trace_setup+0xc10/0xc10
[ 2142.511224]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2142.511252]  blk_trace_setup+0x43/0x60
[ 2142.511275]  sg_ioctl_common+0x634/0x2570
[ 2142.511296]  ? __sanitizer_cov_trace_switch+0x45/0x80
04:05:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x4}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2142.511314]  ? do_vfs_ioctl+0x283/0x10d0
[ 2142.511331]  ? sg_write+0x120/0x120
[ 2142.511347]  ? generic_block_fiemap+0x60/0x60
[ 2142.511370]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2142.511405]  ? selinux_file_ioctl+0xb6/0x270
[ 2142.511421]  ? sg_compat_ioctl+0x120/0x120
[ 2142.511439]  sg_ioctl+0x8f/0x120
[ 2142.511460]  __x64_sys_ioctl+0x19a/0x210
[ 2142.511484]  do_syscall_64+0x33/0x40
[ 2142.511501]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.511514] RIP: 0033:0x7fb64c457b19
[ 2142.511532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.511542] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2142.511563] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2142.511574] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2142.511585] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.511595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2142.511606] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2142.511919] debugfs: out of free dentries, can not create file 'msg'
[ 2142.527347] device veth0_vlan entered promiscuous mode
[ 2142.590571] device veth0_vlan entered promiscuous mode
[ 2142.603285] FAULT_INJECTION: forcing a failure.
[ 2142.603285] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.603334] CPU: 1 PID: 11584 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2142.603341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2142.603344] Call Trace:
[ 2142.603362]  dump_stack+0x107/0x167
[ 2142.603377]  should_fail.cold+0x5/0xa
[ 2142.603389]  ? rt6_flush_exceptions+0x6b/0x80
[ 2142.603402]  ? create_object.isra.0+0x3a/0xa20
[ 2142.603415]  should_failslab+0x5/0x20
[ 2142.603426]  kmem_cache_alloc+0x5b/0x310
[ 2142.603437]  ? lock_acquire+0x197/0x470
[ 2142.603450]  create_object.isra.0+0x3a/0xa20
[ 2142.603461]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2142.603475]  kmem_cache_alloc_node+0x169/0x330
[ 2142.603491]  __alloc_skb+0x6d/0x5b0
[ 2142.603507]  inet6_rt_notify+0xed/0x2a0
[ 2142.603519]  fib6_del+0xf4c/0x1540
[ 2142.603539]  ? fib6_locate+0x660/0x660
[ 2142.603553]  ? fib6_ifdown+0xc5/0x8f0
[ 2142.603569]  fib6_clean_node+0x39e/0x570
[ 2142.603581]  ? fib6_del+0x1540/0x1540
[ 2142.603592]  ? fib6_clean_tree+0x14c/0x260
[ 2142.603612]  fib6_walk_continue+0x35c/0x710
[ 2142.603623]  ? trace_hardirqs_on+0x5b/0x180
[ 2142.603634]  fib6_clean_tree+0x154/0x260
[ 2142.603642]  ? fib6_ifup+0x260/0x260
[ 2142.603651]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2142.603666]  ? fib6_del+0x1540/0x1540
[ 2142.603676]  ? fib6_ifup+0x260/0x260
[ 2142.603691]  ? rwlock_bug.part.0+0x90/0x90
[ 2142.603699]  ? lock_chain_count+0x20/0x20
[ 2142.603713]  ? fib6_ifup+0x260/0x260
[ 2142.603722]  __fib6_clean_all+0xf0/0x2a0
[ 2142.603735]  rt6_disable_ip+0x4d5/0x5b0
[ 2142.603750]  ? rt6_sync_down_dev+0x150/0x150
[ 2142.603785]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2142.603796]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2142.603809]  ? addrconf_dad_run+0x180/0x180
[ 2142.603828]  addrconf_notify+0x159/0x2410
[ 2142.603841]  ? tun_device_event+0x71/0x1160
[ 2142.603850]  ? mark_held_locks+0x9e/0xe0
[ 2142.603862]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2142.603873]  ? inet6_ifinfo_notify+0x150/0x150
[ 2142.603883]  ? failover_register+0x530/0x530
[ 2142.603901]  raw_notifier_call_chain+0xb3/0x110
[ 2142.603915]  call_netdevice_notifiers_info+0xb5/0x130
[ 2142.603926]  dev_close_many+0x25b/0x460
[ 2142.603939]  ? __dev_close_many+0x2f0/0x2f0
[ 2142.603953]  ? lock_chain_count+0x20/0x20
[ 2142.603970]  unregister_netdevice_many+0x349/0x1490
[ 2142.603984]  ? netdev_pick_tx+0xc70/0xc70
[ 2142.603999]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2142.604008]  ? queue_delayed_work_on+0xb4/0xe0
[ 2142.604016]  ? trace_hardirqs_on+0x5b/0x180
[ 2142.604029]  unregister_netdevice_queue+0x201/0x2c0
[ 2142.604041]  ? unregister_netdevice_many+0x1490/0x1490
[ 2142.604053]  ? linkwatch_fire_event+0x63/0x190
[ 2142.604066]  __tun_detach+0xf92/0x1280
[ 2142.604083]  tun_chr_close+0xc4/0x250
[ 2142.604094]  __fput+0x285/0x980
[ 2142.604103]  ? __tun_detach+0x1280/0x1280
[ 2142.604117]  task_work_run+0xe2/0x1a0
[ 2142.604132]  exit_to_user_mode_prepare+0x186/0x190
[ 2142.604144]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2142.604154]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2142.604161] RIP: 0033:0x7ff4e0665b19
[ 2142.604172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2142.604178] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2142.604190] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2142.604195] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2142.604201] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.604207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2142.604213] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
04:05:39 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:05:39 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x300, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:05:39 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:05:39 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 9)

04:05:39 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:39 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 25)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:05:39 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x6}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:39 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x5}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2154.974777] FAULT_INJECTION: forcing a failure.
[ 2154.974777] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.977499] CPU: 1 PID: 11605 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2154.978918] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2154.980665] Call Trace:
[ 2154.981220]  dump_stack+0x107/0x167
[ 2154.981988]  should_fail.cold+0x5/0xa
[ 2154.982781]  ? create_object.isra.0+0x3a/0xa20
[ 2154.983733]  should_failslab+0x5/0x20
[ 2154.984521]  kmem_cache_alloc+0x5b/0x310
[ 2154.985348]  create_object.isra.0+0x3a/0xa20
[ 2154.986241]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.987285]  kmem_cache_alloc+0x159/0x310
[ 2154.988147]  alloc_inode+0x171/0x240
[ 2154.988908]  new_inode+0x23/0x250
[ 2154.989627]  debugfs_get_inode+0x1a/0x130
[ 2154.990468]  __debugfs_create_file+0x14e/0x530
[ 2154.991410]  do_blk_trace_setup+0x43c/0xc10
[ 2154.992294]  ? _copy_from_user+0xfb/0x1b0
[ 2154.993133]  __blk_trace_setup+0xca/0x180
[ 2154.993973]  ? do_blk_trace_setup+0xc10/0xc10
[ 2154.994897]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2154.995981]  blk_trace_setup+0x43/0x60
[ 2154.996775]  sg_ioctl_common+0x634/0x2570
[ 2154.997620]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2154.998664]  ? do_vfs_ioctl+0x283/0x10d0
[ 2154.999484]  ? sg_write+0x120/0x120
[ 2155.000229]  ? generic_block_fiemap+0x60/0x60
[ 2155.001141]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2155.002134]  ? selinux_file_ioctl+0xb6/0x270
[ 2155.003020]  ? sg_compat_ioctl+0x120/0x120
[ 2155.003876]  sg_ioctl+0x8f/0x120
[ 2155.004581]  __x64_sys_ioctl+0x19a/0x210
[ 2155.005411]  do_syscall_64+0x33/0x40
[ 2155.006188]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2155.007225] RIP: 0033:0x7fb64c457b19
[ 2155.007989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.011691] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2155.013233] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2155.014673] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2155.016132] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2155.017570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.019008] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2155.028459] device veth0_vlan entered promiscuous mode
[ 2155.041710] device veth0_vlan entered promiscuous mode
[ 2155.051894] FAULT_INJECTION: forcing a failure.
[ 2155.051894] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.054779] CPU: 0 PID: 11600 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2155.056375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2155.058273] Call Trace:
[ 2155.058886]  dump_stack+0x107/0x167
[ 2155.059728]  should_fail.cold+0x5/0xa
[ 2155.060621]  should_failslab+0x5/0x20
[ 2155.061493]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2155.062616]  ? inet6_rt_notify+0xed/0x2a0
[ 2155.063566]  __alloc_skb+0xb1/0x5b0
[ 2155.064417]  inet6_rt_notify+0xed/0x2a0
[ 2155.065324]  fib6_del+0xf4c/0x1540
[ 2155.066149]  ? fib6_locate+0x660/0x660
[ 2155.067032]  ? fib6_ifdown+0xc5/0x8f0
[ 2155.067909]  fib6_clean_node+0x39e/0x570
[ 2155.068863]  ? fib6_del+0x1540/0x1540
[ 2155.069725]  ? fib6_clean_tree+0x14c/0x260
[ 2155.070694]  fib6_walk_continue+0x35c/0x710
[ 2155.071666]  ? trace_hardirqs_on+0x5b/0x180
[ 2155.072662]  fib6_clean_tree+0x154/0x260
[ 2155.072719] FAULT_INJECTION: forcing a failure.
[ 2155.072719] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.073572]  ? fib6_ifup+0x260/0x260
[ 2155.073592]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2155.073616]  ? fib6_del+0x1540/0x1540
[ 2155.073639]  ? fib6_ifup+0x260/0x260
[ 2155.073661]  ? rwlock_bug.part.0+0x90/0x90
[ 2155.073679]  ? lock_chain_count+0x20/0x20
[ 2155.073707]  ? fib6_ifup+0x260/0x260
[ 2155.082192]  __fib6_clean_all+0xf0/0x2a0
[ 2155.083109]  rt6_disable_ip+0x4d5/0x5b0
[ 2155.084028]  ? rt6_sync_down_dev+0x150/0x150
[ 2155.085030]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2155.086116]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2155.087327]  ? addrconf_dad_run+0x180/0x180
[ 2155.088336]  addrconf_notify+0x159/0x2410
[ 2155.089289]  ? tun_device_event+0x71/0x1160
[ 2155.090265]  ? mark_held_locks+0x9e/0xe0
[ 2155.091190]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2155.092380]  ? inet6_ifinfo_notify+0x150/0x150
[ 2155.093422]  ? failover_register+0x530/0x530
[ 2155.094436]  raw_notifier_call_chain+0xb3/0x110
[ 2155.095509]  call_netdevice_notifiers_info+0xb5/0x130
[ 2155.096687]  dev_close_many+0x25b/0x460
[ 2155.097601]  ? __dev_close_many+0x2f0/0x2f0
[ 2155.098594]  ? lock_downgrade+0x6d0/0x6d0
[ 2155.099554]  unregister_netdevice_many+0x349/0x1490
[ 2155.100699]  ? __queue_work+0x681/0xf40
[ 2155.101599]  ? netdev_pick_tx+0xc70/0xc70
[ 2155.102541]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2155.103721]  ? queue_delayed_work_on+0xb4/0xe0
[ 2155.104763]  ? trace_hardirqs_on+0x5b/0x180
[ 2155.105742]  unregister_netdevice_queue+0x201/0x2c0
[ 2155.106882]  ? unregister_netdevice_many+0x1490/0x1490
[ 2155.108080]  ? linkwatch_fire_event+0x63/0x190
[ 2155.109132]  __tun_detach+0xf92/0x1280
[ 2155.110024]  tun_chr_close+0xc4/0x250
[ 2155.110895]  __fput+0x285/0x980
[ 2155.111643]  ? __tun_detach+0x1280/0x1280
[ 2155.112625]  task_work_run+0xe2/0x1a0
[ 2155.113498]  exit_to_user_mode_prepare+0x186/0x190
[ 2155.114615]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2155.115704]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2155.116883] RIP: 0033:0x7ff4e0665b19
[ 2155.117734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.121943] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2155.123664] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2155.125286] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2155.126887] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2155.128513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2155.130121] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
[ 2155.131763] CPU: 1 PID: 11609 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2155.133190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2155.134908] Call Trace:
[ 2155.135453]  dump_stack+0x107/0x167
[ 2155.136216]  should_fail.cold+0x5/0xa
[ 2155.137000]  ? create_object.isra.0+0x3a/0xa20
[ 2155.137922]  should_failslab+0x5/0x20
[ 2155.138695]  kmem_cache_alloc+0x5b/0x310
[ 2155.139523]  ? mark_held_locks+0x9e/0xe0
[ 2155.140365]  create_object.isra.0+0x3a/0xa20
[ 2155.141253]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.142287]  kmem_cache_alloc_bulk+0x168/0x320
[ 2155.143219]  io_submit_sqes+0x6f76/0x85c0
[ 2155.144100]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2155.145104]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2155.146084]  ? lock_downgrade+0x6d0/0x6d0
[ 2155.146917]  ? find_held_lock+0x2c/0x110
[ 2155.147744]  ? io_submit_sqes+0x85c0/0x85c0
[ 2155.148635]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2155.149617]  ? wait_for_completion_io+0x270/0x270
[ 2155.150602]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2155.151553]  ? vfs_write+0x354/0xa70
[ 2155.152326]  ? fput_many+0x2f/0x1a0
[ 2155.153065]  ? ksys_write+0x1a9/0x260
[ 2155.153834]  ? __ia32_sys_read+0xb0/0xb0
[ 2155.154661]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2155.155725]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2155.156817]  do_syscall_64+0x33/0x40
[ 2155.157570]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2155.158612] RIP: 0033:0x7f1edfa23b19
[ 2155.159363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.163086] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2155.164653] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2155.166086] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2155.167517] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2155.168957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.170387] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:05:52 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:05:52 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:05:52 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:05:52 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 26)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:05:52 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x80000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:05:52 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x6}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:52 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x7}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:52 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 10)

[ 2168.524653] FAULT_INJECTION: forcing a failure.
[ 2168.524653] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.527454] CPU: 0 PID: 11641 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2168.528959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.530753] Call Trace:
[ 2168.530779]  dump_stack+0x107/0x167
[ 2168.530804]  should_fail.cold+0x5/0xa
[ 2168.530831]  ? security_inode_alloc+0x34/0x160
[ 2168.530854]  should_failslab+0x5/0x20
[ 2168.530874]  kmem_cache_alloc+0x5b/0x310
[ 2168.530903]  security_inode_alloc+0x34/0x160
[ 2168.530925]  inode_init_always+0xa4e/0xd10
[ 2168.530947]  alloc_inode+0x84/0x240
[ 2168.530965]  new_inode+0x23/0x250
[ 2168.530989]  debugfs_get_inode+0x1a/0x130
[ 2168.531010]  __debugfs_create_file+0x14e/0x530
[ 2168.531037]  do_blk_trace_setup+0x43c/0xc10
04:05:52 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x7}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2168.531059]  ? _copy_from_user+0xfb/0x1b0
[ 2168.531081]  __blk_trace_setup+0xca/0x180
[ 2168.531101]  ? do_blk_trace_setup+0xc10/0xc10
[ 2168.531137]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
04:05:52 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x8}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:05:52 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x1000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2168.531167]  blk_trace_setup+0x43/0x60
[ 2168.531191]  sg_ioctl_common+0x634/0x2570
04:05:52 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2168.531215]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2168.531235]  ? do_vfs_ioctl+0x283/0x10d0
[ 2168.531252]  ? sg_write+0x120/0x120
[ 2168.531270]  ? generic_block_fiemap+0x60/0x60
[ 2168.531295]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2168.531334]  ? selinux_file_ioctl+0xb6/0x270
[ 2168.531351]  ? sg_compat_ioctl+0x120/0x120
[ 2168.531372]  sg_ioctl+0x8f/0x120
04:05:52 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x8}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2168.531395]  __x64_sys_ioctl+0x19a/0x210
04:05:52 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 27)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2168.531420]  do_syscall_64+0x33/0x40
[ 2168.531438]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2168.531452] RIP: 0033:0x7fb64c457b19
04:05:52 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x9}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2168.531472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
04:05:52 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x2000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2168.531483] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2168.531504] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2168.531516] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2168.531528] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.531539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2168.531550] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2168.533495] debugfs: out of free dentries, can not create file 'msg'
[ 2168.566839] FAULT_INJECTION: forcing a failure.
[ 2168.566839] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.566858] CPU: 0 PID: 11640 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2168.566868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.566873] Call Trace:
[ 2168.566891]  dump_stack+0x107/0x167
[ 2168.566919]  should_fail.cold+0x5/0xa
[ 2168.566938]  ? create_object.isra.0+0x3a/0xa20
[ 2168.566958]  should_failslab+0x5/0x20
[ 2168.566974]  kmem_cache_alloc+0x5b/0x310
[ 2168.566992]  ? mark_held_locks+0x9e/0xe0
[ 2168.567013]  create_object.isra.0+0x3a/0xa20
[ 2168.567032]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2168.567056]  kmem_cache_alloc_bulk+0x168/0x320
[ 2168.567080]  io_submit_sqes+0x6f76/0x85c0
[ 2168.567126]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2168.567143]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2168.567165]  ? lock_downgrade+0x6d0/0x6d0
[ 2168.567180]  ? find_held_lock+0x2c/0x110
[ 2168.567203]  ? io_submit_sqes+0x85c0/0x85c0
[ 2168.567228]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2168.567251]  ? wait_for_completion_io+0x270/0x270
[ 2168.567272]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2168.567288]  ? vfs_write+0x354/0xa70
[ 2168.567310]  ? fput_many+0x2f/0x1a0
[ 2168.567329]  ? ksys_write+0x1a9/0x260
[ 2168.567347]  ? __ia32_sys_read+0xb0/0xb0
[ 2168.567371]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2168.567399]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2168.567422]  do_syscall_64+0x33/0x40
[ 2168.567438]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2168.567450] RIP: 0033:0x7f1edfa23b19
[ 2168.567469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2168.567479] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2168.567498] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2168.567509] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2168.567520] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.567530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2168.567541] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2168.587433] device veth0_vlan entered promiscuous mode
[ 2168.689935] device veth0_vlan entered promiscuous mode
[ 2168.718475] FAULT_INJECTION: forcing a failure.
[ 2168.718475] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.718496] CPU: 1 PID: 11648 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2168.718506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.718512] Call Trace:
[ 2168.718536]  dump_stack+0x107/0x167
[ 2168.718565]  should_fail.cold+0x5/0xa
[ 2168.718587]  ? create_object.isra.0+0x3a/0xa20
[ 2168.718607]  should_failslab+0x5/0x20
[ 2168.718624]  kmem_cache_alloc+0x5b/0x310
[ 2168.718647]  create_object.isra.0+0x3a/0xa20
[ 2168.718664]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2168.718688]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2168.718707]  ? inet6_rt_notify+0xed/0x2a0
[ 2168.718731]  __alloc_skb+0xb1/0x5b0
[ 2168.718754]  inet6_rt_notify+0xed/0x2a0
[ 2168.718774]  fib6_del+0xf4c/0x1540
[ 2168.718803]  ? fib6_locate+0x660/0x660
[ 2168.718825]  ? fib6_ifdown+0xc5/0x8f0
[ 2168.718849]  fib6_clean_node+0x39e/0x570
[ 2168.718868]  ? fib6_del+0x1540/0x1540
[ 2168.718885]  ? fib6_clean_tree+0x14c/0x260
[ 2168.718914]  fib6_walk_continue+0x35c/0x710
[ 2168.718931]  ? trace_hardirqs_on+0x5b/0x180
[ 2168.718949]  fib6_clean_tree+0x154/0x260
[ 2168.718964]  ? fib6_ifup+0x260/0x260
[ 2168.718980]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2168.719002]  ? fib6_del+0x1540/0x1540
[ 2168.719018]  ? fib6_ifup+0x260/0x260
[ 2168.719038]  ? rwlock_bug.part.0+0x90/0x90
[ 2168.719053]  ? lock_chain_count+0x20/0x20
[ 2168.719083]  ? fib6_ifup+0x260/0x260
[ 2168.719098]  __fib6_clean_all+0xf0/0x2a0
[ 2168.719125]  rt6_disable_ip+0x4d5/0x5b0
[ 2168.719151]  ? rt6_sync_down_dev+0x150/0x150
[ 2168.719179]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2168.719199]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2168.719221]  ? addrconf_dad_run+0x180/0x180
[ 2168.719252]  addrconf_notify+0x159/0x2410
[ 2168.719272]  ? tun_device_event+0x71/0x1160
[ 2168.719288]  ? mark_held_locks+0x9e/0xe0
[ 2168.719306]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2168.719325]  ? inet6_ifinfo_notify+0x150/0x150
[ 2168.719341]  ? failover_register+0x530/0x530
[ 2168.719370]  raw_notifier_call_chain+0xb3/0x110
[ 2168.719393]  call_netdevice_notifiers_info+0xb5/0x130
[ 2168.719411]  dev_close_many+0x25b/0x460
[ 2168.719431]  ? __dev_close_many+0x2f0/0x2f0
[ 2168.719445]  ? __mod_timer+0x7fb/0xd10
[ 2168.719475]  unregister_netdevice_many+0x349/0x1490
[ 2168.719500]  ? netdev_pick_tx+0xc70/0xc70
[ 2168.719523]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2168.719539]  ? queue_delayed_work_on+0xb4/0xe0
[ 2168.719551]  ? trace_hardirqs_on+0x5b/0x180
[ 2168.719574]  unregister_netdevice_queue+0x201/0x2c0
[ 2168.719593]  ? unregister_netdevice_many+0x1490/0x1490
[ 2168.719613]  ? linkwatch_fire_event+0x63/0x190
[ 2168.719635]  __tun_detach+0xf92/0x1280
[ 2168.719663]  tun_chr_close+0xc4/0x250
[ 2168.719681]  __fput+0x285/0x980
[ 2168.719697]  ? __tun_detach+0x1280/0x1280
[ 2168.719720]  task_work_run+0xe2/0x1a0
[ 2168.719745]  exit_to_user_mode_prepare+0x186/0x190
[ 2168.719764]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2168.719781]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2168.719792] RIP: 0033:0x7ff4e0665b19
[ 2168.719810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2168.719820] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2168.719839] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2168.719849] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2168.719859] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.719868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2168.719878] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2168.815924] FAULT_INJECTION: forcing a failure.
[ 2168.815924] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.816167] CPU: 0 PID: 11670 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2168.816178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2168.816184] Call Trace:
[ 2168.816210]  dump_stack+0x107/0x167
[ 2168.816234]  should_fail.cold+0x5/0xa
[ 2168.816256]  ? create_object.isra.0+0x3a/0xa20
[ 2168.816278]  should_failslab+0x5/0x20
[ 2168.816297]  kmem_cache_alloc+0x5b/0x310
[ 2168.816322]  create_object.isra.0+0x3a/0xa20
[ 2168.816342]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2168.816366]  kmem_cache_alloc+0x159/0x310
[ 2168.816395]  security_inode_alloc+0x34/0x160
[ 2168.816415]  inode_init_always+0xa4e/0xd10
[ 2168.816436]  alloc_inode+0x84/0x240
[ 2168.816453]  new_inode+0x23/0x250
[ 2168.816475]  debugfs_get_inode+0x1a/0x130
[ 2168.816495]  __debugfs_create_file+0x14e/0x530
[ 2168.816522]  do_blk_trace_setup+0x43c/0xc10
[ 2168.816542]  ? _copy_from_user+0xfb/0x1b0
[ 2168.816563]  __blk_trace_setup+0xca/0x180
[ 2168.816582]  ? do_blk_trace_setup+0xc10/0xc10
[ 2168.816615]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2168.816643]  blk_trace_setup+0x43/0x60
[ 2168.816666]  sg_ioctl_common+0x634/0x2570
[ 2168.816689]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2168.816708]  ? do_vfs_ioctl+0x283/0x10d0
[ 2168.816724]  ? sg_write+0x120/0x120
[ 2168.816743]  ? generic_block_fiemap+0x60/0x60
[ 2168.816766]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2168.816802]  ? selinux_file_ioctl+0xb6/0x270
[ 2168.816819]  ? sg_compat_ioctl+0x120/0x120
[ 2168.816838]  sg_ioctl+0x8f/0x120
[ 2168.816860]  __x64_sys_ioctl+0x19a/0x210
[ 2168.816884]  do_syscall_64+0x33/0x40
[ 2168.816902]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2168.816915] RIP: 0033:0x7fb64c457b19
[ 2168.816935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2168.816946] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2168.816968] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2168.816979] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2168.816990] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2168.817001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2168.817013] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:06:07 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 11)

04:06:07 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x9}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:07 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 28)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:07 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:07 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:06:07 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:06:07 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x3000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:07 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2183.387793] FAULT_INJECTION: forcing a failure.
[ 2183.387793] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2183.390827] CPU: 0 PID: 11697 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2183.390839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2183.390845] Call Trace:
[ 2183.390869]  dump_stack+0x107/0x167
[ 2183.390895]  should_fail.cold+0x5/0xa
[ 2183.390926]  __alloc_pages_nodemask+0x182/0x600
[ 2183.390946]  ? lock_acquire+0x197/0x470
[ 2183.390965]  ? lockref_get+0x11/0x50
[ 2183.390985]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2183.391015]  ? lock_downgrade+0x6d0/0x6d0
[ 2183.400891]  ? do_raw_spin_lock+0x121/0x260
[ 2183.401823]  ? rwlock_bug.part.0+0x90/0x90
[ 2183.402728]  alloc_pages_current+0x187/0x280
[ 2183.403670]  __get_free_pages+0xc/0xa0
[ 2183.404528]  inode_doinit_with_dentry+0x8f1/0x1240
[ 2183.405581]  ? retrigger_next_event+0x167/0x1f0
[ 2183.405913] device veth0_vlan entered promiscuous mode
[ 2183.406565]  ? hrtimer_init+0x20/0x170
[ 2183.406589]  ? selinux_file_lock+0x280/0x280
[ 2183.409316]  ? current_time+0x1e6/0x2c0
[ 2183.410168]  ? igrab+0xc0/0xc0
[ 2183.410858]  selinux_d_instantiate+0x23/0x30
[ 2183.411797]  security_d_instantiate+0x56/0xe0
[ 2183.412765]  d_instantiate+0x5a/0x90
[ 2183.413570]  __debugfs_create_file+0x246/0x530
[ 2183.414546]  do_blk_trace_setup+0x43c/0xc10
[ 2183.415469]  ? _copy_from_user+0xfb/0x1b0
[ 2183.416314] device veth0_vlan entered promiscuous mode
[ 2183.416381]  __blk_trace_setup+0xca/0x180
[ 2183.418208]  ? do_blk_trace_setup+0xc10/0xc10
[ 2183.419181]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2183.420280]  blk_trace_setup+0x43/0x60
[ 2183.421289]  sg_ioctl_common+0x634/0x2570
[ 2183.422191]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2183.423358]  ? do_vfs_ioctl+0x283/0x10d0
[ 2183.424207]  ? sg_write+0x120/0x120
[ 2183.424978]  ? generic_block_fiemap+0x60/0x60
[ 2183.425913]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2183.426924]  ? selinux_file_ioctl+0xb6/0x270
[ 2183.427849]  ? sg_compat_ioctl+0x120/0x120
[ 2183.428724]  sg_ioctl+0x8f/0x120
[ 2183.429447]  __x64_sys_ioctl+0x19a/0x210
[ 2183.430285]  do_syscall_64+0x33/0x40
[ 2183.431063]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2183.432099] RIP: 0033:0x7fb64c457b19
[ 2183.432911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2183.437133] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2183.438910] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2183.440556] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2183.442154] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2183.443594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2183.445054] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2183.473485] FAULT_INJECTION: forcing a failure.
[ 2183.473485] name failslab, interval 1, probability 0, space 0, times 0
[ 2183.476236] CPU: 0 PID: 11696 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2183.477657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2183.479351] Call Trace:
[ 2183.479882]  dump_stack+0x107/0x167
[ 2183.480653]  should_fail.cold+0x5/0xa
[ 2183.481496]  ? create_object.isra.0+0x3a/0xa20
[ 2183.482541]  should_failslab+0x5/0x20
[ 2183.483406]  kmem_cache_alloc+0x5b/0x310
[ 2183.484339]  ? mark_held_locks+0x9e/0xe0
[ 2183.485279]  create_object.isra.0+0x3a/0xa20
[ 2183.486284]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2183.487447]  kmem_cache_alloc_bulk+0x168/0x320
[ 2183.488534]  io_submit_sqes+0x6f76/0x85c0
[ 2183.489510]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2183.490651]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2183.491755]  ? lock_downgrade+0x6d0/0x6d0
[ 2183.492716]  ? find_held_lock+0x2c/0x110
[ 2183.493648]  ? io_submit_sqes+0x85c0/0x85c0
[ 2183.494642]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2183.495746]  ? wait_for_completion_io+0x270/0x270
[ 2183.496871]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2183.497937]  ? vfs_write+0x354/0xa70
[ 2183.498791]  ? fput_many+0x2f/0x1a0
[ 2183.499625]  ? ksys_write+0x1a9/0x260
[ 2183.500504]  ? __ia32_sys_read+0xb0/0xb0
[ 2183.501436]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2183.502624]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2183.503803]  do_syscall_64+0x33/0x40
[ 2183.504659]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2183.505822] RIP: 0033:0x7f1edfa23b19
[ 2183.506671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2183.510868] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2183.512606] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2183.514227] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2183.515846] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2183.517473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2183.519096] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:06:07 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x4000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2183.528500] FAULT_INJECTION: forcing a failure.
[ 2183.528500] name failslab, interval 1, probability 0, space 0, times 0
[ 2183.530829] CPU: 1 PID: 11694 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2183.532085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2183.533561] Call Trace:
[ 2183.534023]  dump_stack+0x107/0x167
[ 2183.534662]  should_fail.cold+0x5/0xa
[ 2183.535328]  ? __alloc_skb+0x6d/0x5b0
[ 2183.535994]  should_failslab+0x5/0x20
[ 2183.536665]  kmem_cache_alloc_node+0x55/0x330
[ 2183.537455]  __alloc_skb+0x6d/0x5b0
[ 2183.538101]  inet6_rt_notify+0xed/0x2a0
[ 2183.538800]  fib6_del+0xf4c/0x1540
[ 2183.539438]  ? fib6_locate+0x660/0x660
[ 2183.540123]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2183.541042]  ? fib6_ifdown+0xc5/0x8f0
[ 2183.541712]  fib6_clean_node+0x39e/0x570
[ 2183.542422]  ? fib6_del+0x1540/0x1540
[ 2183.543092]  ? fib6_clean_tree+0x14c/0x260
[ 2183.543836]  fib6_walk_continue+0x35c/0x710
[ 2183.544588]  ? trace_hardirqs_on+0x5b/0x180
[ 2183.545336]  fib6_clean_tree+0x154/0x260
[ 2183.546033]  ? fib6_ifup+0x260/0x260
[ 2183.546675]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2183.547499]  ? fib6_del+0x1540/0x1540
[ 2183.548155]  ? fib6_ifup+0x260/0x260
[ 2183.548816]  ? rwlock_bug.part.0+0x90/0x90
[ 2183.549545]  ? lock_chain_count+0x20/0x20
[ 2183.550270]  ? fib6_ifup+0x260/0x260
[ 2183.550910]  __fib6_clean_all+0xf0/0x2a0
[ 2183.551617]  rt6_disable_ip+0x4d5/0x5b0
[ 2183.552322]  ? rt6_sync_down_dev+0x150/0x150
[ 2183.553096]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2183.553915]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2183.554824]  ? addrconf_dad_run+0x180/0x180
[ 2183.555585]  addrconf_notify+0x159/0x2410
[ 2183.556310]  ? tun_device_event+0x71/0x1160
[ 2183.557054]  ? mark_held_locks+0x9e/0xe0
[ 2183.557755]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2183.558647]  ? inet6_ifinfo_notify+0x150/0x150
[ 2183.559435]  ? failover_register+0x530/0x530
[ 2183.560209]  raw_notifier_call_chain+0xb3/0x110
[ 2183.561036]  call_netdevice_notifiers_info+0xb5/0x130
[ 2183.561919]  dev_close_many+0x25b/0x460
[ 2183.562602]  ? __dev_close_many+0x2f0/0x2f0
[ 2183.563337]  ? lock_downgrade+0x6d0/0x6d0
[ 2183.564058]  unregister_netdevice_many+0x349/0x1490
[ 2183.564913]  ? __queue_work+0x681/0xf40
[ 2183.565596]  ? netdev_pick_tx+0xc70/0xc70
[ 2183.566314]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2183.567204]  ? queue_delayed_work_on+0xb4/0xe0
[ 2183.567979]  ? trace_hardirqs_on+0x5b/0x180
[ 2183.568727]  unregister_netdevice_queue+0x201/0x2c0
[ 2183.569584]  ? unregister_netdevice_many+0x1490/0x1490
[ 2183.570484]  ? linkwatch_fire_event+0x63/0x190
[ 2183.571269]  __tun_detach+0xf92/0x1280
[ 2183.571977]  tun_chr_close+0xc4/0x250
[ 2183.572643]  __fput+0x285/0x980
[ 2183.573209]  ? __tun_detach+0x1280/0x1280
[ 2183.573921]  task_work_run+0xe2/0x1a0
[ 2183.574585]  exit_to_user_mode_prepare+0x186/0x190
[ 2183.575425]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2183.576248]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2183.577128] RIP: 0033:0x7ff4e0665b19
[ 2183.577764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2183.580886] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2183.582163] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2183.583367] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2183.584576] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2183.585774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2183.586971] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:06:07 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:07 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf0}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:07 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:07 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf0}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:07 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x1fc}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:07 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 29)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2183.808867] FAULT_INJECTION: forcing a failure.
[ 2183.808867] name failslab, interval 1, probability 0, space 0, times 0
[ 2183.811777] CPU: 0 PID: 11731 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2183.813349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2183.815227] Call Trace:
[ 2183.815830]  dump_stack+0x107/0x167
[ 2183.816676]  should_fail.cold+0x5/0xa
[ 2183.817544]  ? relay_open+0xb3/0xa10
[ 2183.818399]  should_failslab+0x5/0x20
[ 2183.819256]  kmem_cache_alloc_trace+0x55/0x320
[ 2183.820291]  ? do_raw_spin_unlock+0x4f/0x220
[ 2183.821279]  relay_open+0xb3/0xa10
[ 2183.822086]  do_blk_trace_setup+0x4cf/0xc10
[ 2183.823056]  ? _copy_from_user+0xfb/0x1b0
[ 2183.823987]  __blk_trace_setup+0xca/0x180
[ 2183.824913]  ? do_blk_trace_setup+0xc10/0xc10
[ 2183.825929]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2183.827077]  blk_trace_setup+0x43/0x60
[ 2183.827961]  sg_ioctl_common+0x634/0x2570
[ 2183.828913]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2183.830028]  ? do_vfs_ioctl+0x283/0x10d0
[ 2183.830903]  ? sg_write+0x120/0x120
[ 2183.831709]  ? generic_block_fiemap+0x60/0x60
[ 2183.832691]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2183.833784]  ? selinux_file_ioctl+0xb6/0x270
[ 2183.834735]  ? sg_compat_ioctl+0x120/0x120
[ 2183.835676]  sg_ioctl+0x8f/0x120
[ 2183.836436]  __x64_sys_ioctl+0x19a/0x210
[ 2183.837354]  do_syscall_64+0x33/0x40
[ 2183.838159]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2183.839305] RIP: 0033:0x7fb64c457b19
[ 2183.840108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2183.844174] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2183.845742] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2183.847230] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2183.848716] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2183.850206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2183.851684] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:06:20 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x1d6}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:20 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 30)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:20 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 12)

04:06:20 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x300}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:20 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x8000000000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:20 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:20 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:06:20 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2196.020476] FAULT_INJECTION: forcing a failure.
[ 2196.020476] name failslab, interval 1, probability 0, space 0, times 0
[ 2196.023297] CPU: 0 PID: 11738 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2196.024755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2196.026477] Call Trace:
[ 2196.027039]  dump_stack+0x107/0x167
[ 2196.027803]  should_fail.cold+0x5/0xa
[ 2196.028616]  ? create_object.isra.0+0x3a/0xa20
[ 2196.029583]  should_failslab+0x5/0x20
[ 2196.030388]  kmem_cache_alloc+0x5b/0x310
[ 2196.031250]  create_object.isra.0+0x3a/0xa20
[ 2196.032177]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2196.033261]  kmem_cache_alloc_trace+0x151/0x320
[ 2196.034241]  relay_open+0xb3/0xa10
[ 2196.035003]  do_blk_trace_setup+0x4cf/0xc10
[ 2196.035913]  ? _copy_from_user+0xfb/0x1b0
[ 2196.036782]  __blk_trace_setup+0xca/0x180
[ 2196.037642]  ? do_blk_trace_setup+0xc10/0xc10
[ 2196.038587]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2196.039679]  blk_trace_setup+0x43/0x60
[ 2196.040509]  sg_ioctl_common+0x634/0x2570
[ 2196.041368]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2196.042445]  ? do_vfs_ioctl+0x283/0x10d0
[ 2196.043294]  ? sg_write+0x120/0x120
[ 2196.044050]  ? generic_block_fiemap+0x60/0x60
[ 2196.045009]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2196.046033]  ? selinux_file_ioctl+0xb6/0x270
[ 2196.046944]  ? sg_compat_ioctl+0x120/0x120
[ 2196.047831]  sg_ioctl+0x8f/0x120
[ 2196.048548]  __x64_sys_ioctl+0x19a/0x210
[ 2196.049405]  do_syscall_64+0x33/0x40
[ 2196.050187]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2196.051249] RIP: 0033:0x7fb64c457b19
[ 2196.052024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2196.055842] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2196.057438] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2196.058938] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2196.060456] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2196.061955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2196.063428] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:06:20 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:20 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x1fa}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2196.134397] device veth0_vlan entered promiscuous mode
[ 2196.137180] device veth0_vlan entered promiscuous mode
[ 2196.147760] FAULT_INJECTION: forcing a failure.
[ 2196.147760] name failslab, interval 1, probability 0, space 0, times 0
[ 2196.150582] CPU: 0 PID: 11753 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2196.152028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2196.153813] Call Trace:
[ 2196.154373]  dump_stack+0x107/0x167
[ 2196.155147]  should_fail.cold+0x5/0xa
[ 2196.155945]  ? create_object.isra.0+0x3a/0xa20
[ 2196.156920]  should_failslab+0x5/0x20
[ 2196.157727]  kmem_cache_alloc+0x5b/0x310
[ 2196.158583]  ? mark_held_locks+0x9e/0xe0
[ 2196.159450]  create_object.isra.0+0x3a/0xa20
[ 2196.160387]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2196.161456]  kmem_cache_alloc_bulk+0x168/0x320
[ 2196.162417]  io_submit_sqes+0x6f76/0x85c0
[ 2196.163309]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2196.164364]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2196.165425]  ? lock_downgrade+0x6d0/0x6d0
[ 2196.166316]  ? find_held_lock+0x2c/0x110
[ 2196.167173]  ? io_submit_sqes+0x85c0/0x85c0
[ 2196.168091]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2196.169112]  ? wait_for_completion_io+0x270/0x270
[ 2196.170133]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2196.171107]  ? vfs_write+0x354/0xa70
[ 2196.171895]  ? fput_many+0x2f/0x1a0
[ 2196.172676]  ? ksys_write+0x1a9/0x260
[ 2196.173480]  ? __ia32_sys_read+0xb0/0xb0
[ 2196.174350]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2196.175450]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2196.176562]  do_syscall_64+0x33/0x40
[ 2196.177348]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2196.178441] RIP: 0033:0x7f1edfa23b19
[ 2196.179233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2196.183145] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2196.184753] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2196.186271] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2196.187752] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2196.189265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2196.190750] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2196.209654] FAULT_INJECTION: forcing a failure.
[ 2196.209654] name failslab, interval 1, probability 0, space 0, times 0
[ 2196.212208] CPU: 0 PID: 11746 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2196.213711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2196.215488] Call Trace:
[ 2196.216040]  dump_stack+0x107/0x167
[ 2196.216835]  should_fail.cold+0x5/0xa
[ 2196.217650]  ? rt6_flush_exceptions+0x6b/0x80
[ 2196.218591]  ? create_object.isra.0+0x3a/0xa20
[ 2196.219567]  should_failslab+0x5/0x20
[ 2196.220362]  kmem_cache_alloc+0x5b/0x310
[ 2196.221251]  create_object.isra.0+0x3a/0xa20
[ 2196.222172]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2196.223262]  kmem_cache_alloc_node+0x169/0x330
[ 2196.224220]  __alloc_skb+0x6d/0x5b0
[ 2196.225000]  inet6_rt_notify+0xed/0x2a0
[ 2196.225858]  fib6_del+0xf4c/0x1540
[ 2196.226629]  ? fib6_locate+0x660/0x660
[ 2196.227463]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2196.228579]  ? fib6_ifdown+0xc5/0x8f0
[ 2196.229384]  fib6_clean_node+0x39e/0x570
[ 2196.230238]  ? fib6_del+0x1540/0x1540
[ 2196.231044]  ? fib6_clean_tree+0x14c/0x260
[ 2196.231950]  fib6_walk_continue+0x35c/0x710
[ 2196.232873]  ? trace_hardirqs_on+0x5b/0x180
[ 2196.233790]  fib6_clean_tree+0x154/0x260
[ 2196.234638]  ? fib6_ifup+0x260/0x260
[ 2196.235422]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2196.236426]  ? fib6_del+0x1540/0x1540
[ 2196.237232]  ? fib6_ifup+0x260/0x260
[ 2196.238024]  ? rwlock_bug.part.0+0x90/0x90
[ 2196.238905]  ? lock_chain_count+0x20/0x20
[ 2196.239786]  ? fib6_ifup+0x260/0x260
[ 2196.240568]  __fib6_clean_all+0xf0/0x2a0
[ 2196.241435]  rt6_disable_ip+0x4d5/0x5b0
[ 2196.242296]  ? rt6_sync_down_dev+0x150/0x150
[ 2196.243230]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2196.244214]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2196.245329]  ? addrconf_dad_run+0x180/0x180
[ 2196.246258]  addrconf_notify+0x159/0x2410
[ 2196.247123]  ? tun_device_event+0x71/0x1160
[ 2196.248022]  ? mark_held_locks+0x9e/0xe0
[ 2196.248892]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2196.249983]  ? inet6_ifinfo_notify+0x150/0x150
[ 2196.250952]  ? failover_register+0x530/0x530
[ 2196.251896]  raw_notifier_call_chain+0xb3/0x110
[ 2196.252901]  call_netdevice_notifiers_info+0xb5/0x130
[ 2196.253994]  dev_close_many+0x25b/0x460
[ 2196.254835]  ? __dev_close_many+0x2f0/0x2f0
[ 2196.255754]  ? mark_held_locks+0x9e/0xe0
[ 2196.256626]  unregister_netdevice_many+0x349/0x1490
[ 2196.257683]  ? trace_hardirqs_on+0x5b/0x180
[ 2196.258583]  ? asm_sysvec_call_function_single+0x12/0x20
[ 2196.259728]  ? netdev_pick_tx+0xc70/0xc70
[ 2196.260616]  ? queue_delayed_work_on+0x85/0xe0
[ 2196.261588]  ? queue_delayed_work_on+0xb4/0xe0
[ 2196.262552]  ? queue_delayed_work_on+0x88/0xe0
[ 2196.263532]  unregister_netdevice_queue+0x201/0x2c0
[ 2196.264589]  ? unregister_netdevice_many+0x1490/0x1490
[ 2196.265697]  ? linkwatch_fire_event+0x63/0x190
[ 2196.266652]  __tun_detach+0xf92/0x1280
[ 2196.267491]  tun_chr_close+0xc4/0x250
[ 2196.268304]  __fput+0x285/0x980
[ 2196.269001]  ? __tun_detach+0x1280/0x1280
[ 2196.269866]  task_work_run+0xe2/0x1a0
[ 2196.270683]  exit_to_user_mode_prepare+0x186/0x190
[ 2196.271698]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2196.272710]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2196.273770] RIP: 0033:0x7ff4e0665b19
[ 2196.274555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2196.278402] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2196.280016] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2196.281544] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2196.283042] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2196.284542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2196.286061] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:06:20 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x500}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:20 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:20 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:20 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:20 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 31)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:20 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x600}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:20 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x300}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2196.471419] FAULT_INJECTION: forcing a failure.
[ 2196.471419] name failslab, interval 1, probability 0, space 0, times 0
[ 2196.474445] CPU: 0 PID: 11786 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2196.475891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2196.477658] Call Trace:
[ 2196.478219]  dump_stack+0x107/0x167
[ 2196.478990]  should_fail.cold+0x5/0xa
[ 2196.479796]  ? create_object.isra.0+0x3a/0xa20
[ 2196.480793]  should_failslab+0x5/0x20
[ 2196.481596]  kmem_cache_alloc+0x5b/0x310
[ 2196.482456]  create_object.isra.0+0x3a/0xa20
[ 2196.483386]  kmemleak_alloc_percpu+0xa0/0x100
[ 2196.484332]  pcpu_alloc+0x4e2/0x1240
[ 2196.485146]  relay_open+0xd8/0xa10
[ 2196.485903]  do_blk_trace_setup+0x4cf/0xc10
[ 2196.486808]  ? _copy_from_user+0xfb/0x1b0
[ 2196.487681]  __blk_trace_setup+0xca/0x180
[ 2196.488567]  ? do_blk_trace_setup+0xc10/0xc10
[ 2196.489520]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2196.490627]  blk_trace_setup+0x43/0x60
[ 2196.491447]  sg_ioctl_common+0x634/0x2570
[ 2196.492320]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2196.493419]  ? do_vfs_ioctl+0x283/0x10d0
[ 2196.494266]  ? sg_write+0x120/0x120
[ 2196.495028]  ? generic_block_fiemap+0x60/0x60
[ 2196.495968]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2196.497001]  ? selinux_file_ioctl+0xb6/0x270
[ 2196.497937]  ? sg_compat_ioctl+0x120/0x120
[ 2196.498837]  sg_ioctl+0x8f/0x120
[ 2196.499555]  __x64_sys_ioctl+0x19a/0x210
[ 2196.500413]  do_syscall_64+0x33/0x40
[ 2196.501221]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2196.502306] RIP: 0033:0x7fb64c457b19
[ 2196.503088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2196.506959] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2196.508569] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2196.510062] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2196.511567] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2196.513075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2196.514580] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:06:32 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 32)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:32 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)="ff", 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:32 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:06:32 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x500}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:32 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x300000000000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:32 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x700}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:32 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:06:32 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 13)

[ 2208.466628] FAULT_INJECTION: forcing a failure.
[ 2208.466628] name failslab, interval 1, probability 0, space 0, times 0
[ 2208.468798] CPU: 0 PID: 11796 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2208.469620] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2208.470606] Call Trace:
[ 2208.470935]  dump_stack+0x107/0x167
[ 2208.471373]  should_fail.cold+0x5/0xa
[ 2208.471823]  ? create_object.isra.0+0x3a/0xa20
[ 2208.472374]  should_failslab+0x5/0x20
[ 2208.472834]  kmem_cache_alloc+0x5b/0x310
[ 2208.473330]  ? mark_held_locks+0x9e/0xe0
[ 2208.473807]  create_object.isra.0+0x3a/0xa20
[ 2208.474349]  kmemleak_alloc_percpu+0xa0/0x100
[ 2208.474874]  pcpu_alloc+0x4e2/0x1240
[ 2208.475322]  relay_open+0xd8/0xa10
[ 2208.475749]  do_blk_trace_setup+0x4cf/0xc10
[ 2208.476275]  ? _copy_from_user+0xfb/0x1b0
[ 2208.476794]  __blk_trace_setup+0xca/0x180
[ 2208.477315]  ? do_blk_trace_setup+0xc10/0xc10
[ 2208.477878]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2208.478534]  blk_trace_setup+0x43/0x60
[ 2208.479025]  sg_ioctl_common+0x634/0x2570
[ 2208.479541]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2208.480185]  ? do_vfs_ioctl+0x283/0x10d0
[ 2208.480694]  ? sg_write+0x120/0x120
[ 2208.481152]  ? generic_block_fiemap+0x60/0x60
[ 2208.481706]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2208.482319]  ? selinux_file_ioctl+0xb6/0x270
[ 2208.482862]  ? sg_compat_ioctl+0x120/0x120
[ 2208.483369]  sg_ioctl+0x8f/0x120
[ 2208.483787]  __x64_sys_ioctl+0x19a/0x210
[ 2208.484303]  do_syscall_64+0x33/0x40
[ 2208.484762]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2208.485404] RIP: 0033:0x7fb64c457b19
[ 2208.485869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2208.488150] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2208.489107] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2208.489949] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2208.490822] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2208.491658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2208.492494] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:06:32 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2208.555710] device veth0_vlan entered promiscuous mode
[ 2208.558901] FAULT_INJECTION: forcing a failure.
[ 2208.558901] name failslab, interval 1, probability 0, space 0, times 0
[ 2208.561644] CPU: 1 PID: 11810 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2208.563058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2208.564777] Call Trace:
[ 2208.565330]  dump_stack+0x107/0x167
[ 2208.566089]  should_fail.cold+0x5/0xa
[ 2208.566880]  ? create_object.isra.0+0x3a/0xa20
[ 2208.567825]  should_failslab+0x5/0x20
[ 2208.568631]  kmem_cache_alloc+0x5b/0x310
[ 2208.569474]  ? mark_held_locks+0x9e/0xe0
[ 2208.570320]  create_object.isra.0+0x3a/0xa20
[ 2208.571238]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2208.572296]  kmem_cache_alloc_bulk+0x168/0x320
[ 2208.573252]  io_submit_sqes+0x6f76/0x85c0
[ 2208.574136]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2208.575159]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2208.576153]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.577009]  ? find_held_lock+0x2c/0x110
[ 2208.577848]  ? io_submit_sqes+0x85c0/0x85c0
[ 2208.578741]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2208.579732]  ? wait_for_completion_io+0x270/0x270
[ 2208.580737]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2208.581691]  ? vfs_write+0x354/0xa70
[ 2208.582460]  ? copy_kernel_to_fpregs+0x9e/0xe0
[ 2208.583404]  ? trace_event_raw_event_x86_fpu+0x390/0x390
[ 2208.584509]  ? ksys_write+0x1a9/0x260
[ 2208.585301]  ? __ia32_sys_read+0xb0/0xb0
[ 2208.586141]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2208.587214]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2208.588279]  do_syscall_64+0x33/0x40
[ 2208.589043]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2208.590087] RIP: 0033:0x7f1edfa23b19
[ 2208.590852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2208.594617] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2208.596179] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2208.597642] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2208.599122] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2208.600605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2208.602080] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:06:32 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x900}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2208.615191] device veth0_vlan entered promiscuous mode
[ 2208.623781] FAULT_INJECTION: forcing a failure.
[ 2208.623781] name failslab, interval 1, probability 0, space 0, times 0
[ 2208.625146] CPU: 0 PID: 11818 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2208.625946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2208.626877] Call Trace:
[ 2208.627184]  dump_stack+0x107/0x167
[ 2208.627619]  should_fail.cold+0x5/0xa
[ 2208.628064]  should_failslab+0x5/0x20
[ 2208.628523]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2208.629109]  ? inet6_rt_notify+0xed/0x2a0
[ 2208.629593]  __alloc_skb+0xb1/0x5b0
[ 2208.630021]  inet6_rt_notify+0xed/0x2a0
[ 2208.630484]  fib6_del+0xf4c/0x1540
[ 2208.630904]  ? fib6_locate+0x660/0x660
[ 2208.631360]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2208.631936]  ? fib6_ifdown+0xc5/0x8f0
[ 2208.632387]  fib6_clean_node+0x39e/0x570
[ 2208.632868]  ? fib6_del+0x1540/0x1540
[ 2208.633312]  ? fib6_clean_tree+0x14c/0x260
[ 2208.633809]  fib6_walk_continue+0x35c/0x710
[ 2208.634313]  ? trace_hardirqs_on+0x5b/0x180
[ 2208.634806]  fib6_clean_tree+0x154/0x260
[ 2208.635271]  ? fib6_ifup+0x260/0x260
[ 2208.635698]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2208.636252]  ? fib6_del+0x1540/0x1540
[ 2208.636711]  ? fib6_ifup+0x260/0x260
[ 2208.637143]  ? rwlock_bug.part.0+0x90/0x90
[ 2208.637632]  ? lock_chain_count+0x20/0x20
[ 2208.638117]  ? fib6_ifup+0x260/0x260
[ 2208.638547]  __fib6_clean_all+0xf0/0x2a0
[ 2208.639018]  rt6_disable_ip+0x4d5/0x5b0
[ 2208.639493]  ? rt6_sync_down_dev+0x150/0x150
[ 2208.640014]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2208.640567]  ? addrconf_dad_run+0x180/0x180
[ 2208.641079]  addrconf_notify+0x159/0x2410
[ 2208.641568]  ? tun_device_event+0x71/0x1160
[ 2208.642065]  ? mark_held_locks+0x9e/0xe0
[ 2208.642540]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2208.643141]  ? inet6_ifinfo_notify+0x150/0x150
[ 2208.643670]  ? failover_register+0x530/0x530
[ 2208.644194]  raw_notifier_call_chain+0xb3/0x110
[ 2208.644749]  call_netdevice_notifiers_info+0xb5/0x130
[ 2208.645342]  dev_close_many+0x25b/0x460
[ 2208.645803]  ? __dev_close_many+0x2f0/0x2f0
[ 2208.646299]  ? lock_downgrade+0x6d0/0x6d0
[ 2208.646782]  unregister_netdevice_many+0x349/0x1490
[ 2208.647364]  ? __queue_work+0x681/0xf40
[ 2208.647823]  ? netdev_pick_tx+0xc70/0xc70
[ 2208.648317]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2208.648935]  ? queue_delayed_work_on+0xb4/0xe0
[ 2208.649442]  ? trace_hardirqs_on+0x5b/0x180
[ 2208.649950]  unregister_netdevice_queue+0x201/0x2c0
[ 2208.650536]  ? unregister_netdevice_many+0x1490/0x1490
[ 2208.651144]  ? linkwatch_fire_event+0x63/0x190
[ 2208.651679]  __tun_detach+0xf92/0x1280
[ 2208.652144]  tun_chr_close+0xc4/0x250
[ 2208.652599]  __fput+0x285/0x980
[ 2208.652985]  ? __tun_detach+0x1280/0x1280
[ 2208.653480]  task_work_run+0xe2/0x1a0
[ 2208.653929]  exit_to_user_mode_prepare+0x186/0x190
[ 2208.654499]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2208.655032]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2208.655629] RIP: 0033:0x7ff4e0665b19
[ 2208.656041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2208.658189] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2208.659029] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2208.659851] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2208.660677] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2208.661463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2208.662256] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
04:06:32 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:32 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf00}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:32 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:32 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:32 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x600}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:32 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf000}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:45 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:45 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xfc01}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:45 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:06:45 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:06:45 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 33)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:45 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:45 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x700}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:45 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 14)

[ 2221.470502] FAULT_INJECTION: forcing a failure.
[ 2221.470502] name failslab, interval 1, probability 0, space 0, times 0
[ 2221.475568] CPU: 1 PID: 11860 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2221.476994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2221.478719] Call Trace:
[ 2221.479288]  dump_stack+0x107/0x167
[ 2221.480038]  should_fail.cold+0x5/0xa
[ 2221.480833]  ? relay_open_buf.part.0+0x91/0xc00
[ 2221.481792]  should_failslab+0x5/0x20
[ 2221.482566]  kmem_cache_alloc_trace+0x55/0x320
[ 2221.483502]  relay_open_buf.part.0+0x91/0xc00
[ 2221.484424]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2221.485488]  relay_open+0x531/0xa10
[ 2221.486233]  do_blk_trace_setup+0x4cf/0xc10
[ 2221.487104]  ? _copy_from_user+0xfb/0x1b0
[ 2221.487993]  __blk_trace_setup+0xca/0x180
[ 2221.488859]  ? do_blk_trace_setup+0xc10/0xc10
[ 2221.489789]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2221.490862]  blk_trace_setup+0x43/0x60
[ 2221.491657]  sg_ioctl_common+0x634/0x2570
[ 2221.492503]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2221.493561]  ? do_vfs_ioctl+0x283/0x10d0
[ 2221.494385]  ? sg_write+0x120/0x120
[ 2221.495123]  ? generic_block_fiemap+0x60/0x60
[ 2221.496037]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2221.497044]  ? selinux_file_ioctl+0xb6/0x270
[ 2221.497933]  ? sg_compat_ioctl+0x120/0x120
[ 2221.498791]  sg_ioctl+0x8f/0x120
[ 2221.499477]  __x64_sys_ioctl+0x19a/0x210
[ 2221.500316]  do_syscall_64+0x33/0x40
[ 2221.501101]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2221.502144] RIP: 0033:0x7fb64c457b19
[ 2221.502901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2221.506632] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2221.508181] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2221.509648] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2221.511086] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2221.512541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2221.514004] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2221.528881] FAULT_INJECTION: forcing a failure.
[ 2221.528881] name failslab, interval 1, probability 0, space 0, times 0
[ 2221.531667] CPU: 0 PID: 11857 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2221.533171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2221.534916] Call Trace:
[ 2221.535475]  dump_stack+0x107/0x167
[ 2221.536267]  should_fail.cold+0x5/0xa
[ 2221.537089]  ? create_object.isra.0+0x3a/0xa20
[ 2221.538048]  should_failslab+0x5/0x20
[ 2221.538852]  kmem_cache_alloc+0x5b/0x310
[ 2221.539710]  ? mark_held_locks+0x9e/0xe0
[ 2221.540570]  create_object.isra.0+0x3a/0xa20
[ 2221.541504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2221.542586]  kmem_cache_alloc_bulk+0x168/0x320
[ 2221.543548]  io_submit_sqes+0x6f76/0x85c0
[ 2221.544457]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2221.545531]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2221.546542]  ? lock_downgrade+0x6d0/0x6d0
[ 2221.547412]  ? find_held_lock+0x2c/0x110
[ 2221.548300]  ? io_submit_sqes+0x85c0/0x85c0
[ 2221.549228]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2221.550244]  ? wait_for_completion_io+0x270/0x270
[ 2221.551269]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2221.552248]  ? vfs_write+0x354/0xa70
[ 2221.553035]  ? fput_many+0x2f/0x1a0
[ 2221.553800]  ? ksys_write+0x1a9/0x260
[ 2221.554585]  ? __ia32_sys_read+0xb0/0xb0
[ 2221.555442]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2221.556526]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2221.557633]  do_syscall_64+0x33/0x40
[ 2221.558403]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2221.559473] RIP: 0033:0x7f1edfa23b19
[ 2221.560242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2221.564093] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2221.565666] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2221.567156] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2221.568655] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2221.570159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2221.571651] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2221.597260] device veth0_vlan entered promiscuous mode
[ 2221.600855] device veth0_vlan entered promiscuous mode
04:06:45 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 34)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:45 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:45 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0x900}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:45 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2221.694202] FAULT_INJECTION: forcing a failure.
[ 2221.694202] name failslab, interval 1, probability 0, space 0, times 0
[ 2221.697257] CPU: 1 PID: 11878 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2221.698856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2221.700770] Call Trace:
04:06:45 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x3, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2221.701372]  dump_stack+0x107/0x167
[ 2221.702361]  should_fail.cold+0x5/0xa
[ 2221.703243]  ? create_object.isra.0+0x3a/0xa20
[ 2221.704300]  ? create_object.isra.0+0x3a/0xa20
[ 2221.705376]  should_failslab+0x5/0x20
[ 2221.706253]  kmem_cache_alloc+0x5b/0x310
[ 2221.707199]  create_object.isra.0+0x3a/0xa20
[ 2221.708198]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2221.709364]  kmem_cache_alloc_trace+0x151/0x320
[ 2221.710433]  relay_open_buf.part.0+0x91/0xc00
[ 2221.711459]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2221.712647]  relay_open+0x531/0xa10
[ 2221.713509]  do_blk_trace_setup+0x4cf/0xc10
[ 2221.714502]  ? _copy_from_user+0xfb/0x1b0
[ 2221.715450]  __blk_trace_setup+0xca/0x180
[ 2221.716397]  ? do_blk_trace_setup+0xc10/0xc10
[ 2221.717446]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2221.718655]  blk_trace_setup+0x43/0x60
[ 2221.719548]  sg_ioctl_common+0x634/0x2570
[ 2221.720501]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2221.721685]  ? do_vfs_ioctl+0x283/0x10d0
[ 2221.722608]  ? sg_write+0x120/0x120
[ 2221.723431]  ? generic_block_fiemap+0x60/0x60
[ 2221.724465]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2221.725609]  ? selinux_file_ioctl+0xb6/0x270
[ 2221.726551]  ? sg_compat_ioctl+0x120/0x120
[ 2221.727423]  sg_ioctl+0x8f/0x120
[ 2221.728123]  __x64_sys_ioctl+0x19a/0x210
[ 2221.728983]  do_syscall_64+0x33/0x40
[ 2221.729749]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2221.730802] RIP: 0033:0x7fb64c457b19
[ 2221.731571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2221.735384] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2221.736945] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2221.738555] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2221.740191] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2221.741833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2221.743452] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2221.761669] FAULT_INJECTION: forcing a failure.
[ 2221.761669] name failslab, interval 1, probability 0, space 0, times 0
[ 2221.764191] CPU: 0 PID: 11869 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2221.765683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2221.767441] Call Trace:
[ 2221.768015]  dump_stack+0x107/0x167
[ 2221.768833]  should_fail.cold+0x5/0xa
[ 2221.769661]  should_failslab+0x5/0x20
[ 2221.770469]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2221.771526]  ? inet6_rt_notify+0xed/0x2a0
[ 2221.772410]  __alloc_skb+0xb1/0x5b0
[ 2221.773209]  inet6_rt_notify+0xed/0x2a0
[ 2221.774055]  fib6_del+0xf4c/0x1540
[ 2221.774840]  ? fib6_locate+0x660/0x660
[ 2221.775673]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2221.776783]  ? fib6_ifdown+0xc5/0x8f0
[ 2221.777603]  fib6_clean_node+0x39e/0x570
[ 2221.778478]  ? fib6_del+0x1540/0x1540
[ 2221.779296]  ? fib6_clean_tree+0x14c/0x260
[ 2221.780209]  fib6_walk_continue+0x35c/0x710
[ 2221.781129]  ? trace_hardirqs_on+0x5b/0x180
[ 2221.782044]  fib6_clean_tree+0x154/0x260
[ 2221.782874]  ? fib6_ifup+0x260/0x260
[ 2221.783663]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2221.784644]  ? fib6_del+0x1540/0x1540
[ 2221.785463]  ? fib6_ifup+0x260/0x260
[ 2221.786235]  ? rwlock_bug.part.0+0x90/0x90
[ 2221.787127]  ? lock_chain_count+0x20/0x20
[ 2221.787991]  ? fib6_ifup+0x260/0x260
[ 2221.788795]  __fib6_clean_all+0xf0/0x2a0
[ 2221.789637]  rt6_disable_ip+0x4d5/0x5b0
[ 2221.790490]  ? rt6_sync_down_dev+0x150/0x150
[ 2221.791407]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2221.792419]  ? addrconf_dad_run+0x180/0x180
[ 2221.793336]  addrconf_notify+0x159/0x2410
[ 2221.794218]  ? tun_device_event+0x71/0x1160
[ 2221.795110]  ? mark_held_locks+0x9e/0xe0
[ 2221.795973]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2221.797070]  ? inet6_ifinfo_notify+0x150/0x150
[ 2221.798043]  ? failover_register+0x530/0x530
[ 2221.798969]  raw_notifier_call_chain+0xb3/0x110
[ 2221.799968]  call_netdevice_notifiers_info+0xb5/0x130
[ 2221.801052]  dev_close_many+0x25b/0x460
[ 2221.801893]  ? __dev_close_many+0x2f0/0x2f0
[ 2221.802780]  ? __mod_timer+0x7fb/0xd10
[ 2221.803632]  unregister_netdevice_many+0x349/0x1490
[ 2221.804679]  ? netdev_pick_tx+0xc70/0xc70
[ 2221.805589]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2221.806668]  ? queue_delayed_work_on+0xb4/0xe0
[ 2221.807637]  ? trace_hardirqs_on+0x5b/0x180
[ 2221.808541]  unregister_netdevice_queue+0x201/0x2c0
[ 2221.809616]  ? unregister_netdevice_many+0x1490/0x1490
[ 2221.810710]  ? linkwatch_fire_event+0x63/0x190
[ 2221.811686]  __tun_detach+0xf92/0x1280
[ 2221.812516]  tun_chr_close+0xc4/0x250
[ 2221.813334]  __fput+0x285/0x980
[ 2221.814015]  ? __tun_detach+0x1280/0x1280
[ 2221.814901]  task_work_run+0xe2/0x1a0
[ 2221.815704]  exit_to_user_mode_prepare+0x186/0x190
[ 2221.816739]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2221.817777]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2221.818836] RIP: 0033:0x7ff4e0665b19
[ 2221.819629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2221.823721] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2221.825542] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2221.827214] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2221.828891] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2221.830567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2221.832244] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:06:59 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 15)

04:06:59 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:06:59 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:59 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:06:59 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf00}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:59 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x3, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:06:59 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:06:59 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 35)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:06:59 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2235.693995] device veth0_vlan entered promiscuous mode
[ 2235.696792] FAULT_INJECTION: forcing a failure.
[ 2235.696792] name failslab, interval 1, probability 0, space 0, times 0
[ 2235.698196] CPU: 0 PID: 11913 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2235.699012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2235.700002] Call Trace:
[ 2235.700331]  dump_stack+0x107/0x167
[ 2235.700784]  should_fail.cold+0x5/0xa
[ 2235.701244]  ? relay_open_buf.part.0+0xf9/0xc00
[ 2235.701810]  should_failslab+0x5/0x20
[ 2235.702275]  __kmalloc+0x72/0x390
[ 2235.702697]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2235.703304]  relay_open_buf.part.0+0xf9/0xc00
[ 2235.703832]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2235.704578]  relay_open+0x531/0xa10
[ 2235.704619]  do_blk_trace_setup+0x4cf/0xc10
[ 2235.704631]  ? _copy_from_user+0xfb/0x1b0
[ 2235.704644]  __blk_trace_setup+0xca/0x180
[ 2235.704656]  ? do_blk_trace_setup+0xc10/0xc10
[ 2235.704679]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2235.704698]  blk_trace_setup+0x43/0x60
[ 2235.704713]  sg_ioctl_common+0x634/0x2570
04:06:59 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 36)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2235.704727]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2235.704739]  ? do_vfs_ioctl+0x283/0x10d0
[ 2235.704748]  ? sg_write+0x120/0x120
[ 2235.704759]  ? generic_block_fiemap+0x60/0x60
04:06:59 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:06:59 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xd601}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2235.704773]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2235.704800]  ? selinux_file_ioctl+0xb6/0x270
04:06:59 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x2, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2235.704809]  ? sg_compat_ioctl+0x120/0x120
04:06:59 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x300, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2235.704821]  sg_ioctl+0x8f/0x120
[ 2235.704833]  __x64_sys_ioctl+0x19a/0x210
[ 2235.704850]  do_syscall_64+0x33/0x40
[ 2235.704860]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
04:07:00 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:00 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xf000}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2235.704868] RIP: 0033:0x7fb64c457b19
[ 2235.704880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2235.704886] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2235.704899] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2235.704906] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2235.704912] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2235.704919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2235.704942] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2235.714838] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2235.749155] device veth0_vlan entered promiscuous mode
[ 2235.755782] FAULT_INJECTION: forcing a failure.
[ 2235.755782] name failslab, interval 1, probability 0, space 0, times 0
[ 2235.755796] CPU: 0 PID: 11918 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2235.755802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2235.755806] Call Trace:
[ 2235.755822]  dump_stack+0x107/0x167
[ 2235.755837]  should_fail.cold+0x5/0xa
[ 2235.755855]  ? __alloc_skb+0x6d/0x5b0
[ 2235.755869]  should_failslab+0x5/0x20
[ 2235.755880]  kmem_cache_alloc_node+0x55/0x330
[ 2235.755895]  __alloc_skb+0x6d/0x5b0
[ 2235.755912]  inet6_rt_notify+0xed/0x2a0
[ 2235.755925]  fib6_del+0xf4c/0x1540
[ 2235.755944]  ? fib6_locate+0x660/0x660
[ 2235.755959]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2235.755970]  ? fib6_ifdown+0xc5/0x8f0
[ 2235.755986]  fib6_clean_node+0x39e/0x570
[ 2235.755998]  ? fib6_del+0x1540/0x1540
[ 2235.756010]  ? fib6_clean_tree+0x14c/0x260
[ 2235.756030]  fib6_walk_continue+0x35c/0x710
[ 2235.756042]  ? trace_hardirqs_on+0x5b/0x180
[ 2235.756054]  fib6_clean_tree+0x154/0x260
[ 2235.756064]  ? fib6_ifup+0x260/0x260
[ 2235.756074]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2235.756090]  ? fib6_del+0x1540/0x1540
[ 2235.756100]  ? fib6_ifup+0x260/0x260
[ 2235.756114]  ? rwlock_bug.part.0+0x90/0x90
[ 2235.756124]  ? lock_chain_count+0x20/0x20
[ 2235.756142]  ? fib6_ifup+0x260/0x260
[ 2235.756152]  __fib6_clean_all+0xf0/0x2a0
[ 2235.756168]  rt6_disable_ip+0x4d5/0x5b0
[ 2235.756187]  ? rt6_sync_down_dev+0x150/0x150
[ 2235.756211]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2235.756231]  ? addrconf_dad_run+0x180/0x180
[ 2235.756255]  addrconf_notify+0x159/0x2410
[ 2235.756269]  ? tun_device_event+0x71/0x1160
[ 2235.756281]  ? mark_held_locks+0x9e/0xe0
[ 2235.756292]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2235.756305]  ? inet6_ifinfo_notify+0x150/0x150
[ 2235.756316]  ? failover_register+0x530/0x530
[ 2235.756339]  raw_notifier_call_chain+0xb3/0x110
[ 2235.756355]  call_netdevice_notifiers_info+0xb5/0x130
[ 2235.756368]  dev_close_many+0x25b/0x460
[ 2235.756382]  ? __dev_close_many+0x2f0/0x2f0
[ 2235.756391]  ? __mod_timer+0x7fb/0xd10
[ 2235.756415]  unregister_netdevice_many+0x349/0x1490
[ 2235.756432]  ? netdev_pick_tx+0xc70/0xc70
[ 2235.756448]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2235.756459]  ? queue_delayed_work_on+0xb4/0xe0
[ 2235.756468]  ? trace_hardirqs_on+0x5b/0x180
[ 2235.756483]  unregister_netdevice_queue+0x201/0x2c0
[ 2235.756496]  ? unregister_netdevice_many+0x1490/0x1490
[ 2235.756510]  ? linkwatch_fire_event+0x63/0x190
[ 2235.756525]  __tun_detach+0xf92/0x1280
[ 2235.756544]  tun_chr_close+0xc4/0x250
[ 2235.756558]  __fput+0x285/0x980
[ 2235.756568]  ? __tun_detach+0x1280/0x1280
[ 2235.756583]  task_work_run+0xe2/0x1a0
[ 2235.756600]  exit_to_user_mode_prepare+0x186/0x190
[ 2235.756613]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2235.756624]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2235.756632] RIP: 0033:0x7ff4e0665b19
[ 2235.756644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2235.756650] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2235.756663] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2235.756669] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2235.756675] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2235.756681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2235.756688] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2235.771809] FAULT_INJECTION: forcing a failure.
[ 2235.771809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2235.771832] CPU: 1 PID: 11910 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2235.771844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2235.771850] Call Trace:
[ 2235.771875]  dump_stack+0x107/0x167
[ 2235.771906]  should_fail.cold+0x5/0xa
[ 2235.771933]  _copy_from_user+0x2e/0x1b0
[ 2235.771958]  move_addr_to_kernel.part.0+0x31/0x110
[ 2235.771979]  move_addr_to_kernel+0x4f/0x70
[ 2235.771999]  io_connect+0x47a/0x610
[ 2235.772019]  ? io_prep_rw+0x1050/0x1050
[ 2235.772050]  ? lock_acquire+0x197/0x470
[ 2235.772074]  ? __lock_acquire+0xbb1/0x5b00
[ 2235.772100]  io_issue_sqe+0x1611/0x7700
[ 2235.772128]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2235.772148]  ? lock_chain_count+0x20/0x20
[ 2235.772167]  ? __is_insn_slot_addr+0x14c/0x290
[ 2235.772189]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2235.772205]  ? io_connect+0x610/0x610
[ 2235.772228]  ? lock_acquire+0x197/0x470
[ 2235.772244]  ? find_held_lock+0x2c/0x110
[ 2235.772269]  ? __fget_files+0x26d/0x4c0
[ 2235.772287]  ? lock_downgrade+0x6d0/0x6d0
[ 2235.772312]  __io_queue_sqe+0x90/0x9d0
[ 2235.772336]  ? io_issue_sqe+0x7700/0x7700
[ 2235.772369]  io_submit_sqes+0x4461/0x85c0
[ 2235.772414]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2235.772431]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2235.772453]  ? lock_downgrade+0x6d0/0x6d0
[ 2235.772469]  ? find_held_lock+0x2c/0x110
[ 2235.772491]  ? io_submit_sqes+0x85c0/0x85c0
[ 2235.772519]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2235.772541]  ? wait_for_completion_io+0x270/0x270
[ 2235.772562]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2235.772580]  ? vfs_write+0x354/0xa70
[ 2235.772601]  ? fput_many+0x2f/0x1a0
[ 2235.772620]  ? ksys_write+0x1a9/0x260
[ 2235.772639]  ? __ia32_sys_read+0xb0/0xb0
[ 2235.772661]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2235.772679]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2235.772703]  do_syscall_64+0x33/0x40
[ 2235.772720]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2235.772732] RIP: 0033:0x7f1edfa23b19
[ 2235.772752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2235.772762] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2235.772783] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2235.772794] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2235.772804] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2235.772815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2235.772826] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2235.831857] FAULT_INJECTION: forcing a failure.
[ 2235.831857] name failslab, interval 1, probability 0, space 0, times 0
[ 2235.832268] CPU: 1 PID: 11925 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2235.832279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2235.832284] Call Trace:
[ 2235.832303]  dump_stack+0x107/0x167
[ 2235.832327]  should_fail.cold+0x5/0xa
[ 2235.832342]  ? _cond_resched+0x12/0x80
[ 2235.832361]  ? create_object.isra.0+0x3a/0xa20
[ 2235.832382]  should_failslab+0x5/0x20
[ 2235.832401]  kmem_cache_alloc+0x5b/0x310
[ 2235.832421]  ? relay_open_buf.part.0+0xf9/0xc00
[ 2235.832451]  create_object.isra.0+0x3a/0xa20
[ 2235.832476]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2235.832499]  __kmalloc+0x16e/0x390
[ 2235.832523]  relay_open_buf.part.0+0xf9/0xc00
[ 2235.832545]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2235.832570]  relay_open+0x531/0xa10
[ 2235.832596]  do_blk_trace_setup+0x4cf/0xc10
[ 2235.832615]  ? _copy_from_user+0xfb/0x1b0
[ 2235.832635]  __blk_trace_setup+0xca/0x180
[ 2235.832653]  ? do_blk_trace_setup+0xc10/0xc10
[ 2235.832685]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2235.832716]  blk_trace_setup+0x43/0x60
[ 2235.832740]  sg_ioctl_common+0x634/0x2570
[ 2235.832760]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2235.832779]  ? do_vfs_ioctl+0x283/0x10d0
[ 2235.832796]  ? sg_write+0x120/0x120
[ 2235.832812]  ? generic_block_fiemap+0x60/0x60
[ 2235.832834]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2235.832869]  ? selinux_file_ioctl+0xb6/0x270
[ 2235.832885]  ? sg_compat_ioctl+0x120/0x120
[ 2235.832903]  sg_ioctl+0x8f/0x120
[ 2235.832924]  __x64_sys_ioctl+0x19a/0x210
[ 2235.832970]  do_syscall_64+0x33/0x40
[ 2235.832986]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2235.832999] RIP: 0033:0x7fb64c457b19
[ 2235.833018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2235.833028] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2235.833049] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2235.833060] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2235.833070] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2235.833081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2235.833092] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:07:12 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xfa01}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x8, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:12 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 16)

04:07:12 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:07:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x80000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:12 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 37)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:12 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2248.837665] FAULT_INJECTION: forcing a failure.
[ 2248.837665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2248.839391] CPU: 1 PID: 11964 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2248.840217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2248.841143] Call Trace:
[ 2248.841463]  dump_stack+0x107/0x167
[ 2248.841899]  should_fail.cold+0x5/0xa
[ 2248.842360]  _copy_from_user+0x2e/0x1b0
[ 2248.842839]  move_addr_to_kernel.part.0+0x31/0x110
[ 2248.843427]  move_addr_to_kernel+0x4f/0x70
[ 2248.843934]  io_connect+0x47a/0x610
[ 2248.844367]  ? io_prep_rw+0x1050/0x1050
[ 2248.844865]  ? __lock_acquire+0xbb1/0x5b00
[ 2248.845388]  io_issue_sqe+0x1611/0x7700
[ 2248.845873]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2248.846499]  ? lock_chain_count+0x20/0x20
[ 2248.846983]  ? __is_insn_slot_addr+0x14c/0x290
[ 2248.847529]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2248.848149]  ? io_connect+0x610/0x610
[ 2248.848584]  ? lock_acquire+0x197/0x470
[ 2248.849057]  ? find_held_lock+0x2c/0x110
[ 2248.849521] FAULT_INJECTION: forcing a failure.
[ 2248.849521] name failslab, interval 1, probability 0, space 0, times 0
[ 2248.849565]  ? __fget_files+0x26d/0x4c0
[ 2248.849577]  ? lock_downgrade+0x6d0/0x6d0
[ 2248.849592]  __io_queue_sqe+0x90/0x9d0
[ 2248.849616]  ? io_issue_sqe+0x7700/0x7700
[ 2248.853790]  io_submit_sqes+0x4461/0x85c0
[ 2248.854301]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2248.854891]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2248.855467]  ? lock_downgrade+0x6d0/0x6d0
[ 2248.855930]  ? find_held_lock+0x2c/0x110
[ 2248.856418]  ? io_submit_sqes+0x85c0/0x85c0
[ 2248.856908]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2248.857504]  ? wait_for_completion_io+0x270/0x270
[ 2248.858043]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2248.858592]  ? vfs_write+0x354/0xa70
[ 2248.859009]  ? fput_many+0x2f/0x1a0
[ 2248.859436]  ? ksys_write+0x1a9/0x260
[ 2248.859861]  ? __ia32_sys_read+0xb0/0xb0
[ 2248.860345]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2248.860919]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2248.861537]  do_syscall_64+0x33/0x40
[ 2248.861951]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2248.862560] RIP: 0033:0x7f1edfa23b19
[ 2248.862987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2248.865140] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2248.865993] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2248.866827] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2248.867660] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2248.868485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2248.869323] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2248.870203] CPU: 0 PID: 11966 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2248.870543] device veth0_vlan entered promiscuous mode
[ 2248.871653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2248.871660] Call Trace:
[ 2248.871688]  dump_stack+0x107/0x167
[ 2248.875295]  should_fail.cold+0x5/0xa
[ 2248.876094]  ? relay_open_buf.part.0+0x472/0xc00
[ 2248.877084]  should_failslab+0x5/0x20
[ 2248.877902]  __kmalloc+0x72/0x390
[ 2248.878628]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2248.879687]  relay_open_buf.part.0+0x472/0xc00
[ 2248.880649]  relay_open+0x531/0xa10
[ 2248.881423]  do_blk_trace_setup+0x4cf/0xc10
[ 2248.882324]  ? _copy_from_user+0xfb/0x1b0
[ 2248.883190]  __blk_trace_setup+0xca/0x180
[ 2248.884053]  ? do_blk_trace_setup+0xc10/0xc10
[ 2248.885000]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2248.886106]  blk_trace_setup+0x43/0x60
[ 2248.886920]  sg_ioctl_common+0x634/0x2570
[ 2248.887785]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2248.888856]  ? do_vfs_ioctl+0x283/0x10d0
[ 2248.889714]  ? sg_write+0x120/0x120
[ 2248.890469]  ? generic_block_fiemap+0x60/0x60
[ 2248.891402]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2248.892419]  ? selinux_file_ioctl+0xb6/0x270
[ 2248.893338]  ? sg_compat_ioctl+0x120/0x120
[ 2248.894218]  sg_ioctl+0x8f/0x120
[ 2248.894927]  __x64_sys_ioctl+0x19a/0x210
[ 2248.895780]  do_syscall_64+0x33/0x40
[ 2248.896553]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2248.897624] RIP: 0033:0x7fb64c457b19
[ 2248.898397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2248.902229] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2248.903809] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2248.905302] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2248.906784] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2248.908264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2248.909756] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2248.915501] FAULT_INJECTION: forcing a failure.
[ 2248.915501] name failslab, interval 1, probability 0, space 0, times 0
[ 2248.916797] CPU: 1 PID: 11954 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2248.917568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2248.918469] Call Trace:
[ 2248.918764]  dump_stack+0x107/0x167
[ 2248.919177]  should_fail.cold+0x5/0xa
[ 2248.919594]  ? rt6_flush_exceptions+0x6b/0x80
[ 2248.920082]  ? create_object.isra.0+0x3a/0xa20
[ 2248.920573]  should_failslab+0x5/0x20
[ 2248.920995]  kmem_cache_alloc+0x5b/0x310
[ 2248.921445]  create_object.isra.0+0x3a/0xa20
[ 2248.921936]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2248.922513]  kmem_cache_alloc_node+0x169/0x330
[ 2248.923014]  __alloc_skb+0x6d/0x5b0
[ 2248.923419]  inet6_rt_notify+0xed/0x2a0
[ 2248.923870]  fib6_del+0xf4c/0x1540
[ 2248.924280]  ? fib6_locate+0x660/0x660
[ 2248.924704]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2248.925271]  ? fib6_ifdown+0xc5/0x8f0
[ 2248.925712]  fib6_clean_node+0x39e/0x570
[ 2248.926160]  ? fib6_del+0x1540/0x1540
[ 2248.926578]  ? fib6_clean_tree+0x14c/0x260
[ 2248.927066]  fib6_walk_continue+0x35c/0x710
[ 2248.927547]  ? trace_hardirqs_on+0x5b/0x180
[ 2248.928027]  fib6_clean_tree+0x154/0x260
[ 2248.928485]  ? fib6_ifup+0x260/0x260
[ 2248.928885]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2248.929415]  ? fib6_del+0x1540/0x1540
[ 2248.929823]  ? fib6_ifup+0x260/0x260
[ 2248.930244]  ? rwlock_bug.part.0+0x90/0x90
[ 2248.930719]  ? lock_chain_count+0x20/0x20
[ 2248.931184]  ? fib6_ifup+0x260/0x260
[ 2248.931585]  __fib6_clean_all+0xf0/0x2a0
[ 2248.932034]  rt6_disable_ip+0x4d5/0x5b0
[ 2248.932491]  ? rt6_sync_down_dev+0x150/0x150
[ 2248.932971]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2248.933502]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2248.934070]  ? addrconf_dad_run+0x180/0x180
[ 2248.934555]  addrconf_notify+0x159/0x2410
[ 2248.935001]  ? tun_device_event+0x71/0x1160
[ 2248.935483]  ? mark_held_locks+0x9e/0xe0
[ 2248.935917]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2248.936491]  ? inet6_ifinfo_notify+0x150/0x150
[ 2248.936997]  ? failover_register+0x530/0x530
[ 2248.937507]  raw_notifier_call_chain+0xb3/0x110
[ 2248.938036]  call_netdevice_notifiers_info+0xb5/0x130
[ 2248.938615]  dev_close_many+0x25b/0x460
[ 2248.939064]  ? __dev_close_many+0x2f0/0x2f0
[ 2248.939551]  ? mark_held_locks+0x9e/0xe0
[ 2248.940012]  unregister_netdevice_many+0x349/0x1490
[ 2248.940568]  ? trace_hardirqs_on+0x5b/0x180
[ 2248.941048]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2248.941659]  ? netdev_pick_tx+0xc70/0xc70
[ 2248.942136]  ? queue_delayed_work_on+0x85/0xe0
[ 2248.942647]  ? queue_delayed_work_on+0xb4/0xe0
[ 2248.943144]  ? queue_delayed_work_on+0x88/0xe0
[ 2248.943661]  unregister_netdevice_queue+0x201/0x2c0
[ 2248.944225]  ? unregister_netdevice_many+0x1490/0x1490
[ 2248.944819]  ? linkwatch_fire_event+0x63/0x190
[ 2248.945353]  __tun_detach+0xf92/0x1280
[ 2248.945789]  tun_chr_close+0xc4/0x250
[ 2248.946219]  __fput+0x285/0x980
[ 2248.946589]  ? __tun_detach+0x1280/0x1280
[ 2248.947050]  task_work_run+0xe2/0x1a0
[ 2248.947475]  exit_to_user_mode_prepare+0x186/0x190
[ 2248.948023]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2248.948562]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2248.949135] RIP: 0033:0x7ff4e0665b19
[ 2248.949552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2248.951576] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2248.952417] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2248.953205] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2248.954002] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2248.954794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2248.955584] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:07:13 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:13 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x1000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2249.034665] device veth0_vlan entered promiscuous mode
04:07:13 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:07:13 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 17)

[ 2249.090749] FAULT_INJECTION: forcing a failure.
[ 2249.090749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2249.092335] CPU: 1 PID: 11984 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2249.093117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2249.094011] Call Trace:
[ 2249.094310]  dump_stack+0x107/0x167
[ 2249.094723]  should_fail.cold+0x5/0xa
[ 2249.095154]  _copy_from_user+0x2e/0x1b0
[ 2249.095602]  move_addr_to_kernel.part.0+0x31/0x110
[ 2249.096149]  move_addr_to_kernel+0x4f/0x70
[ 2249.096615]  io_connect+0x47a/0x610
[ 2249.097026]  ? io_prep_rw+0x1050/0x1050
[ 2249.097497]  ? __lock_acquire+0xbb1/0x5b00
[ 2249.097980]  io_issue_sqe+0x1611/0x7700
[ 2249.098438]  ? perf_trace_lock+0xac/0x490
[ 2249.098906]  ? __lockdep_reset_lock+0x180/0x180
[ 2249.099416]  ? io_connect+0x610/0x610
[ 2249.099842]  ? lock_acquire+0x197/0x470
[ 2249.100285]  ? find_held_lock+0x2c/0x110
[ 2249.100749]  ? __fget_files+0x26d/0x4c0
[ 2249.101216]  ? lock_downgrade+0x6d0/0x6d0
[ 2249.101693]  __io_queue_sqe+0x90/0x9d0
[ 2249.102145]  ? io_issue_sqe+0x7700/0x7700
[ 2249.102622]  io_submit_sqes+0x4461/0x85c0
[ 2249.103127]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2249.103697]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2249.104250]  ? lock_downgrade+0x6d0/0x6d0
[ 2249.104718]  ? find_held_lock+0x2c/0x110
[ 2249.105202]  ? io_submit_sqes+0x85c0/0x85c0
[ 2249.105707]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2249.106258]  ? wait_for_completion_io+0x270/0x270
[ 2249.106814]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2249.107346]  ? vfs_write+0x354/0xa70
[ 2249.107766]  ? fput_many+0x2f/0x1a0
[ 2249.108168]  ? ksys_write+0x1a9/0x260
[ 2249.108589]  ? __ia32_sys_read+0xb0/0xb0
[ 2249.109051]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2249.109635]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2249.110203]  do_syscall_64+0x33/0x40
[ 2249.110611]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2249.111173] RIP: 0033:0x7f1edfa23b19
[ 2249.111585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2249.113592] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2249.114423] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2249.115202] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2249.115996] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2249.116763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2249.117578] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:07:13 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 38)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:13 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:13 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2249.145703] FAULT_INJECTION: forcing a failure.
[ 2249.145703] name failslab, interval 1, probability 0, space 0, times 0
[ 2249.147253] CPU: 1 PID: 11986 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2249.148010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2249.148893] Call Trace:
[ 2249.149185]  dump_stack+0x107/0x167
[ 2249.149579]  should_fail.cold+0x5/0xa
[ 2249.149989]  ? create_object.isra.0+0x3a/0xa20
[ 2249.150485]  should_failslab+0x5/0x20
[ 2249.150909]  kmem_cache_alloc+0x5b/0x310
[ 2249.151354]  ? mark_held_locks+0x9e/0xe0
[ 2249.151791]  create_object.isra.0+0x3a/0xa20
[ 2249.152287]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2249.152834]  __kmalloc+0x16e/0x390
[ 2249.153249]  relay_open_buf.part.0+0x472/0xc00
[ 2249.153750]  relay_open+0x531/0xa10
[ 2249.154165]  do_blk_trace_setup+0x4cf/0xc10
[ 2249.154649]  ? _copy_from_user+0xfb/0x1b0
[ 2249.155111]  __blk_trace_setup+0xca/0x180
[ 2249.155557]  ? do_blk_trace_setup+0xc10/0xc10
[ 2249.156069]  ? perf_trace_lock+0xac/0x490
[ 2249.156544]  blk_trace_setup+0x43/0x60
[ 2249.156981]  sg_ioctl_common+0x634/0x2570
[ 2249.157451]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2249.158028]  ? do_vfs_ioctl+0x283/0x10d0
[ 2249.158478]  ? sg_write+0x120/0x120
[ 2249.158875]  ? generic_block_fiemap+0x60/0x60
[ 2249.159386]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2249.159940]  ? selinux_file_ioctl+0xb6/0x270
[ 2249.160426]  ? sg_compat_ioctl+0x120/0x120
[ 2249.160902]  sg_ioctl+0x8f/0x120
[ 2249.161277]  __x64_sys_ioctl+0x19a/0x210
[ 2249.161729]  do_syscall_64+0x33/0x40
[ 2249.162145]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2249.162720] RIP: 0033:0x7fb64c457b19
[ 2249.163138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2249.165120] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2249.165937] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2249.166723] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2249.167511] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2249.168303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2249.169088] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:07:13 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

[ 2249.196230] device veth0_vlan entered promiscuous mode
04:07:13 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x2000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:13 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0xd, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:13 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 39)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2249.271944] device veth0_vlan entered promiscuous mode
[ 2249.299568] FAULT_INJECTION: forcing a failure.
[ 2249.299568] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2249.301031] CPU: 1 PID: 12009 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2249.301798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2249.302677] Call Trace:
[ 2249.302970]  dump_stack+0x107/0x167
[ 2249.303368]  should_fail.cold+0x5/0xa
[ 2249.303788]  __alloc_pages_nodemask+0x182/0x600
[ 2249.304302]  ? __kmalloc+0x16e/0x390
[ 2249.304702]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2249.305374]  ? trace_hardirqs_on+0x5b/0x180
[ 2249.305850]  alloc_pages_current+0x187/0x280
[ 2249.306341]  relay_open_buf.part.0+0x2a5/0xc00
[ 2249.306843]  relay_open+0x531/0xa10
[ 2249.307247]  do_blk_trace_setup+0x4cf/0xc10
[ 2249.307720]  ? _copy_from_user+0xfb/0x1b0
[ 2249.308168]  __blk_trace_setup+0xca/0x180
[ 2249.308614]  ? do_blk_trace_setup+0xc10/0xc10
[ 2249.309113]  ? perf_trace_lock+0xac/0x490
[ 2249.309589]  blk_trace_setup+0x43/0x60
[ 2249.310029]  sg_ioctl_common+0x634/0x2570
[ 2249.310485]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2249.311072]  ? do_vfs_ioctl+0x283/0x10d0
[ 2249.311508]  ? sg_write+0x120/0x120
[ 2249.311909]  ? generic_block_fiemap+0x60/0x60
[ 2249.312415]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2249.312976]  ? selinux_file_ioctl+0xb6/0x270
[ 2249.313462]  ? sg_compat_ioctl+0x120/0x120
[ 2249.313939]  sg_ioctl+0x8f/0x120
[ 2249.314315]  __x64_sys_ioctl+0x19a/0x210
[ 2249.314767]  do_syscall_64+0x33/0x40
[ 2249.315185]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2249.315752] RIP: 0033:0x7fb64c457b19
[ 2249.316150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2249.318206] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2249.319010] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2249.319800] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2249.320560] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2249.321375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2249.322150] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2249.339259] FAULT_INJECTION: forcing a failure.
[ 2249.339259] name failslab, interval 1, probability 0, space 0, times 0
[ 2249.341695] CPU: 0 PID: 11992 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2249.343133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2249.344851] Call Trace:
[ 2249.345425]  dump_stack+0x107/0x167
[ 2249.346191]  should_fail.cold+0x5/0xa
[ 2249.346995]  should_failslab+0x5/0x20
[ 2249.347795]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2249.348845]  ? inet6_rt_notify+0xed/0x2a0
[ 2249.349721]  __alloc_skb+0xb1/0x5b0
[ 2249.350468]  inet6_rt_notify+0xed/0x2a0
[ 2249.351275]  fib6_del+0xf4c/0x1540
[ 2249.352029]  ? fib6_locate+0x660/0x660
[ 2249.352836]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2249.353895]  ? fib6_ifdown+0xc5/0x8f0
[ 2249.354662]  fib6_clean_node+0x39e/0x570
[ 2249.355484]  ? fib6_del+0x1540/0x1540
[ 2249.356256]  ? fib6_clean_tree+0x14c/0x260
[ 2249.357155]  fib6_walk_continue+0x35c/0x710
[ 2249.358034]  ? trace_hardirqs_on+0x5b/0x180
[ 2249.358897]  fib6_clean_tree+0x154/0x260
[ 2249.359729]  ? fib6_ifup+0x260/0x260
[ 2249.360475]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2249.361428]  ? fib6_del+0x1540/0x1540
[ 2249.362201]  ? fib6_ifup+0x260/0x260
[ 2249.362970]  ? rwlock_bug.part.0+0x90/0x90
[ 2249.363834]  ? lock_chain_count+0x20/0x20
[ 2249.364679]  ? fib6_ifup+0x260/0x260
[ 2249.365454]  __fib6_clean_all+0xf0/0x2a0
[ 2249.366288]  rt6_disable_ip+0x4d5/0x5b0
[ 2249.367110]  ? rt6_sync_down_dev+0x150/0x150
[ 2249.368010]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2249.368974]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2249.370053]  ? addrconf_dad_run+0x180/0x180
[ 2249.370940]  addrconf_notify+0x159/0x2410
[ 2249.371779]  ? tun_device_event+0x71/0x1160
[ 2249.372651]  ? mark_held_locks+0x9e/0xe0
[ 2249.373473]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2249.374508]  ? inet6_ifinfo_notify+0x150/0x150
[ 2249.375429]  ? failover_register+0x530/0x530
[ 2249.376331]  raw_notifier_call_chain+0xb3/0x110
[ 2249.377293]  call_netdevice_notifiers_info+0xb5/0x130
[ 2249.378329]  dev_close_many+0x25b/0x460
[ 2249.379130]  ? __dev_close_many+0x2f0/0x2f0
[ 2249.379997]  ? lock_chain_count+0x20/0x20
[ 2249.380844]  unregister_netdevice_many+0x349/0x1490
[ 2249.381853]  ? netdev_pick_tx+0xc70/0xc70
[ 2249.382680]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2249.383733]  ? queue_delayed_work_on+0xb4/0xe0
[ 2249.384638]  ? trace_hardirqs_on+0x5b/0x180
[ 2249.385521]  unregister_netdevice_queue+0x201/0x2c0
[ 2249.386533]  ? unregister_netdevice_many+0x1490/0x1490
[ 2249.387643]  ? linkwatch_fire_event+0x63/0x190
[ 2249.388568]  __tun_detach+0xf92/0x1280
[ 2249.389403]  tun_chr_close+0xc4/0x250
[ 2249.390158]  __fput+0x285/0x980
[ 2249.390820]  ? __tun_detach+0x1280/0x1280
[ 2249.391672]  task_work_run+0xe2/0x1a0
[ 2249.392445]  exit_to_user_mode_prepare+0x186/0x190
[ 2249.393435]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2249.394402]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2249.395428] RIP: 0033:0x7ff4e0665b19
[ 2249.396177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2249.399871] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2249.401402] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2249.402827] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2249.404273] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2249.405736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2249.407195] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:07:27 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 18)

04:07:27 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:07:27 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:07:27 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 40)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:27 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x3000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:27 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x3, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:27 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2263.790860] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2263.798467] FAULT_INJECTION: forcing a failure.
[ 2263.798467] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2263.801157] CPU: 1 PID: 12031 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2263.802581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2263.804272] Call Trace:
[ 2263.804813]  dump_stack+0x107/0x167
[ 2263.805585]  should_fail.cold+0x5/0xa
[ 2263.806371]  __alloc_pages_nodemask+0x182/0x600
[ 2263.807322]  ? __kmalloc+0x16e/0x390
[ 2263.808090]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2263.809344]  ? trace_hardirqs_on+0x5b/0x180
[ 2263.810236]  alloc_pages_current+0x187/0x280
[ 2263.811143]  relay_open_buf.part.0+0x2a5/0xc00
[ 2263.812090]  relay_open+0x531/0xa10
[ 2263.812846]  do_blk_trace_setup+0x4cf/0xc10
[ 2263.813734]  ? _copy_from_user+0xfb/0x1b0
[ 2263.814588]  __blk_trace_setup+0xca/0x180
[ 2263.815445]  ? do_blk_trace_setup+0xc10/0xc10
[ 2263.816491]  ? perf_trace_lock+0xac/0x490
[ 2263.817470]  blk_trace_setup+0x43/0x60
[ 2263.818374]  sg_ioctl_common+0x634/0x2570
[ 2263.819329]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2263.820516]  ? do_vfs_ioctl+0x283/0x10d0
[ 2263.821452]  ? sg_write+0x120/0x120
[ 2263.822331]  ? generic_block_fiemap+0x60/0x60
[ 2263.823360]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2263.824488]  ? selinux_file_ioctl+0xb6/0x270
[ 2263.825518]  ? sg_compat_ioctl+0x120/0x120
[ 2263.826488]  sg_ioctl+0x8f/0x120
[ 2263.827268]  __x64_sys_ioctl+0x19a/0x210
[ 2263.828203]  do_syscall_64+0x33/0x40
[ 2263.829049]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2263.830219] RIP: 0033:0x7fb64c457b19
[ 2263.831071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2263.835284] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2263.837019] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2263.838681] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2263.838908] device veth0_vlan entered promiscuous mode
[ 2263.840313] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2263.840325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2263.840337] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:07:27 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="18a8c725"]}]}, 0x1c}}, 0x0)

04:07:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2263.877452] FAULT_INJECTION: forcing a failure.
[ 2263.877452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2263.878807] CPU: 0 PID: 12032 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2263.879590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2263.880473] Call Trace:
[ 2263.880781]  dump_stack+0x107/0x167
[ 2263.881194]  should_fail.cold+0x5/0xa
[ 2263.881642]  _copy_from_user+0x2e/0x1b0
[ 2263.882092]  move_addr_to_kernel.part.0+0x31/0x110
[ 2263.882649]  move_addr_to_kernel+0x4f/0x70
[ 2263.883140]  io_connect+0x47a/0x610
[ 2263.883551]  ? io_prep_rw+0x1050/0x1050
[ 2263.884018]  ? __lock_acquire+0xbb1/0x5b00
[ 2263.884482]  io_issue_sqe+0x1611/0x7700
[ 2263.884950]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2263.885548]  ? lock_chain_count+0x20/0x20
[ 2263.886023]  ? __is_insn_slot_addr+0x14c/0x290
[ 2263.886539]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2263.887130]  ? io_connect+0x610/0x610
[ 2263.887574]  ? lock_acquire+0x197/0x470
[ 2263.888058]  ? find_held_lock+0x2c/0x110
[ 2263.888561]  ? __fget_files+0x26d/0x4c0
[ 2263.889042]  ? lock_downgrade+0x6d0/0x6d0
[ 2263.889504]  __io_queue_sqe+0x90/0x9d0
[ 2263.889984]  ? io_issue_sqe+0x7700/0x7700
[ 2263.890493]  io_submit_sqes+0x4461/0x85c0
[ 2263.891018]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2263.891611]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2263.892196]  ? lock_downgrade+0x6d0/0x6d0
[ 2263.892687]  ? find_held_lock+0x2c/0x110
[ 2263.893175]  ? io_submit_sqes+0x85c0/0x85c0
[ 2263.893718]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2263.894294]  ? wait_for_completion_io+0x270/0x270
[ 2263.894806]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2263.895365]  ? vfs_write+0x354/0xa70
[ 2263.895810]  ? fput_many+0x2f/0x1a0
[ 2263.896244]  ? ksys_write+0x1a9/0x260
[ 2263.896699]  ? __ia32_sys_read+0xb0/0xb0
[ 2263.897192]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2263.897834]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2263.898466]  do_syscall_64+0x33/0x40
[ 2263.898910]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2263.899513] RIP: 0033:0x7f1edfa23b19
[ 2263.899905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2263.902075] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2263.902967] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2263.903710] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2263.904558] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2263.905407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2263.906159] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:07:28 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x4000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:28 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c705"]}]}, 0x1c}}, 0x0)

[ 2263.941097] device veth0_vlan entered promiscuous mode
[ 2263.945697] FAULT_INJECTION: forcing a failure.
[ 2263.945697] name failslab, interval 1, probability 0, space 0, times 0
[ 2263.948370] CPU: 1 PID: 12048 Comm: syz-executor.1 Not tainted 5.10.206 #1
04:07:28 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2263.949835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2263.951674] Call Trace:
[ 2263.952233]  dump_stack+0x107/0x167
[ 2263.953000]  should_fail.cold+0x5/0xa
[ 2263.953810]  ? create_object.isra.0+0x3a/0xa20
[ 2263.954759]  should_failslab+0x5/0x20
[ 2263.955571]  kmem_cache_alloc+0x5b/0x310
[ 2263.956429]  create_object.isra.0+0x3a/0xa20
[ 2263.957353]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2263.958416]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2263.959465]  ? inet6_rt_notify+0xed/0x2a0
[ 2263.960339]  __alloc_skb+0xb1/0x5b0
[ 2263.961114]  inet6_rt_notify+0xed/0x2a0
[ 2263.961976]  fib6_del+0xf4c/0x1540
[ 2263.962741]  ? fib6_locate+0x660/0x660
[ 2263.963555]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2263.964619]  ? fib6_ifdown+0xc5/0x8f0
[ 2263.965444]  fib6_clean_node+0x39e/0x570
[ 2263.966280]  ? fib6_del+0x1540/0x1540
[ 2263.967069]  ? fib6_clean_tree+0x14c/0x260
[ 2263.967971]  fib6_walk_continue+0x35c/0x710
[ 2263.968868]  ? trace_hardirqs_on+0x5b/0x180
[ 2263.969779]  fib6_clean_tree+0x154/0x260
[ 2263.970632]  ? fib6_ifup+0x260/0x260
[ 2263.971412]  ? fib6_info_destroy_rcu+0x210/0x210
[ 2263.972399]  ? fib6_del+0x1540/0x1540
[ 2263.973177]  ? fib6_ifup+0x260/0x260
[ 2263.973967]  ? rwlock_bug.part.0+0x90/0x90
[ 2263.974825]  ? lock_chain_count+0x20/0x20
[ 2263.975680]  ? fib6_ifup+0x260/0x260
[ 2263.976438]  __fib6_clean_all+0xf0/0x2a0
[ 2263.977272]  rt6_disable_ip+0x4d5/0x5b0
[ 2263.978120]  ? rt6_sync_down_dev+0x150/0x150
[ 2263.979033]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2263.980030]  ? addrconf_dad_run+0x180/0x180
[ 2263.980958]  addrconf_notify+0x159/0x2410
[ 2263.981843]  ? tun_device_event+0x71/0x1160
[ 2263.982737]  ? mark_held_locks+0x9e/0xe0
[ 2263.983568]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2263.984640]  ? inet6_ifinfo_notify+0x150/0x150
[ 2263.985585]  ? failover_register+0x530/0x530
[ 2263.986529]  raw_notifier_call_chain+0xb3/0x110
[ 2263.987490]  call_netdevice_notifiers_info+0xb5/0x130
[ 2263.988553]  dev_close_many+0x25b/0x460
[ 2263.989383]  ? __dev_close_many+0x2f0/0x2f0
[ 2263.990263]  ? __mod_timer+0x7fb/0xd10
[ 2263.991096]  unregister_netdevice_many+0x349/0x1490
[ 2263.992128]  ? netdev_pick_tx+0xc70/0xc70
[ 2263.993011]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2263.994098]  ? queue_delayed_work_on+0xb4/0xe0
[ 2263.995029]  ? trace_hardirqs_on+0x5b/0x180
[ 2263.995928]  unregister_netdevice_queue+0x201/0x2c0
[ 2263.996956]  ? unregister_netdevice_many+0x1490/0x1490
[ 2263.998043]  ? linkwatch_fire_event+0x63/0x190
[ 2263.998987]  __tun_detach+0xf92/0x1280
[ 2263.999812]  tun_chr_close+0xc4/0x250
[ 2264.000594]  __fput+0x285/0x980
[ 2264.001275]  ? __tun_detach+0x1280/0x1280
[ 2264.002156]  task_work_run+0xe2/0x1a0
[ 2264.002958]  exit_to_user_mode_prepare+0x186/0x190
[ 2264.003967]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2264.004957]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2264.006012] RIP: 0033:0x7ff4e0665b19
[ 2264.006777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2264.010540] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2264.012168] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2264.013644] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2264.015109] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2264.016565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2264.018041] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
04:07:28 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 41)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:28 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x2, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

[ 2264.152323] FAULT_INJECTION: forcing a failure.
[ 2264.152323] name failslab, interval 1, probability 0, space 0, times 0
[ 2264.155184] CPU: 1 PID: 12062 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2264.156637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2264.158351] Call Trace:
[ 2264.158915]  dump_stack+0x107/0x167
[ 2264.159671]  should_fail.cold+0x5/0xa
[ 2264.160484]  ? __get_vm_area_node+0xd4/0x340
[ 2264.161425]  should_failslab+0x5/0x20
[ 2264.162265]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2264.163313]  __get_vm_area_node+0xd4/0x340
[ 2264.164174]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2264.165129]  get_vm_area_caller+0x70/0xb0
[ 2264.165978]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2264.166928]  vmap+0xe9/0x2c0
[ 2264.167553]  ? vunmap+0x70/0x70
[ 2264.168236]  relay_open_buf.part.0+0x4cf/0xc00
[ 2264.169172]  relay_open+0x531/0xa10
[ 2264.169945]  do_blk_trace_setup+0x4cf/0xc10
[ 2264.170827]  ? _copy_from_user+0xfb/0x1b0
[ 2264.171667]  __blk_trace_setup+0xca/0x180
[ 2264.172507]  ? do_blk_trace_setup+0xc10/0xc10
[ 2264.173433]  ? perf_trace_lock+0xac/0x490
[ 2264.174286]  blk_trace_setup+0x43/0x60
[ 2264.175076]  sg_ioctl_common+0x634/0x2570
[ 2264.175925]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2264.176977]  ? do_vfs_ioctl+0x283/0x10d0
[ 2264.177811]  ? sg_write+0x120/0x120
[ 2264.178549]  ? generic_block_fiemap+0x60/0x60
[ 2264.179467]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2264.180463]  ? selinux_file_ioctl+0xb6/0x270
[ 2264.181361]  ? sg_compat_ioctl+0x120/0x120
[ 2264.182217]  sg_ioctl+0x8f/0x120
[ 2264.182909]  __x64_sys_ioctl+0x19a/0x210
[ 2264.183732]  do_syscall_64+0x33/0x40
[ 2264.184485]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2264.185537] RIP: 0033:0x7fb64c457b19
[ 2264.186293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2264.190023] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2264.191565] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2264.193005] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2264.194454] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2264.195894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2264.197363] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:07:43 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 42)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:43 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:43 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x8, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:43 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:43 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xf}}, 0x0)

04:07:43 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:07:43 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 19)

04:07:43 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2279.057106] device veth0_vlan entered promiscuous mode
[ 2279.065383] FAULT_INJECTION: forcing a failure.
[ 2279.065383] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.068204] CPU: 1 PID: 12074 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2279.069632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.071314] Call Trace:
[ 2279.071853]  dump_stack+0x107/0x167
[ 2279.072618]  should_fail.cold+0x5/0xa
[ 2279.073403]  ? create_object.isra.0+0x3a/0xa20
[ 2279.074354]  should_failslab+0x5/0x20
[ 2279.075131]  kmem_cache_alloc+0x5b/0x310
[ 2279.075965]  create_object.isra.0+0x3a/0xa20
[ 2279.076860]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2279.077760] FAULT_INJECTION: forcing a failure.
[ 2279.077760] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2279.077919]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2279.077952]  __get_vm_area_node+0xd4/0x340
[ 2279.081140]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2279.082111]  get_vm_area_caller+0x70/0xb0
[ 2279.082939]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2279.083907]  vmap+0xe9/0x2c0
[ 2279.084540]  ? vunmap+0x70/0x70
[ 2279.085245]  relay_open_buf.part.0+0x4cf/0xc00
[ 2279.086200]  relay_open+0x531/0xa10
[ 2279.086954]  do_blk_trace_setup+0x4cf/0xc10
[ 2279.087829]  ? _copy_from_user+0xfb/0x1b0
[ 2279.088694]  __blk_trace_setup+0xca/0x180
[ 2279.089566]  ? do_blk_trace_setup+0xc10/0xc10
[ 2279.090500]  ? perf_trace_lock+0xac/0x490
[ 2279.091365]  blk_trace_setup+0x43/0x60
[ 2279.092152]  sg_ioctl_common+0x634/0x2570
[ 2279.092997]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2279.094066]  ? do_vfs_ioctl+0x283/0x10d0
[ 2279.094900]  ? sg_write+0x120/0x120
[ 2279.095653]  ? generic_block_fiemap+0x60/0x60
[ 2279.096576]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2279.097597]  ? selinux_file_ioctl+0xb6/0x270
[ 2279.098506]  ? sg_compat_ioctl+0x120/0x120
[ 2279.099371]  sg_ioctl+0x8f/0x120
[ 2279.100066]  __x64_sys_ioctl+0x19a/0x210
[ 2279.100912]  do_syscall_64+0x33/0x40
[ 2279.101670]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.102722] RIP: 0033:0x7fb64c457b19
[ 2279.103475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.107230] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2279.108769] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2279.110251] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2279.111706] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.113170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.114631] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2279.116104] CPU: 0 PID: 12090 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2279.116940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.117909] Call Trace:
[ 2279.118227]  dump_stack+0x107/0x167
[ 2279.118658]  should_fail.cold+0x5/0xa
[ 2279.119104]  _copy_from_user+0x2e/0x1b0
[ 2279.119562]  move_addr_to_kernel.part.0+0x31/0x110
[ 2279.120134]  move_addr_to_kernel+0x4f/0x70
[ 2279.120624]  io_connect+0x47a/0x610
[ 2279.121051]  ? io_prep_rw+0x1050/0x1050
[ 2279.121537]  ? __lock_acquire+0xbb1/0x5b00
[ 2279.122030]  io_issue_sqe+0x1611/0x7700
[ 2279.122488]  ? perf_trace_lock+0xac/0x490
[ 2279.122969]  ? __lockdep_reset_lock+0x180/0x180
[ 2279.123511]  ? io_connect+0x610/0x610
[ 2279.123956]  ? lock_acquire+0x197/0x470
[ 2279.124407]  ? find_held_lock+0x2c/0x110
[ 2279.124882]  ? __fget_files+0x26d/0x4c0
[ 2279.125342]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.125831]  __io_queue_sqe+0x90/0x9d0
[ 2279.126289]  ? io_issue_sqe+0x7700/0x7700
[ 2279.126774]  io_submit_sqes+0x4461/0x85c0
[ 2279.127270]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2279.127845]  __do_sys_io_uring_enter+0x6b5/0x1920
04:07:43 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x14}}, 0x0)

[ 2279.128402]  ? lock_downgrade+0x6d0/0x6d0
[ 2279.129012]  ? find_held_lock+0x2c/0x110
[ 2279.129498]  ? io_submit_sqes+0x85c0/0x85c0
[ 2279.130002]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2279.130564]  ? wait_for_completion_io+0x270/0x270
[ 2279.131123]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2279.131664]  ? vfs_write+0x354/0xa70
[ 2279.132089]  ? fput_many+0x2f/0x1a0
[ 2279.132513]  ? ksys_write+0x1a9/0x260
[ 2279.132952]  ? __ia32_sys_read+0xb0/0xb0
[ 2279.133412]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2279.134011]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2279.134610]  do_syscall_64+0x33/0x40
[ 2279.135042]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.135639] RIP: 0033:0x7f1edfa23b19
[ 2279.136067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.138179] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2279.139049] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2279.139880] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2279.140690] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.141512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.142333] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2279.189575] device veth0_vlan entered promiscuous mode
[ 2279.192775] FAULT_INJECTION: forcing a failure.
04:07:43 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2279.192775] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.194463] CPU: 0 PID: 12094 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2279.195261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.196211] Call Trace:
[ 2279.196520]  dump_stack+0x107/0x167
[ 2279.196945]  should_fail.cold+0x5/0xa
[ 2279.197402]  ? __alloc_skb+0x6d/0x5b0
[ 2279.197869]  should_failslab+0x5/0x20
[ 2279.198310]  kmem_cache_alloc_node+0x55/0x330
[ 2279.198827]  __alloc_skb+0x6d/0x5b0
[ 2279.199262]  __neigh_notify+0x84/0x160
[ 2279.199722]  neigh_cleanup_and_release+0x78/0x220
[ 2279.200273]  neigh_flush_dev+0x4ad/0x8b0
[ 2279.200734]  __neigh_ifdown.isra.0+0x54/0x380
[ 2279.201258]  neigh_ifdown+0x1b/0x30
[ 2279.201693]  rt6_disable_ip+0x478/0x5b0
[ 2279.202156]  ? rt6_sync_down_dev+0x150/0x150
[ 2279.202683]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2279.203241]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.203865]  ? addrconf_dad_run+0x180/0x180
[ 2279.204377]  addrconf_notify+0x159/0x2410
[ 2279.204861]  ? tun_device_event+0x71/0x1160
[ 2279.205377]  ? mark_held_locks+0x9e/0xe0
[ 2279.205841]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2279.206444]  ? inet6_ifinfo_notify+0x150/0x150
[ 2279.206972]  ? failover_register+0x530/0x530
[ 2279.207485]  raw_notifier_call_chain+0xb3/0x110
[ 2279.208033]  call_netdevice_notifiers_info+0xb5/0x130
[ 2279.208625]  dev_close_many+0x25b/0x460
[ 2279.209091]  ? __dev_close_many+0x2f0/0x2f0
[ 2279.209609]  ? mark_held_locks+0x9e/0xe0
[ 2279.210087]  unregister_netdevice_many+0x349/0x1490
[ 2279.210660]  ? trace_hardirqs_on+0x5b/0x180
[ 2279.211166]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2279.211806]  ? netdev_pick_tx+0xc70/0xc70
[ 2279.212274]  ? queue_delayed_work_on+0x85/0xe0
[ 2279.212810]  ? queue_delayed_work_on+0xb4/0xe0
[ 2279.213356]  ? queue_delayed_work_on+0x88/0xe0
[ 2279.213909]  unregister_netdevice_queue+0x201/0x2c0
[ 2279.214505]  ? unregister_netdevice_many+0x1490/0x1490
[ 2279.215109]  ? linkwatch_fire_event+0x63/0x190
[ 2279.215652]  __tun_detach+0xf92/0x1280
[ 2279.216119]  tun_chr_close+0xc4/0x250
[ 2279.216567]  __fput+0x285/0x980
[ 2279.216949]  ? __tun_detach+0x1280/0x1280
[ 2279.217430]  task_work_run+0xe2/0x1a0
[ 2279.217859]  exit_to_user_mode_prepare+0x186/0x190
[ 2279.218433]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2279.218964]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.219551] RIP: 0033:0x7ff4e0665b19
[ 2279.219980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.222099] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2279.222962] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2279.223787] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2279.224606] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.225450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.226305] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
04:07:43 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:43 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 20)

04:07:43 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

04:07:43 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xc0}}, 0x0)

04:07:43 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 43)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2279.360246] device veth0_vlan entered promiscuous mode
04:07:43 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:43 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0xd, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:43 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2279.418603] FAULT_INJECTION: forcing a failure.
[ 2279.418603] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.421402] CPU: 1 PID: 12117 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2279.421412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.421418] Call Trace:
[ 2279.421442]  dump_stack+0x107/0x167
[ 2279.421466]  should_fail.cold+0x5/0xa
[ 2279.421497]  ? alloc_vmap_area+0x148/0x1d10
[ 2279.421518]  should_failslab+0x5/0x20
[ 2279.421536]  kmem_cache_alloc_node+0x55/0x330
[ 2279.421561]  alloc_vmap_area+0x148/0x1d10
[ 2279.421579]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 2279.421605]  ? mark_held_locks+0x9e/0xe0
[ 2279.421632]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2279.421654]  ? kasan_unpoison_shadow+0x33/0x50
[ 2279.421675]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2279.421698]  __get_vm_area_node+0x127/0x340
[ 2279.421716]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2279.421738]  get_vm_area_caller+0x70/0xb0
[ 2279.421754]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2279.421773]  vmap+0xe9/0x2c0
[ 2279.421792]  ? vunmap+0x70/0x70
[ 2279.421822]  relay_open_buf.part.0+0x4cf/0xc00
[ 2279.421852]  relay_open+0x531/0xa10
[ 2279.421883]  do_blk_trace_setup+0x4cf/0xc10
[ 2279.421907]  ? _copy_from_user+0xfb/0x1b0
[ 2279.421928]  __blk_trace_setup+0xca/0x180
[ 2279.443617]  ? do_blk_trace_setup+0xc10/0xc10
[ 2279.444554]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.445622]  ? find_held_lock+0x2c/0x110
[ 2279.446456]  blk_trace_setup+0x43/0x60
[ 2279.447256]  sg_ioctl_common+0x634/0x2570
[ 2279.448102]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2279.449150]  ? do_vfs_ioctl+0x283/0x10d0
[ 2279.450002]  ? sg_write+0x120/0x120
[ 2279.450744]  ? generic_block_fiemap+0x60/0x60
[ 2279.451668]  ? clockevents_program_event+0x131/0x360
[ 2279.452716]  ? selinux_file_ioctl+0xb6/0x270
[ 2279.453612]  ? sg_compat_ioctl+0x120/0x120
[ 2279.454486]  sg_ioctl+0x8f/0x120
[ 2279.455187]  __x64_sys_ioctl+0x19a/0x210
[ 2279.456021]  do_syscall_64+0x33/0x40
[ 2279.456774]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.457842] RIP: 0033:0x7fb64c457b19
[ 2279.458607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.462363] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2279.463892] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2279.465327] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2279.466786] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.468220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.469668] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2279.503624] device veth0_vlan entered promiscuous mode
04:07:43 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

[ 2279.524215] FAULT_INJECTION: forcing a failure.
[ 2279.524215] name failslab, interval 1, probability 0, space 0, times 0
[ 2279.525569] CPU: 0 PID: 12115 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2279.526349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2279.527283] Call Trace:
[ 2279.527586]  dump_stack+0x107/0x167
[ 2279.527999]  should_fail.cold+0x5/0xa
[ 2279.528428]  ? create_object.isra.0+0x3a/0xa20
[ 2279.528945]  should_failslab+0x5/0x20
[ 2279.529370]  kmem_cache_alloc+0x5b/0x310
[ 2279.529842]  create_object.isra.0+0x3a/0xa20
[ 2279.530331]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2279.530911]  kmem_cache_alloc_node+0x169/0x330
[ 2279.531429]  __alloc_skb+0x6d/0x5b0
[ 2279.531840]  __neigh_notify+0x84/0x160
[ 2279.532281]  neigh_cleanup_and_release+0x78/0x220
[ 2279.532819]  neigh_flush_dev+0x4ad/0x8b0
[ 2279.533304]  __neigh_ifdown.isra.0+0x54/0x380
[ 2279.533815]  neigh_ifdown+0x1b/0x30
[ 2279.534249]  rt6_disable_ip+0x478/0x5b0
[ 2279.534728]  ? rt6_sync_down_dev+0x150/0x150
[ 2279.535257]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2279.535814]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2279.536430]  ? addrconf_dad_run+0x180/0x180
[ 2279.536949]  addrconf_notify+0x159/0x2410
[ 2279.537429]  ? tun_device_event+0x71/0x1160
[ 2279.537938]  ? mark_held_locks+0x9e/0xe0
[ 2279.538430]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2279.539030]  ? inet6_ifinfo_notify+0x150/0x150
[ 2279.539562]  ? failover_register+0x530/0x530
[ 2279.540076]  raw_notifier_call_chain+0xb3/0x110
[ 2279.540621]  call_netdevice_notifiers_info+0xb5/0x130
[ 2279.541213]  dev_close_many+0x25b/0x460
[ 2279.541690]  ? __dev_close_many+0x2f0/0x2f0
[ 2279.542185]  ? lock_chain_count+0x20/0x20
[ 2279.542663]  ? find_held_lock+0x2c/0x110
[ 2279.543142]  unregister_netdevice_many+0x349/0x1490
[ 2279.543719]  ? netdev_pick_tx+0xc70/0xc70
[ 2279.544200]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2279.544805]  ? queue_delayed_work_on+0xb4/0xe0
[ 2279.545343]  ? trace_hardirqs_on+0x5b/0x180
[ 2279.545851]  unregister_netdevice_queue+0x201/0x2c0
[ 2279.546432]  ? unregister_netdevice_many+0x1490/0x1490
[ 2279.547035]  ? linkwatch_fire_event+0x63/0x190
[ 2279.547570]  __tun_detach+0xf92/0x1280
[ 2279.548029]  tun_chr_close+0xc4/0x250
[ 2279.548478]  __fput+0x285/0x980
[ 2279.548855]  ? __tun_detach+0x1280/0x1280
[ 2279.549337]  task_work_run+0xe2/0x1a0
[ 2279.549793]  exit_to_user_mode_prepare+0x186/0x190
[ 2279.550369]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2279.550923]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2279.551518] RIP: 0033:0x7ff4e0665b19
[ 2279.551941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2279.554053] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2279.554914] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2279.555726] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2279.556545] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2279.557359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2279.558177] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:07:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xec0}}, 0x0)

04:07:57 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 21)

04:07:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:07:57 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:07:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x4, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:57 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 44)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:07:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}}, 0x0)

04:07:57 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

[ 2293.742095] FAULT_INJECTION: forcing a failure.
[ 2293.742095] name failslab, interval 1, probability 0, space 0, times 0
[ 2293.745232] CPU: 1 PID: 12152 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2293.746621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.748287] Call Trace:
[ 2293.748816]  dump_stack+0x107/0x167
[ 2293.749560]  should_fail.cold+0x5/0xa
[ 2293.750341]  ? create_object.isra.0+0x3a/0xa20
[ 2293.751261]  ? create_object.isra.0+0x3a/0xa20
[ 2293.752173]  should_failslab+0x5/0x20
[ 2293.752938]  kmem_cache_alloc+0x5b/0x310
[ 2293.753767]  ? do_blk_trace_setup+0x4cf/0xc10
[ 2293.753782]  ? __blk_trace_setup+0xca/0x180
[ 2293.753804]  create_object.isra.0+0x3a/0xa20
[ 2293.753824]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2293.753848]  kmem_cache_alloc_node+0x169/0x330
[ 2293.753874]  alloc_vmap_area+0x148/0x1d10
[ 2293.753892]  ? kmem_cache_alloc_node_trace+0x16d/0x340
04:07:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c705"]}]}, 0x1c}}, 0x0)

[ 2293.753917]  ? mark_held_locks+0x9e/0xe0
[ 2293.753945]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2293.753967]  ? kasan_unpoison_shadow+0x33/0x50
[ 2293.753988]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
04:07:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x33fe0}}, 0x0)

[ 2293.754011]  __get_vm_area_node+0x127/0x340
[ 2293.754029]  ? relay_open_buf.part.0+0x4cf/0xc00
04:07:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:07:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2293.754050]  get_vm_area_caller+0x70/0xb0
[ 2293.754067]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2293.754085]  vmap+0xe9/0x2c0
[ 2293.754104]  ? vunmap+0x70/0x70
[ 2293.754134]  relay_open_buf.part.0+0x4cf/0xc00
[ 2293.754165]  relay_open+0x531/0xa10
[ 2293.754190]  do_blk_trace_setup+0x4cf/0xc10
[ 2293.754211]  ? _copy_from_user+0xfb/0x1b0
[ 2293.754231]  __blk_trace_setup+0xca/0x180
[ 2293.754249]  ? do_blk_trace_setup+0xc10/0xc10
[ 2293.754279]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.754306]  blk_trace_setup+0x43/0x60
[ 2293.754329]  sg_ioctl_common+0x634/0x2570
[ 2293.754350]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2293.754368]  ? do_vfs_ioctl+0x283/0x10d0
[ 2293.754384]  ? sg_write+0x120/0x120
[ 2293.754401]  ? generic_block_fiemap+0x60/0x60
[ 2293.754423]  ? __mutex_unlock_slowpath+0xe1/0x600
04:07:58 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xf}}, 0x0)

04:07:58 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 45)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2293.754458]  ? selinux_file_ioctl+0xb6/0x270
[ 2293.754474]  ? sg_compat_ioctl+0x120/0x120
[ 2293.754492]  sg_ioctl+0x8f/0x120
[ 2293.754512]  __x64_sys_ioctl+0x19a/0x210
[ 2293.754536]  do_syscall_64+0x33/0x40
[ 2293.754553]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2293.754565] RIP: 0033:0x7fb64c457b19
[ 2293.754585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.754595] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2293.754616] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2293.754628] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2293.754638] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.754649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.754660] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2293.782781] FAULT_INJECTION: forcing a failure.
[ 2293.782781] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2293.782803] CPU: 0 PID: 12156 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2293.782814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.782820] Call Trace:
[ 2293.782845]  dump_stack+0x107/0x167
[ 2293.782876]  should_fail.cold+0x5/0xa
[ 2293.782903]  _copy_from_user+0x2e/0x1b0
[ 2293.782927]  move_addr_to_kernel.part.0+0x31/0x110
[ 2293.782949]  move_addr_to_kernel+0x4f/0x70
[ 2293.782969]  io_connect+0x47a/0x610
[ 2293.782989]  ? io_prep_rw+0x1050/0x1050
[ 2293.783027]  ? __lock_acquire+0xbb1/0x5b00
[ 2293.783052]  io_issue_sqe+0x1611/0x7700
[ 2293.783078]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.783099]  ? lock_chain_count+0x20/0x20
[ 2293.783117]  ? __is_insn_slot_addr+0x14c/0x290
[ 2293.783138]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.783154]  ? io_connect+0x610/0x610
[ 2293.783176]  ? lock_acquire+0x197/0x470
[ 2293.783192]  ? find_held_lock+0x2c/0x110
[ 2293.783217]  ? __fget_files+0x26d/0x4c0
[ 2293.783235]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.783259]  __io_queue_sqe+0x90/0x9d0
[ 2293.783283]  ? io_issue_sqe+0x7700/0x7700
[ 2293.783316]  io_submit_sqes+0x4461/0x85c0
[ 2293.783361]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2293.783378]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2293.783400]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.783420]  ? find_held_lock+0x2c/0x110
[ 2293.783443]  ? io_submit_sqes+0x85c0/0x85c0
[ 2293.783470]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2293.783493]  ? wait_for_completion_io+0x270/0x270
[ 2293.783515]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2293.783531]  ? vfs_write+0x354/0xa70
[ 2293.783553]  ? fput_many+0x2f/0x1a0
[ 2293.783571]  ? ksys_write+0x1a9/0x260
[ 2293.783590]  ? __ia32_sys_read+0xb0/0xb0
[ 2293.783613]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.783630]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2293.783654]  do_syscall_64+0x33/0x40
[ 2293.783671]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2293.783683] RIP: 0033:0x7f1edfa23b19
[ 2293.783703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.783714] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2293.783734] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2293.783745] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2293.783756] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.783767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.783778] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2293.829233] device veth0_vlan entered promiscuous mode
[ 2293.832463] device veth0_vlan entered promiscuous mode
[ 2293.982779] FAULT_INJECTION: forcing a failure.
[ 2293.982779] name failslab, interval 1, probability 0, space 0, times 0
[ 2293.982851] CPU: 0 PID: 12164 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2293.982869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2293.982875] Call Trace:
[ 2293.982900]  dump_stack+0x107/0x167
[ 2293.982926]  should_fail.cold+0x5/0xa
[ 2293.982954]  should_failslab+0x5/0x20
[ 2293.982975]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2293.982995]  ? __neigh_notify+0x84/0x160
[ 2293.983020]  __alloc_skb+0xb1/0x5b0
[ 2293.983046]  __neigh_notify+0x84/0x160
[ 2293.983071]  neigh_cleanup_and_release+0x78/0x220
[ 2293.983092]  neigh_flush_dev+0x4ad/0x8b0
[ 2293.983132]  __neigh_ifdown.isra.0+0x54/0x380
[ 2293.983161]  neigh_ifdown+0x1b/0x30
[ 2293.983182]  rt6_disable_ip+0x478/0x5b0
[ 2293.983213]  ? rt6_sync_down_dev+0x150/0x150
[ 2293.983247]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2293.983270]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2293.983297]  ? addrconf_dad_run+0x180/0x180
[ 2293.983334]  addrconf_notify+0x159/0x2410
[ 2293.983358]  ? tun_device_event+0x71/0x1160
[ 2293.983377]  ? mark_held_locks+0x9e/0xe0
[ 2293.983397]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2293.983419]  ? inet6_ifinfo_notify+0x150/0x150
[ 2293.983438]  ? failover_register+0x530/0x530
[ 2293.983471]  raw_notifier_call_chain+0xb3/0x110
[ 2293.983497]  call_netdevice_notifiers_info+0xb5/0x130
[ 2293.983518]  dev_close_many+0x25b/0x460
[ 2293.983543]  ? __dev_close_many+0x2f0/0x2f0
[ 2293.983560]  ? lock_downgrade+0x6d0/0x6d0
[ 2293.983596]  unregister_netdevice_many+0x349/0x1490
[ 2293.983615]  ? __queue_work+0x681/0xf40
[ 2293.983639]  ? netdev_pick_tx+0xc70/0xc70
[ 2293.983667]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2293.983684]  ? queue_delayed_work_on+0xb4/0xe0
[ 2293.983699]  ? trace_hardirqs_on+0x5b/0x180
[ 2293.983726]  unregister_netdevice_queue+0x201/0x2c0
[ 2293.983748]  ? unregister_netdevice_many+0x1490/0x1490
[ 2293.983770]  ? linkwatch_fire_event+0x63/0x190
[ 2293.983796]  __tun_detach+0xf92/0x1280
[ 2293.983820]  ? tun_chr_close+0x8e/0x250
[ 2293.983844]  tun_chr_close+0xc4/0x250
[ 2293.983866]  __fput+0x285/0x980
[ 2293.983885]  ? __tun_detach+0x1280/0x1280
[ 2293.983911]  task_work_run+0xe2/0x1a0
[ 2293.983938]  exit_to_user_mode_prepare+0x186/0x190
[ 2293.983959]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2293.983979]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2293.983992] RIP: 0033:0x7ff4e0665b19
[ 2293.984014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2293.984025] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2293.984046] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2293.984058] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2293.984069] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2293.984080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2293.984091] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2294.048720] FAULT_INJECTION: forcing a failure.
[ 2294.048720] name failslab, interval 1, probability 0, space 0, times 0
[ 2294.048744] CPU: 0 PID: 12182 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2294.048755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2294.048761] Call Trace:
[ 2294.048784]  dump_stack+0x107/0x167
[ 2294.048810]  should_fail.cold+0x5/0xa
[ 2294.048832]  ? kmemleak_scan_area+0xa6/0x360
[ 2294.048856]  should_failslab+0x5/0x20
[ 2294.048880]  kmem_cache_alloc+0x5b/0x310
[ 2294.048907]  kmemleak_scan_area+0xa6/0x360
[ 2294.048931]  alloc_vmap_area+0x171/0x1d10
[ 2294.048950]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 2294.048976]  ? mark_held_locks+0x9e/0xe0
[ 2294.049005]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2294.049029]  ? kasan_unpoison_shadow+0x33/0x50
[ 2294.049050]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2294.049075]  __get_vm_area_node+0x127/0x340
[ 2294.049094]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2294.049116]  get_vm_area_caller+0x70/0xb0
[ 2294.049133]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2294.049154]  vmap+0xe9/0x2c0
[ 2294.049174]  ? vunmap+0x70/0x70
[ 2294.049205]  relay_open_buf.part.0+0x4cf/0xc00
[ 2294.049238]  relay_open+0x531/0xa10
[ 2294.049265]  do_blk_trace_setup+0x4cf/0xc10
[ 2294.049287]  ? _copy_from_user+0xfb/0x1b0
[ 2294.049308]  __blk_trace_setup+0xca/0x180
[ 2294.049327]  ? do_blk_trace_setup+0xc10/0xc10
[ 2294.049360]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2294.049388]  blk_trace_setup+0x43/0x60
[ 2294.049411]  sg_ioctl_common+0x634/0x2570
[ 2294.049433]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2294.049453]  ? do_vfs_ioctl+0x283/0x10d0
[ 2294.049470]  ? sg_write+0x120/0x120
[ 2294.049488]  ? generic_block_fiemap+0x60/0x60
[ 2294.049511]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2294.049548]  ? selinux_file_ioctl+0xb6/0x270
[ 2294.049565]  ? sg_compat_ioctl+0x120/0x120
[ 2294.049584]  sg_ioctl+0x8f/0x120
[ 2294.049606]  __x64_sys_ioctl+0x19a/0x210
[ 2294.049630]  do_syscall_64+0x33/0x40
[ 2294.049649]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2294.049693] RIP: 0033:0x7fb64c457b19
[ 2294.049715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2294.049726] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2294.049746] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2294.049758] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2294.049769] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2294.049780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2294.049791] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2294.050890] kmemleak: Cannot allocate a scan area, scanning the full object
04:08:12 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

04:08:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x300, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:12 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 22)

04:08:12 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x14}}, 0x0)

04:08:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x2000041c}}, 0x0)

04:08:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x2}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:12 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:08:12 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 46)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2308.530797] FAULT_INJECTION: forcing a failure.
[ 2308.530797] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.533374] CPU: 0 PID: 12199 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2308.534831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.536564] Call Trace:
[ 2308.537124]  dump_stack+0x107/0x167
[ 2308.537922]  should_fail.cold+0x5/0xa
[ 2308.538727]  ? relay_create_buf_file+0x4d/0x180
[ 2308.539710]  should_failslab+0x5/0x20
[ 2308.540516]  kmem_cache_alloc_trace+0x55/0x320
[ 2308.541500]  relay_create_buf_file+0x4d/0x180
[ 2308.542439]  relay_open_buf.part.0+0x7de/0xc00
[ 2308.543416]  relay_open+0x531/0xa10
[ 2308.544179]  do_blk_trace_setup+0x4cf/0xc10
[ 2308.545098]  ? _copy_from_user+0xfb/0x1b0
[ 2308.545988]  __blk_trace_setup+0xca/0x180
[ 2308.546852]  ? do_blk_trace_setup+0xc10/0xc10
[ 2308.547795]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.548895]  blk_trace_setup+0x43/0x60
[ 2308.549713]  sg_ioctl_common+0x634/0x2570
[ 2308.550593]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2308.551666]  ? do_vfs_ioctl+0x283/0x10d0
[ 2308.552500]  ? sg_write+0x120/0x120
[ 2308.553249]  ? generic_block_fiemap+0x60/0x60
[ 2308.554212]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2308.555231]  ? selinux_file_ioctl+0xb6/0x270
[ 2308.556145]  ? sg_compat_ioctl+0x120/0x120
[ 2308.557018]  sg_ioctl+0x8f/0x120
[ 2308.557718]  __x64_sys_ioctl+0x19a/0x210
[ 2308.558564]  do_syscall_64+0x33/0x40
[ 2308.559335]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2308.560372] RIP: 0033:0x7fb64c457b19
[ 2308.561144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.564898] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2308.566510] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2308.567996] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2308.569477] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.570970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2308.572456] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2308.603570] device veth0_vlan entered promiscuous mode
04:08:12 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xc0}}, 0x0)

[ 2308.619209] device veth0_vlan entered promiscuous mode
[ 2308.637342] FAULT_INJECTION: forcing a failure.
[ 2308.637342] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.639831] CPU: 0 PID: 12193 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2308.641262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.642991] Call Trace:
[ 2308.643535]  dump_stack+0x107/0x167
[ 2308.644298]  should_fail.cold+0x5/0xa
[ 2308.645092]  ? create_object.isra.0+0x3a/0xa20
[ 2308.646061]  should_failslab+0x5/0x20
[ 2308.646848]  kmem_cache_alloc+0x5b/0x310
[ 2308.647698]  create_object.isra.0+0x3a/0xa20
[ 2308.648607]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2308.649667]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2308.650722]  ? __neigh_notify+0x84/0x160
[ 2308.651569]  __alloc_skb+0xb1/0x5b0
[ 2308.652327]  __neigh_notify+0x84/0x160
[ 2308.653135]  neigh_cleanup_and_release+0x78/0x220
[ 2308.654145]  neigh_flush_dev+0x4ad/0x8b0
[ 2308.654987]  __neigh_ifdown.isra.0+0x54/0x380
[ 2308.655919]  neigh_ifdown+0x1b/0x30
[ 2308.656668]  rt6_disable_ip+0x478/0x5b0
[ 2308.657491]  ? rt6_sync_down_dev+0x150/0x150
[ 2308.658418]  addrconf_ifdown.isra.0+0x11a/0x15f0
[ 2308.659399]  ? addrconf_dad_run+0x180/0x180
[ 2308.660297]  addrconf_notify+0x159/0x2410
[ 2308.661148]  ? tun_device_event+0x71/0x1160
[ 2308.662055]  ? mark_held_locks+0x9e/0xe0
[ 2308.662890]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2308.663954]  ? inet6_ifinfo_notify+0x150/0x150
[ 2308.664892]  ? failover_register+0x530/0x530
[ 2308.665807]  raw_notifier_call_chain+0xb3/0x110
[ 2308.666787]  call_netdevice_notifiers_info+0xb5/0x130
[ 2308.667852]  dev_close_many+0x25b/0x460
[ 2308.668672]  ? __dev_close_many+0x2f0/0x2f0
[ 2308.669573]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.670457]  unregister_netdevice_many+0x349/0x1490
[ 2308.671490]  ? __queue_work+0x681/0xf40
[ 2308.672310]  ? netdev_pick_tx+0xc70/0xc70
[ 2308.673178]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2308.674268]  ? queue_delayed_work_on+0xb4/0xe0
[ 2308.675202]  ? trace_hardirqs_on+0x5b/0x180
[ 2308.676097]  unregister_netdevice_queue+0x201/0x2c0
[ 2308.677123]  ? unregister_netdevice_many+0x1490/0x1490
[ 2308.678210]  ? linkwatch_fire_event+0x63/0x190
[ 2308.679159]  __tun_detach+0xf92/0x1280
[ 2308.679969]  tun_chr_close+0xc4/0x250
[ 2308.680751]  __fput+0x285/0x980
[ 2308.681432]  ? __tun_detach+0x1280/0x1280
[ 2308.682303]  task_work_run+0xe2/0x1a0
[ 2308.683104]  exit_to_user_mode_prepare+0x186/0x190
[ 2308.684108]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2308.685101]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2308.686154] RIP: 0033:0x7ff4e0665b19
[ 2308.686924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.690735] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2308.692333] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2308.693808] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2308.695291] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.696777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2308.698273] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:08:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x3}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2308.705526] FAULT_INJECTION: forcing a failure.
[ 2308.705526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2308.708233] CPU: 0 PID: 12204 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2308.709647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.711363] Call Trace:
[ 2308.711900]  dump_stack+0x107/0x167
[ 2308.712652]  should_fail.cold+0x5/0xa
[ 2308.713436]  _copy_from_user+0x2e/0x1b0
[ 2308.714264]  move_addr_to_kernel.part.0+0x31/0x110
[ 2308.715290]  move_addr_to_kernel+0x4f/0x70
[ 2308.716179]  io_connect+0x47a/0x610
[ 2308.716946]  ? io_prep_rw+0x1050/0x1050
[ 2308.717796]  ? __lock_acquire+0x1657/0x5b00
[ 2308.718720]  ? __lock_acquire+0xbb1/0x5b00
[ 2308.719600]  io_issue_sqe+0x1611/0x7700
[ 2308.720444]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.721537]  ? lock_chain_count+0x20/0x20
[ 2308.722416]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.723510]  ? io_connect+0x610/0x610
[ 2308.724301]  ? lock_acquire+0x197/0x470
[ 2308.725146]  ? find_held_lock+0x2c/0x110
[ 2308.725997]  ? __fget_files+0x26d/0x4c0
[ 2308.726831]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.727692]  __io_queue_sqe+0x90/0x9d0
[ 2308.728512]  ? io_issue_sqe+0x7700/0x7700
[ 2308.729383]  io_submit_sqes+0x4461/0x85c0
[ 2308.730281]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2308.731310]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2308.732317]  ? lock_downgrade+0x6d0/0x6d0
[ 2308.733171]  ? find_held_lock+0x2c/0x110
[ 2308.734043]  ? io_submit_sqes+0x85c0/0x85c0
[ 2308.734940]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2308.735953]  ? wait_for_completion_io+0x270/0x270
[ 2308.736951]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2308.737923]  ? vfs_write+0x354/0xa70
[ 2308.738696]  ? fput_many+0x2f/0x1a0
[ 2308.739459]  ? ksys_write+0x1a9/0x260
[ 2308.740250]  ? __ia32_sys_read+0xb0/0xb0
[ 2308.741094]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2308.742190]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2308.743285]  do_syscall_64+0x33/0x40
[ 2308.744053]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2308.745134] RIP: 0033:0x7f1edfa23b19
[ 2308.745913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.749745] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2308.751328] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2308.752814] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2308.754323] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.755806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2308.757292] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:08:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x7ffff000}}, 0x0)

04:08:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x80000, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:12 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 47)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:08:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xfffffdef}}, 0x0)

04:08:12 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x4}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:13 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x1000000, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2308.885633] FAULT_INJECTION: forcing a failure.
[ 2308.885633] name failslab, interval 1, probability 0, space 0, times 0
[ 2308.888273] CPU: 1 PID: 12230 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2308.889685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2308.891368] Call Trace:
[ 2308.891915]  dump_stack+0x107/0x167
[ 2308.892665]  should_fail.cold+0x5/0xa
[ 2308.893444]  ? create_object.isra.0+0x3a/0xa20
[ 2308.894379]  should_failslab+0x5/0x20
[ 2308.895153]  kmem_cache_alloc+0x5b/0x310
[ 2308.895992]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2308.896967]  create_object.isra.0+0x3a/0xa20
[ 2308.897875]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2308.898923]  kmem_cache_alloc_trace+0x151/0x320
[ 2308.899868]  relay_create_buf_file+0x4d/0x180
[ 2308.900775]  relay_open_buf.part.0+0x7de/0xc00
[ 2308.901721]  relay_open+0x531/0xa10
[ 2308.902483]  do_blk_trace_setup+0x4cf/0xc10
[ 2308.903359]  ? _copy_from_user+0xfb/0x1b0
[ 2308.904200]  __blk_trace_setup+0xca/0x180
[ 2308.905032]  ? do_blk_trace_setup+0xc10/0xc10
[ 2308.905967]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2308.907033]  blk_trace_setup+0x43/0x60
[ 2308.907823]  sg_ioctl_common+0x634/0x2570
[ 2308.908673]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2308.909714]  ? do_vfs_ioctl+0x283/0x10d0
[ 2308.910550]  ? sg_write+0x120/0x120
[ 2308.911301]  ? generic_block_fiemap+0x60/0x60
[ 2308.912208]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2308.913195]  ? selinux_file_ioctl+0xb6/0x270
[ 2308.914087]  ? sg_compat_ioctl+0x120/0x120
[ 2308.914940]  sg_ioctl+0x8f/0x120
[ 2308.915626]  __x64_sys_ioctl+0x19a/0x210
[ 2308.916453]  do_syscall_64+0x33/0x40
[ 2308.917206]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2308.918259] RIP: 0033:0x7fb64c457b19
[ 2308.919008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2308.922716] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2308.924250] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2308.925731] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2308.927178] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2308.928601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2308.930046] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:08:13 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x2}, 0x0)

04:08:13 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xec0}}, 0x0)

04:08:13 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 23)

04:08:13 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x5}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:13 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x2000000, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:13 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

[ 2309.195131] device veth0_vlan entered promiscuous mode
[ 2309.200818] device veth0_vlan entered promiscuous mode
[ 2309.256446] FAULT_INJECTION: forcing a failure.
[ 2309.256446] name failslab, interval 1, probability 0, space 0, times 0
[ 2309.258909] CPU: 0 PID: 12258 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2309.260346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2309.262076] Call Trace:
[ 2309.262632]  dump_stack+0x107/0x167
[ 2309.263392]  should_fail.cold+0x5/0xa
[ 2309.264183]  ? __alloc_skb+0x6d/0x5b0
[ 2309.264972]  should_failslab+0x5/0x20
[ 2309.265772]  kmem_cache_alloc_node+0x55/0x330
[ 2309.266732]  __alloc_skb+0x6d/0x5b0
[ 2309.267508]  inet6_ifa_notify+0x118/0x220
[ 2309.268376]  ? inet6_fill_ifaddr+0xd60/0xd60
[ 2309.269291]  __ipv6_ifa_notify+0x17b/0xb10
[ 2309.270209]  ? modify_prefix_route+0x590/0x590
[ 2309.271168]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2309.272266]  ? __local_bh_enable_ip+0x9d/0x100
[ 2309.273221]  addrconf_ifdown.isra.0+0xb99/0x15f0
[ 2309.274217]  ? addrconf_dad_run+0x180/0x180
[ 2309.275124]  addrconf_notify+0x159/0x2410
[ 2309.275989]  ? tun_device_event+0x71/0x1160
[ 2309.276882]  ? mark_held_locks+0x9e/0xe0
[ 2309.277725]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2309.278818]  ? inet6_ifinfo_notify+0x150/0x150
[ 2309.279773]  ? failover_register+0x530/0x530
[ 2309.280699]  raw_notifier_call_chain+0xb3/0x110
[ 2309.281669]  call_netdevice_notifiers_info+0xb5/0x130
[ 2309.282750]  dev_close_many+0x25b/0x460
[ 2309.283599]  ? __dev_close_many+0x2f0/0x2f0
[ 2309.284509]  ? lock_chain_count+0x20/0x20
[ 2309.285369]  ? find_held_lock+0x2c/0x110
[ 2309.286255]  unregister_netdevice_many+0x349/0x1490
[ 2309.287313]  ? netdev_pick_tx+0xc70/0xc70
[ 2309.288190]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2309.289272]  ? queue_delayed_work_on+0xb4/0xe0
[ 2309.290215]  ? trace_hardirqs_on+0x5b/0x180
[ 2309.291112]  unregister_netdevice_queue+0x201/0x2c0
[ 2309.292160]  ? unregister_netdevice_many+0x1490/0x1490
[ 2309.293262]  ? linkwatch_fire_event+0x63/0x190
[ 2309.294222]  __tun_detach+0xf92/0x1280
[ 2309.295029]  ? tun_chr_close+0x57/0x250
[ 2309.295861]  tun_chr_close+0xc4/0x250
[ 2309.296644]  __fput+0x285/0x980
[ 2309.297325]  ? __tun_detach+0x1280/0x1280
[ 2309.298209]  task_work_run+0xe2/0x1a0
[ 2309.299011]  exit_to_user_mode_prepare+0x186/0x190
[ 2309.300019]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2309.301023]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2309.302101] RIP: 0033:0x7ff4e0665b19
[ 2309.302877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2309.306694] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2309.308273] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2309.309747] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2309.311232] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2309.312739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2309.314234] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:08:26 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 48)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:08:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x3000000, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x33fe0}}, 0x0)

04:08:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x8}, 0x0)

04:08:26 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 24)

04:08:26 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(0xffffffffffffffff, r0, 0x0)

04:08:26 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:08:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x7}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2322.420781] device veth0_vlan entered promiscuous mode
[ 2322.427092] device veth0_vlan entered promiscuous mode
[ 2322.433643] FAULT_INJECTION: forcing a failure.
[ 2322.433643] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.435200] CPU: 0 PID: 12271 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2322.435980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.436892] Call Trace:
[ 2322.437204]  dump_stack+0x107/0x167
[ 2322.437617]  should_fail.cold+0x5/0xa
[ 2322.438050]  ? __d_alloc+0x2a/0x990
[ 2322.438461]  should_failslab+0x5/0x20
[ 2322.438883]  kmem_cache_alloc+0x5b/0x310
[ 2322.439347]  __d_alloc+0x2a/0x990
[ 2322.439739]  d_alloc_parallel+0x111/0x1bc0
[ 2322.440228]  ? __lock_acquire+0x1657/0x5b00
[ 2322.440703]  ? perf_trace_lock+0xac/0x490
[ 2322.441173]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2322.441632]  ? __lockdep_reset_lock+0x180/0x180
[ 2322.442168]  ? lockdep_init_map_type+0x2c7/0x780
[ 2322.442691]  ? lockdep_init_map_type+0x2c7/0x780
[ 2322.443249]  __lookup_slow+0x193/0x490
[ 2322.443701]  ? lookup_open.isra.0+0x1270/0x1270
[ 2322.444255]  ? __d_lookup+0x3bf/0x760
[ 2322.444711]  ? d_lookup+0xcc/0x130
[ 2322.445130]  lookup_one_len+0x167/0x1a0
[ 2322.445579]  ? __lookup_slow+0x490/0x490
[ 2322.446043]  ? down_write_killable+0x180/0x180
[ 2322.446580]  ? do_raw_spin_unlock+0x4f/0x220
[ 2322.447091]  ? mntput+0xc/0x90
[ 2322.447463]  start_creating.part.0+0x10a/0x230
[ 2322.447993]  __debugfs_create_file+0xdb/0x530
[ 2322.448518]  ? blk_trace_remove+0x40/0x40
[ 2322.448997]  relay_create_buf_file+0xf6/0x180
[ 2322.449520]  relay_open_buf.part.0+0x7de/0xc00
[ 2322.450077]  relay_open+0x531/0xa10
[ 2322.450512]  do_blk_trace_setup+0x4cf/0xc10
[ 2322.451024]  ? _copy_from_user+0xfb/0x1b0
[ 2322.451513]  __blk_trace_setup+0xca/0x180
[ 2322.452005]  ? do_blk_trace_setup+0xc10/0xc10
[ 2322.452544]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.453174]  blk_trace_setup+0x43/0x60
[ 2322.453639]  sg_ioctl_common+0x634/0x2570
[ 2322.454143]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2322.454750]  ? do_vfs_ioctl+0x283/0x10d0
[ 2322.455228]  ? sg_write+0x120/0x120
[ 2322.455657]  ? generic_block_fiemap+0x60/0x60
[ 2322.456189]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2322.456777]  ? selinux_file_ioctl+0xb6/0x270
[ 2322.457298]  ? sg_compat_ioctl+0x120/0x120
[ 2322.457798]  sg_ioctl+0x8f/0x120
[ 2322.458203]  __x64_sys_ioctl+0x19a/0x210
[ 2322.458683]  do_syscall_64+0x33/0x40
[ 2322.459127]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2322.459726] RIP: 0033:0x7fb64c457b19
[ 2322.460156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.462298] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2322.463187] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2322.463981] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2322.464821] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.465657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.466501] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2322.489163] FAULT_INJECTION: forcing a failure.
[ 2322.489163] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.490524] CPU: 0 PID: 12268 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2322.491354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.492332] Call Trace:
[ 2322.492629]  dump_stack+0x107/0x167
[ 2322.493066]  should_fail.cold+0x5/0xa
[ 2322.493523]  ? __alloc_skb+0x6d/0x5b0
[ 2322.493722] FAULT_INJECTION: forcing a failure.
[ 2322.493722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2322.493972]  should_failslab+0x5/0x20
[ 2322.493984]  kmem_cache_alloc_node+0x55/0x330
[ 2322.494002]  __alloc_skb+0x6d/0x5b0
[ 2322.494026]  inet6_ifa_notify+0x118/0x220
[ 2322.494035]  ? inet6_fill_ifaddr+0xd60/0xd60
[ 2322.494057]  __ipv6_ifa_notify+0x17b/0xb10
[ 2322.494075]  ? modify_prefix_route+0x590/0x590
[ 2322.499781]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.500397]  ? __local_bh_enable_ip+0x9d/0x100
[ 2322.500937]  addrconf_ifdown.isra.0+0xb99/0x15f0
[ 2322.501503]  ? addrconf_dad_run+0x180/0x180
[ 2322.502028]  addrconf_notify+0x159/0x2410
[ 2322.502521]  ? tun_device_event+0x71/0x1160
[ 2322.503029]  ? mark_held_locks+0x9e/0xe0
[ 2322.503478]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2322.504086]  ? inet6_ifinfo_notify+0x150/0x150
[ 2322.504623]  ? failover_register+0x530/0x530
[ 2322.505158]  raw_notifier_call_chain+0xb3/0x110
[ 2322.505699]  call_netdevice_notifiers_info+0xb5/0x130
[ 2322.506332]  dev_close_many+0x25b/0x460
[ 2322.506803]  ? __dev_close_many+0x2f0/0x2f0
[ 2322.507317]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.507815]  unregister_netdevice_many+0x349/0x1490
[ 2322.508403]  ? __queue_work+0x681/0xf40
[ 2322.508868]  ? netdev_pick_tx+0xc70/0xc70
[ 2322.509341]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.509950]  ? queue_delayed_work_on+0xb4/0xe0
[ 2322.510478]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.510987]  unregister_netdevice_queue+0x201/0x2c0
[ 2322.511572]  ? unregister_netdevice_many+0x1490/0x1490
[ 2322.512202]  ? linkwatch_fire_event+0x63/0x190
[ 2322.512736]  __tun_detach+0xf92/0x1280
[ 2322.513215]  tun_chr_close+0xc4/0x250
[ 2322.513666]  __fput+0x285/0x980
[ 2322.514068]  ? __tun_detach+0x1280/0x1280
[ 2322.514558]  task_work_run+0xe2/0x1a0
[ 2322.515013]  exit_to_user_mode_prepare+0x186/0x190
[ 2322.515589]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2322.516159]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2322.516757] RIP: 0033:0x7ff4e0665b19
[ 2322.517199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.519376] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2322.520266] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2322.521109] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2322.521932] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.522731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.523521] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
[ 2322.524351] CPU: 1 PID: 12282 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2322.525781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.527502] Call Trace:
[ 2322.528052]  dump_stack+0x107/0x167
[ 2322.528800]  should_fail.cold+0x5/0xa
[ 2322.529591]  _copy_from_user+0x2e/0x1b0
[ 2322.530423]  move_addr_to_kernel.part.0+0x31/0x110
[ 2322.531438]  move_addr_to_kernel+0x4f/0x70
[ 2322.532312]  io_connect+0x47a/0x610
[ 2322.533063]  ? io_prep_rw+0x1050/0x1050
[ 2322.533914]  ? __lock_acquire+0xbb1/0x5b00
[ 2322.534816]  io_issue_sqe+0x1611/0x7700
[ 2322.535648]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.536724]  ? lock_chain_count+0x20/0x20
[ 2322.537593]  ? __is_insn_slot_addr+0x14c/0x290
[ 2322.538546]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.539617]  ? io_connect+0x610/0x610
[ 2322.540400]  ? lock_acquire+0x197/0x470
[ 2322.541211]  ? find_held_lock+0x2c/0x110
[ 2322.542057]  ? __fget_files+0x26d/0x4c0
[ 2322.542871]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.543725]  __io_queue_sqe+0x90/0x9d0
[ 2322.544531]  ? io_issue_sqe+0x7700/0x7700
[ 2322.545399]  io_submit_sqes+0x4461/0x85c0
[ 2322.546287]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2322.547303]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2322.548299]  ? lock_downgrade+0x6d0/0x6d0
[ 2322.549140]  ? find_held_lock+0x2c/0x110
[ 2322.549997]  ? io_submit_sqes+0x85c0/0x85c0
[ 2322.550892]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2322.551874]  ? wait_for_completion_io+0x270/0x270
[ 2322.552856]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2322.553802]  ? vfs_write+0x354/0xa70
[ 2322.554578]  ? fput_many+0x2f/0x1a0
[ 2322.555320]  ? ksys_write+0x1a9/0x260
[ 2322.556096]  ? __ia32_sys_read+0xb0/0xb0
[ 2322.556927]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.557992]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2322.559054]  do_syscall_64+0x33/0x40
[ 2322.559810]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2322.560849] RIP: 0033:0x7f1edfa23b19
[ 2322.561604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.565335] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2322.566888] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2322.568331] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2322.569781] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.571243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.572688] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:08:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0xd}, 0x0)

04:08:26 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 49)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:08:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x4000000, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x8}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:26 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(0xffffffffffffffff, r0, 0x0)

[ 2322.687472] FAULT_INJECTION: forcing a failure.
[ 2322.687472] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.690123] CPU: 1 PID: 12294 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2322.691549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.693242] Call Trace:
[ 2322.693795]  dump_stack+0x107/0x167
[ 2322.694557]  should_fail.cold+0x5/0xa
[ 2322.695357]  ? create_object.isra.0+0x3a/0xa20
[ 2322.696289]  should_failslab+0x5/0x20
[ 2322.697082]  kmem_cache_alloc+0x5b/0x310
[ 2322.697927]  create_object.isra.0+0x3a/0xa20
[ 2322.698832]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.699877]  kmem_cache_alloc_trace+0x151/0x320
[ 2322.700835]  relay_create_buf_file+0x4d/0x180
[ 2322.701751]  relay_open_buf.part.0+0x7de/0xc00
[ 2322.702713]  relay_open+0x531/0xa10
[ 2322.703472]  do_blk_trace_setup+0x4cf/0xc10
[ 2322.704352]  ? _copy_from_user+0xfb/0x1b0
[ 2322.705197]  __blk_trace_setup+0xca/0x180
[ 2322.706048]  ? do_blk_trace_setup+0xc10/0xc10
[ 2322.706979]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2322.708053]  blk_trace_setup+0x43/0x60
[ 2322.708852]  sg_ioctl_common+0x634/0x2570
[ 2322.709700]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2322.710755]  ? do_vfs_ioctl+0x283/0x10d0
[ 2322.711583]  ? sg_write+0x120/0x120
[ 2322.712324]  ? generic_block_fiemap+0x60/0x60
[ 2322.713240]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2322.714260]  ? selinux_file_ioctl+0xb6/0x270
[ 2322.715156]  ? sg_compat_ioctl+0x120/0x120
[ 2322.716025]  sg_ioctl+0x8f/0x120
04:08:26 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 25)

04:08:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2322.716049]  __x64_sys_ioctl+0x19a/0x210
[ 2322.716076]  do_syscall_64+0x33/0x40
[ 2322.716095]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2322.716108] RIP: 0033:0x7fb64c457b19
[ 2322.716129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.716140] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2322.716163] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2322.716175] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2322.716187] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
04:08:26 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x2}, 0x0)

[ 2322.716199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.716211] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:08:26 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x2000041c}}, 0x0)

[ 2322.796705] device veth0_vlan entered promiscuous mode
04:08:26 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:26 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1e4}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2322.819400] device veth0_vlan entered promiscuous mode
[ 2322.839199] FAULT_INJECTION: forcing a failure.
[ 2322.839199] name failslab, interval 1, probability 0, space 0, times 0
[ 2322.841539] CPU: 1 PID: 12314 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2322.842969] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2322.844686] Call Trace:
[ 2322.845236]  dump_stack+0x107/0x167
[ 2322.845986]  should_fail.cold+0x5/0xa
[ 2322.846776]  ? create_object.isra.0+0x3a/0xa20
[ 2322.847715]  should_failslab+0x5/0x20
[ 2322.848504]  kmem_cache_alloc+0x5b/0x310
[ 2322.849349]  create_object.isra.0+0x3a/0xa20
[ 2322.850251]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2322.851279]  kmem_cache_alloc_node+0x169/0x330
[ 2322.852242]  __alloc_skb+0x6d/0x5b0
[ 2322.852984]  inet6_ifa_notify+0x118/0x220
[ 2322.853825]  ? inet6_fill_ifaddr+0xd60/0xd60
[ 2322.854746]  __ipv6_ifa_notify+0x17b/0xb10
[ 2322.855602]  ? modify_prefix_route+0x590/0x590
[ 2322.856559]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.857638]  ? __local_bh_enable_ip+0x9d/0x100
[ 2322.858571]  addrconf_ifdown.isra.0+0xb99/0x15f0
[ 2322.859538]  ? addrconf_dad_run+0x180/0x180
[ 2322.860446]  addrconf_notify+0x159/0x2410
[ 2322.861291]  ? tun_device_event+0x71/0x1160
[ 2322.862183]  ? mark_held_locks+0x9e/0xe0
[ 2322.863012]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2322.864069]  ? inet6_ifinfo_notify+0x150/0x150
[ 2322.865000]  ? failover_register+0x530/0x530
[ 2322.865915]  raw_notifier_call_chain+0xb3/0x110
[ 2322.866880]  call_netdevice_notifiers_info+0xb5/0x130
[ 2322.867933]  dev_close_many+0x25b/0x460
[ 2322.868745]  ? __dev_close_many+0x2f0/0x2f0
[ 2322.869624]  ? lock_chain_count+0x20/0x20
[ 2322.870476]  ? find_held_lock+0x2c/0x110
[ 2322.871315]  unregister_netdevice_many+0x349/0x1490
[ 2322.872354]  ? netdev_pick_tx+0xc70/0xc70
[ 2322.873207]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2322.874279]  ? queue_delayed_work_on+0xb4/0xe0
[ 2322.875208]  ? trace_hardirqs_on+0x5b/0x180
[ 2322.876086]  unregister_netdevice_queue+0x201/0x2c0
[ 2322.877104]  ? unregister_netdevice_many+0x1490/0x1490
[ 2322.878189]  ? linkwatch_fire_event+0x63/0x190
[ 2322.879124]  __tun_detach+0xf92/0x1280
[ 2322.879926]  tun_chr_close+0xc4/0x250
[ 2322.880696]  __fput+0x285/0x980
[ 2322.881364]  ? __tun_detach+0x1280/0x1280
[ 2322.882222]  task_work_run+0xe2/0x1a0
[ 2322.883007]  exit_to_user_mode_prepare+0x186/0x190
[ 2322.884005]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2322.884983]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2322.886046] RIP: 0033:0x7ff4e0665b19
[ 2322.886810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2322.890557] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2322.892100] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2322.893549] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2322.895005] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2322.896451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2322.897901] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:08:27 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:44 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 26)

04:08:44 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x7ffff000}}, 0x0)

04:08:44 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x20000041}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:44 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(0xffffffffffffffff, r0, 0x0)

04:08:44 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x3}, 0x0)

04:08:44 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 50)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:08:44 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:44 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2340.231604] FAULT_INJECTION: forcing a failure.
[ 2340.231604] name failslab, interval 1, probability 0, space 0, times 0
[ 2340.234409] CPU: 0 PID: 12352 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2340.235871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2340.237605] Call Trace:
[ 2340.238165]  dump_stack+0x107/0x167
[ 2340.238964]  should_fail.cold+0x5/0xa
[ 2340.239782]  ? __d_alloc+0x2a/0x990
[ 2340.240553]  should_failslab+0x5/0x20
[ 2340.241361]  kmem_cache_alloc+0x5b/0x310
[ 2340.242228]  __d_alloc+0x2a/0x990
[ 2340.242980]  d_alloc_parallel+0x111/0x1bc0
[ 2340.243898]  ? __lock_acquire+0x1657/0x5b00
[ 2340.244808]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2340.244838] device veth0_vlan entered promiscuous mode
[ 2340.245908]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2340.247888]  ? mark_lock+0xf5/0x2df0
[ 2340.248688]  ? lockdep_init_map_type+0x2c7/0x780
[ 2340.249686]  ? lockdep_init_map_type+0x2c7/0x780
[ 2340.250705]  __lookup_slow+0x193/0x490
[ 2340.251528]  ? lookup_open.isra.0+0x1270/0x1270
[ 2340.252522]  ? __d_lookup+0x3bf/0x760
[ 2340.253340]  ? d_lookup+0xcc/0x130
[ 2340.254096]  lookup_one_len+0x167/0x1a0
[ 2340.254952]  ? __lookup_slow+0x490/0x490
[ 2340.255814]  ? down_write_killable+0x180/0x180
[ 2340.256775]  ? do_raw_spin_unlock+0x4f/0x220
[ 2340.257697]  ? mntput+0xc/0x90
[ 2340.258403]  start_creating.part.0+0x10a/0x230
[ 2340.259372]  __debugfs_create_file+0xdb/0x530
[ 2340.260315]  ? blk_trace_remove+0x40/0x40
[ 2340.261183]  relay_create_buf_file+0xf6/0x180
[ 2340.261663] FAULT_INJECTION: forcing a failure.
[ 2340.261663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2340.262121]  relay_open_buf.part.0+0x7de/0xc00
[ 2340.262155]  relay_open+0x531/0xa10
[ 2340.262183]  do_blk_trace_setup+0x4cf/0xc10
[ 2340.262205]  ? _copy_from_user+0xfb/0x1b0
[ 2340.262228]  __blk_trace_setup+0xca/0x180
[ 2340.268848]  ? do_blk_trace_setup+0xc10/0xc10
[ 2340.269805]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2340.270942]  blk_trace_setup+0x43/0x60
[ 2340.271770]  sg_ioctl_common+0x634/0x2570
[ 2340.272637]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2340.273723]  ? do_vfs_ioctl+0x283/0x10d0
[ 2340.274579]  ? sg_write+0x120/0x120
[ 2340.275346]  ? generic_block_fiemap+0x60/0x60
[ 2340.276302]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2340.277330]  ? selinux_file_ioctl+0xb6/0x270
[ 2340.278236]  ? sg_compat_ioctl+0x120/0x120
[ 2340.279135]  sg_ioctl+0x8f/0x120
[ 2340.279842]  __x64_sys_ioctl+0x19a/0x210
[ 2340.280701]  do_syscall_64+0x33/0x40
[ 2340.281471]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2340.282561] RIP: 0033:0x7fb64c457b19
[ 2340.283334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2340.287188] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2340.288771] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2340.290284] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2340.291780] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2340.293274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2340.294778] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2340.296307] CPU: 1 PID: 12350 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2340.297736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2340.299448] Call Trace:
[ 2340.299991]  dump_stack+0x107/0x167
[ 2340.300743]  should_fail.cold+0x5/0xa
[ 2340.301530]  _copy_from_user+0x2e/0x1b0
[ 2340.302357]  move_addr_to_kernel.part.0+0x31/0x110
[ 2340.303370]  move_addr_to_kernel+0x4f/0x70
[ 2340.304241]  io_connect+0x47a/0x610
[ 2340.304988]  ? io_prep_rw+0x1050/0x1050
[ 2340.305814]  ? __lock_acquire+0xbb1/0x5b00
[ 2340.306704]  io_issue_sqe+0x1611/0x7700
[ 2340.307514]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2340.308595]  ? lock_chain_count+0x20/0x20
[ 2340.309429]  ? __is_insn_slot_addr+0x14c/0x290
[ 2340.310390]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2340.311440]  ? io_connect+0x610/0x610
[ 2340.312227]  ? lock_acquire+0x197/0x470
[ 2340.313040]  ? find_held_lock+0x2c/0x110
[ 2340.313885]  ? __fget_files+0x26d/0x4c0
[ 2340.314695]  ? lock_downgrade+0x6d0/0x6d0
[ 2340.315555]  __io_queue_sqe+0x90/0x9d0
[ 2340.316346]  ? io_issue_sqe+0x7700/0x7700
[ 2340.317224]  io_submit_sqes+0x4461/0x85c0
[ 2340.318098]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2340.319145]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2340.320122]  ? lock_downgrade+0x6d0/0x6d0
[ 2340.320965]  ? find_held_lock+0x2c/0x110
[ 2340.321793]  ? io_submit_sqes+0x85c0/0x85c0
[ 2340.322694]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2340.323675]  ? wait_for_completion_io+0x270/0x270
[ 2340.324661]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2340.325597]  ? vfs_write+0x354/0xa70
[ 2340.326371]  ? fput_many+0x2f/0x1a0
[ 2340.327108]  ? ksys_write+0x1a9/0x260
[ 2340.327885]  ? __ia32_sys_read+0xb0/0xb0
[ 2340.328713]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2340.329768]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2340.330819]  do_syscall_64+0x33/0x40
[ 2340.331572]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2340.332595] RIP: 0033:0x7f1edfa23b19
[ 2340.333347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2340.337094] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2340.338624] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2340.340076] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2340.341517] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2340.342968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2340.344388] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2340.383092] device veth0_vlan entered promiscuous mode
[ 2340.412485] FAULT_INJECTION: forcing a failure.
[ 2340.412485] name failslab, interval 1, probability 0, space 0, times 0
[ 2340.414826] CPU: 1 PID: 12351 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2340.416201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2340.417875] Call Trace:
[ 2340.418413]  dump_stack+0x107/0x167
[ 2340.419150]  should_fail.cold+0x5/0xa
[ 2340.419913]  ? create_object.isra.0+0x3a/0xa20
[ 2340.420843]  should_failslab+0x5/0x20
[ 2340.421605]  kmem_cache_alloc+0x5b/0x310
[ 2340.422423]  create_object.isra.0+0x3a/0xa20
[ 2340.423303]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2340.424301]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2340.425305]  ? inet6_ifa_notify+0x118/0x220
[ 2340.426166]  __alloc_skb+0xb1/0x5b0
[ 2340.426921]  inet6_ifa_notify+0x118/0x220
[ 2340.427734]  ? inet6_fill_ifaddr+0xd60/0xd60
[ 2340.428623]  __ipv6_ifa_notify+0x17b/0xb10
[ 2340.429453]  ? modify_prefix_route+0x590/0x590
[ 2340.430383]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2340.431410]  ? __local_bh_enable_ip+0x9d/0x100
[ 2340.432328]  addrconf_ifdown.isra.0+0xb99/0x15f0
[ 2340.433266]  ? addrconf_dad_run+0x180/0x180
[ 2340.434140]  addrconf_notify+0x159/0x2410
[ 2340.434970]  ? tun_device_event+0x71/0x1160
[ 2340.435839]  ? mark_held_locks+0x9e/0xe0
[ 2340.436636]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2340.437672]  ? inet6_ifinfo_notify+0x150/0x150
[ 2340.438592]  ? failover_register+0x530/0x530
[ 2340.439478]  raw_notifier_call_chain+0xb3/0x110
[ 2340.440384]  call_netdevice_notifiers_info+0xb5/0x130
[ 2340.441408]  dev_close_many+0x25b/0x460
[ 2340.442211]  ? __dev_close_many+0x2f0/0x2f0
[ 2340.443082]  ? __mod_timer+0x7fb/0xd10
[ 2340.443858]  unregister_netdevice_many+0x349/0x1490
[ 2340.444848]  ? netdev_pick_tx+0xc70/0xc70
[ 2340.445661]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2340.446712]  ? queue_delayed_work_on+0xb4/0xe0
[ 2340.447596]  ? trace_hardirqs_on+0x5b/0x180
[ 2340.448461]  unregister_netdevice_queue+0x201/0x2c0
[ 2340.449441]  ? unregister_netdevice_many+0x1490/0x1490
[ 2340.450490]  ? linkwatch_fire_event+0x63/0x190
[ 2340.451383]  __tun_detach+0xf92/0x1280
[ 2340.452175]  tun_chr_close+0xc4/0x250
[ 2340.452916]  __fput+0x285/0x980
[ 2340.453569]  ? __tun_detach+0x1280/0x1280
[ 2340.454402]  task_work_run+0xe2/0x1a0
[ 2340.455169]  exit_to_user_mode_prepare+0x186/0x190
[ 2340.456140]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2340.457090]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2340.458098] RIP: 0033:0x7ff4e0665b19
[ 2340.458848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2340.462488] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2340.463990] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2340.465394] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2340.466817] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2340.468219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2340.469619] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:08:57 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 27)

04:08:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0xfffffdef}}, 0x0)

04:08:57 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 36)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:08:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x80000002}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x4}, 0x0)

04:08:57 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 51)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:08:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:57 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, 0xffffffffffffffff, 0x0)

[ 2353.288661] FAULT_INJECTION: forcing a failure.
[ 2353.288661] name failslab, interval 1, probability 0, space 0, times 0
[ 2353.291439] FAULT_INJECTION: forcing a failure.
[ 2353.291439] name failslab, interval 1, probability 0, space 0, times 0
[ 2353.291491] CPU: 0 PID: 12367 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2353.291502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2353.291509] Call Trace:
[ 2353.291533]  dump_stack+0x107/0x167
[ 2353.291557]  should_fail.cold+0x5/0xa
[ 2353.291584]  ? create_object.isra.0+0x3a/0xa20
[ 2353.300154]  should_failslab+0x5/0x20
[ 2353.300950]  kmem_cache_alloc+0x5b/0x310
[ 2353.301806]  create_object.isra.0+0x3a/0xa20
[ 2353.302752]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2353.303818]  kmem_cache_alloc_bulk+0x168/0x320
[ 2353.304781]  io_submit_sqes+0x6f76/0x85c0
[ 2353.305677]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2353.306776]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2353.307787]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.308650]  ? find_held_lock+0x2c/0x110
[ 2353.309507]  ? io_submit_sqes+0x85c0/0x85c0
[ 2353.310435]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2353.311446]  ? wait_for_completion_io+0x270/0x270
[ 2353.312452]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2353.313420]  ? vfs_write+0x354/0xa70
[ 2353.314201]  ? fput_many+0x2f/0x1a0
[ 2353.314965]  ? ksys_write+0x1a9/0x260
[ 2353.315758]  ? __ia32_sys_read+0xb0/0xb0
[ 2353.316613]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2353.317707]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2353.318795]  do_syscall_64+0x33/0x40
[ 2353.319571]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2353.320639] RIP: 0033:0x7f1edfa23b19
[ 2353.321417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2353.325266] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2353.326860] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2353.328356] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2353.329841] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2353.331343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2353.332822] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2353.334342] CPU: 1 PID: 12377 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2353.335853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2353.337638] Call Trace:
[ 2353.338213]  dump_stack+0x107/0x167
[ 2353.339013]  should_fail.cold+0x5/0xa
[ 2353.339855]  ? create_object.isra.0+0x3a/0xa20
[ 2353.340845]  should_failslab+0x5/0x20
[ 2353.341671]  kmem_cache_alloc+0x5b/0x310
[ 2353.342577]  create_object.isra.0+0x3a/0xa20
[ 2353.343539]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2353.344643]  kmem_cache_alloc+0x159/0x310
[ 2353.345545]  alloc_inode+0x171/0x240
[ 2353.346348]  new_inode+0x23/0x250
[ 2353.347115]  debugfs_get_inode+0x1a/0x130
[ 2353.348011]  __debugfs_create_file+0x14e/0x530
[ 2353.349002]  ? blk_trace_remove+0x40/0x40
[ 2353.349897]  relay_create_buf_file+0xf6/0x180
[ 2353.350883]  relay_open_buf.part.0+0x7de/0xc00
[ 2353.351884]  relay_open+0x531/0xa10
[ 2353.352677]  do_blk_trace_setup+0x4cf/0xc10
[ 2353.353607]  ? _copy_from_user+0xfb/0x1b0
[ 2353.354515]  __blk_trace_setup+0xca/0x180
[ 2353.355408]  ? do_blk_trace_setup+0xc10/0xc10
[ 2353.356405]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2353.357544]  blk_trace_setup+0x43/0x60
[ 2353.358389]  sg_ioctl_common+0x634/0x2570
[ 2353.359290]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2353.360403]  ? do_vfs_ioctl+0x283/0x10d0
[ 2353.361290]  ? sg_write+0x120/0x120
[ 2353.362073]  ? generic_block_fiemap+0x60/0x60
[ 2353.363060]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2353.364126]  ? selinux_file_ioctl+0xb6/0x270
[ 2353.365071]  ? sg_compat_ioctl+0x120/0x120
[ 2353.365990]  sg_ioctl+0x8f/0x120
[ 2353.366732]  __x64_sys_ioctl+0x19a/0x210
[ 2353.367613]  do_syscall_64+0x33/0x40
[ 2353.368414]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2353.369513] RIP: 0033:0x7fb64c457b19
[ 2353.370319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2353.374291] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2353.375960] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2353.377495] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2353.379044] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2353.380586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2353.382137] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2353.388528] device veth0_vlan entered promiscuous mode
[ 2353.396602] device veth0_vlan entered promiscuous mode
[ 2353.421544] FAULT_INJECTION: forcing a failure.
[ 2353.421544] name failslab, interval 1, probability 0, space 0, times 0
[ 2353.424390] CPU: 1 PID: 12375 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2353.425887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2353.427683] Call Trace:
[ 2353.428256]  dump_stack+0x107/0x167
[ 2353.429056]  should_fail.cold+0x5/0xa
[ 2353.429882]  ? create_object.isra.0+0x3a/0xa20
[ 2353.430882]  should_failslab+0x5/0x20
[ 2353.431704]  kmem_cache_alloc+0x5b/0x310
[ 2353.432591]  create_object.isra.0+0x3a/0xa20
[ 2353.433541]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2353.434663]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2353.435755]  ? inet6_ifa_notify+0x118/0x220
[ 2353.436728]  __alloc_skb+0xb1/0x5b0
[ 2353.437520]  inet6_ifa_notify+0x118/0x220
[ 2353.438418]  ? inet6_fill_ifaddr+0xd60/0xd60
[ 2353.439384]  __ipv6_ifa_notify+0x17b/0xb10
[ 2353.440294]  ? modify_prefix_route+0x590/0x590
[ 2353.441285]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2353.442435]  ? __local_bh_enable_ip+0x9d/0x100
[ 2353.443426]  addrconf_ifdown.isra.0+0xb99/0x15f0
[ 2353.444462]  ? addrconf_dad_run+0x180/0x180
[ 2353.445415]  addrconf_notify+0x159/0x2410
[ 2353.446315]  ? tun_device_event+0x71/0x1160
[ 2353.447251]  ? mark_held_locks+0x9e/0xe0
[ 2353.448131]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2353.449241]  ? inet6_ifinfo_notify+0x150/0x150
[ 2353.450225]  ? failover_register+0x530/0x530
[ 2353.451195]  raw_notifier_call_chain+0xb3/0x110
[ 2353.452204]  call_netdevice_notifiers_info+0xb5/0x130
[ 2353.453323]  dev_close_many+0x25b/0x460
[ 2353.454191]  ? __dev_close_many+0x2f0/0x2f0
[ 2353.455153]  ? __mod_timer+0x7fb/0xd10
[ 2353.456009]  unregister_netdevice_many+0x349/0x1490
[ 2353.457097]  ? netdev_pick_tx+0xc70/0xc70
[ 2353.458000]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2353.459138]  ? queue_delayed_work_on+0xb4/0xe0
[ 2353.460119]  ? trace_hardirqs_on+0x5b/0x180
[ 2353.461059]  unregister_netdevice_queue+0x201/0x2c0
[ 2353.462135]  ? unregister_netdevice_many+0x1490/0x1490
[ 2353.463287]  ? linkwatch_fire_event+0x63/0x190
[ 2353.464280]  __tun_detach+0xf92/0x1280
[ 2353.465136]  tun_chr_close+0xc4/0x250
[ 2353.465962]  __fput+0x285/0x980
[ 2353.466695]  ? __tun_detach+0x1280/0x1280
[ 2353.467599]  task_work_run+0xe2/0x1a0
[ 2353.468434]  exit_to_user_mode_prepare+0x186/0x190
[ 2353.469495]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2353.470539]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2353.471654] RIP: 0033:0x7ff4e0665b19
[ 2353.472462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2353.476419] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2353.478064] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2353.479609] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2353.481144] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2353.482688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2353.484218] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:08:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x2}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:08:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x300, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:08:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x2}, 0x0)

04:08:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x5}, 0x0)

04:08:57 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 37)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:08:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2353.701798] FAULT_INJECTION: forcing a failure.
[ 2353.701798] name failslab, interval 1, probability 0, space 0, times 0
[ 2353.704655] CPU: 1 PID: 12407 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2353.706133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2353.707920] Call Trace:
[ 2353.708487]  dump_stack+0x107/0x167
[ 2353.709274]  should_fail.cold+0x5/0xa
[ 2353.710091]  ? create_object.isra.0+0x3a/0xa20
[ 2353.711074]  should_failslab+0x5/0x20
[ 2353.711891]  kmem_cache_alloc+0x5b/0x310
[ 2353.712761]  ? mark_held_locks+0x9e/0xe0
[ 2353.713637]  create_object.isra.0+0x3a/0xa20
[ 2353.714613]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2353.715713]  kmem_cache_alloc_bulk+0x168/0x320
[ 2353.716704]  io_submit_sqes+0x6f76/0x85c0
[ 2353.717623]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2353.718707]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2353.719747]  ? lock_downgrade+0x6d0/0x6d0
[ 2353.720632]  ? find_held_lock+0x2c/0x110
[ 2353.721508]  ? io_submit_sqes+0x85c0/0x85c0
[ 2353.722452]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2353.723488]  ? wait_for_completion_io+0x270/0x270
[ 2353.724521]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2353.725512]  ? vfs_write+0x354/0xa70
[ 2353.726314]  ? fput_many+0x2f/0x1a0
[ 2353.727112]  ? ksys_write+0x1a9/0x260
[ 2353.727931]  ? __ia32_sys_read+0xb0/0xb0
[ 2353.728808]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2353.729930]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2353.731049]  do_syscall_64+0x33/0x40
[ 2353.731846]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2353.732944] RIP: 0033:0x7f1edfa23b19
[ 2353.733745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2353.737687] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2353.739324] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2353.740848] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2353.742373] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2353.743907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2353.745433] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:09:14 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x8}, 0x0)

04:09:14 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 38)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:14 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:14 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 52)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:09:14 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x3}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:14 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x6}, 0x0)

04:09:14 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 28)

04:09:14 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, 0xffffffffffffffff, 0x0)

[ 2370.738461] FAULT_INJECTION: forcing a failure.
[ 2370.738461] name failslab, interval 1, probability 0, space 0, times 0
[ 2370.741445] CPU: 1 PID: 12425 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2370.742990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2370.745341] Call Trace:
[ 2370.745368]  dump_stack+0x107/0x167
[ 2370.745396]  should_fail.cold+0x5/0xa
[ 2370.745423]  ? security_inode_alloc+0x34/0x160
[ 2370.745449]  should_failslab+0x5/0x20
[ 2370.745469]  kmem_cache_alloc+0x5b/0x310
[ 2370.745500]  security_inode_alloc+0x34/0x160
[ 2370.745523]  inode_init_always+0xa4e/0xd10
[ 2370.745546]  alloc_inode+0x84/0x240
[ 2370.745565]  new_inode+0x23/0x250
[ 2370.745590]  debugfs_get_inode+0x1a/0x130
[ 2370.745611]  __debugfs_create_file+0x14e/0x530
04:09:14 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x7}, 0x0)

[ 2370.745636]  ? blk_trace_remove+0x40/0x40
[ 2370.745657]  relay_create_buf_file+0xf6/0x180
[ 2370.745681]  relay_open_buf.part.0+0x7de/0xc00
04:09:14 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0xd}, 0x0)

[ 2370.745716]  relay_open+0x531/0xa10
[ 2370.745746]  do_blk_trace_setup+0x4cf/0xc10
[ 2370.745769]  ? _copy_from_user+0xfb/0x1b0
[ 2370.745792]  __blk_trace_setup+0xca/0x180
[ 2370.745813]  ? do_blk_trace_setup+0xc10/0xc10
[ 2370.745850]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2370.745881]  blk_trace_setup+0x43/0x60
[ 2370.745907]  sg_ioctl_common+0x634/0x2570
[ 2370.745930]  ? __sanitizer_cov_trace_switch+0x45/0x80
04:09:14 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x4}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:15 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x3, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2370.745952]  ? do_vfs_ioctl+0x283/0x10d0
[ 2370.745971]  ? sg_write+0x120/0x120
[ 2370.745990]  ? generic_block_fiemap+0x60/0x60
[ 2370.746016]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2370.746056]  ? selinux_file_ioctl+0xb6/0x270
04:09:15 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 53)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2370.746074]  ? sg_compat_ioctl+0x120/0x120
[ 2370.746096]  sg_ioctl+0x8f/0x120
[ 2370.746120]  __x64_sys_ioctl+0x19a/0x210
[ 2370.746147]  do_syscall_64+0x33/0x40
[ 2370.746166]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2370.746180] RIP: 0033:0x7fb64c457b19
[ 2370.746203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2370.746215] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2370.746239] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2370.746252] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2370.746264] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2370.746277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2370.746290] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2370.746716] debugfs: out of free dentries, can not create file 'trace0'
[ 2370.756392] FAULT_INJECTION: forcing a failure.
[ 2370.756392] name failslab, interval 1, probability 0, space 0, times 0
[ 2370.756415] CPU: 0 PID: 12422 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2370.756426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2370.756433] Call Trace:
[ 2370.756457]  dump_stack+0x107/0x167
[ 2370.756483]  should_fail.cold+0x5/0xa
[ 2370.756505]  ? create_object.isra.0+0x3a/0xa20
[ 2370.756527]  should_failslab+0x5/0x20
[ 2370.756546]  kmem_cache_alloc+0x5b/0x310
[ 2370.756567]  ? mark_held_locks+0x9e/0xe0
04:09:15 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 39)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:15 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x4, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2370.756590]  create_object.isra.0+0x3a/0xa20
[ 2370.756610]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2370.756636]  kmem_cache_alloc_bulk+0x168/0x320
[ 2370.756662]  io_submit_sqes+0x6f76/0x85c0
[ 2370.756715]  ? __do_sys_io_uring_enter+0x6b5/0x1920
04:09:15 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x8}, 0x0)

[ 2370.756734]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2370.756757]  ? lock_downgrade+0x6d0/0x6d0
[ 2370.756774]  ? find_held_lock+0x2c/0x110
[ 2370.756798]  ? io_submit_sqes+0x85c0/0x85c0
[ 2370.756826]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2370.756850]  ? wait_for_completion_io+0x270/0x270
[ 2370.756873]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2370.756890]  ? vfs_write+0x354/0xa70
[ 2370.756912]  ? fput_many+0x2f/0x1a0
[ 2370.756933]  ? ksys_write+0x1a9/0x260
[ 2370.756952]  ? __ia32_sys_read+0xb0/0xb0
[ 2370.756976]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2370.756994]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2370.757018]  do_syscall_64+0x33/0x40
[ 2370.757036]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2370.757049] RIP: 0033:0x7f1edfa23b19
[ 2370.757069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2370.757080] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2370.757101] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
04:09:15 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x2}, 0x0)

[ 2370.757112] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2370.757124] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2370.757135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2370.757147] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2370.763645] device veth0_vlan entered promiscuous mode
[ 2370.797343] FAULT_INJECTION: forcing a failure.
[ 2370.797343] name failslab, interval 1, probability 0, space 0, times 0
[ 2370.797365] CPU: 0 PID: 12429 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2370.797376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
04:09:15 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2370.797382] Call Trace:
[ 2370.797406]  dump_stack+0x107/0x167
[ 2370.797431]  should_fail.cold+0x5/0xa
[ 2370.797453]  ? create_object.isra.0+0x3a/0xa20
[ 2370.797475]  should_failslab+0x5/0x20
[ 2370.797494]  kmem_cache_alloc+0x5b/0x310
04:09:15 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x8}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2370.797518]  create_object.isra.0+0x3a/0xa20
[ 2370.797538]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2370.797562]  kmem_cache_alloc_node+0x169/0x330
[ 2370.797588]  __alloc_skb+0x6d/0x5b0
[ 2370.797615]  inet_netconf_notify_devconf+0xdd/0x250
[ 2370.797636]  inetdev_event+0x1035/0x1610
[ 2370.797657]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2370.797673]  ? call_rcu+0x435/0x9c0
[ 2370.797689]  ? devinet_init_net+0x650/0x650
[ 2370.797715]  ? nh_netdev_event+0x8c/0x370
[ 2370.797735]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2370.797760]  raw_notifier_call_chain+0xb3/0x110
[ 2370.797785]  call_netdevice_notifiers_info+0xb5/0x130
[ 2370.797808]  unregister_netdevice_many+0x852/0x1490
[ 2370.797835]  ? netdev_pick_tx+0xc70/0xc70
[ 2370.797861]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2370.797878]  ? queue_delayed_work_on+0xb4/0xe0
[ 2370.797894]  ? trace_hardirqs_on+0x5b/0x180
[ 2370.797920]  unregister_netdevice_queue+0x201/0x2c0
[ 2370.797941]  ? unregister_netdevice_many+0x1490/0x1490
[ 2370.797962]  ? linkwatch_fire_event+0x63/0x190
[ 2370.797988]  __tun_detach+0xf92/0x1280
[ 2370.798019]  tun_chr_close+0xc4/0x250
[ 2370.798042]  __fput+0x285/0x980
[ 2370.798061]  ? __tun_detach+0x1280/0x1280
[ 2370.798085]  task_work_run+0xe2/0x1a0
[ 2370.798112]  exit_to_user_mode_prepare+0x186/0x190
[ 2370.798132]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2370.798151]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2370.798164] RIP: 0033:0x7ff4e0665b19
[ 2370.798184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2370.798195] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2370.798216] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2370.798228] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2370.798240] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2370.798251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2370.798263] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
[ 2370.850267] device veth0_vlan entered promiscuous mode
[ 2370.996321] FAULT_INJECTION: forcing a failure.
[ 2370.996321] name failslab, interval 1, probability 0, space 0, times 0
[ 2370.996349] CPU: 1 PID: 12454 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2370.996361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2370.996368] Call Trace:
[ 2370.996394]  dump_stack+0x107/0x167
[ 2370.996420]  should_fail.cold+0x5/0xa
[ 2370.996443]  ? create_object.isra.0+0x3a/0xa20
[ 2370.996466]  should_failslab+0x5/0x20
[ 2370.996487]  kmem_cache_alloc+0x5b/0x310
[ 2370.996513]  create_object.isra.0+0x3a/0xa20
[ 2370.996535]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2370.996561]  kmem_cache_alloc+0x159/0x310
[ 2370.996592]  security_inode_alloc+0x34/0x160
04:09:15 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x3}, 0x0)

[ 2370.996614]  inode_init_always+0xa4e/0xd10
[ 2370.996636]  alloc_inode+0x84/0x240
[ 2370.996654]  new_inode+0x23/0x250
[ 2370.996677]  debugfs_get_inode+0x1a/0x130
[ 2370.996698]  __debugfs_create_file+0x14e/0x530
[ 2370.996722]  ? blk_trace_remove+0x40/0x40
[ 2370.996742]  relay_create_buf_file+0xf6/0x180
[ 2370.996765]  relay_open_buf.part.0+0x7de/0xc00
[ 2370.996799]  relay_open+0x531/0xa10
[ 2370.996828]  do_blk_trace_setup+0x4cf/0xc10
[ 2370.996850]  ? _copy_from_user+0xfb/0x1b0
[ 2370.996877]  __blk_trace_setup+0xca/0x180
[ 2370.996898]  ? do_blk_trace_setup+0xc10/0xc10
[ 2370.996933]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2370.996963]  blk_trace_setup+0x43/0x60
[ 2370.996988]  sg_ioctl_common+0x634/0x2570
[ 2370.997011]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2370.997031]  ? do_vfs_ioctl+0x283/0x10d0
[ 2370.997049]  ? sg_write+0x120/0x120
[ 2370.997068]  ? generic_block_fiemap+0x60/0x60
[ 2370.997093]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2370.997132]  ? selinux_file_ioctl+0xb6/0x270
[ 2370.997149]  ? sg_compat_ioctl+0x120/0x120
[ 2370.997170]  sg_ioctl+0x8f/0x120
[ 2370.997193]  __x64_sys_ioctl+0x19a/0x210
[ 2370.997219]  do_syscall_64+0x33/0x40
[ 2370.997238]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2370.997252] RIP: 0033:0x7fb64c457b19
[ 2370.997274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2370.997285] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2370.997308] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2370.997321] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2370.997333] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2370.997345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2370.997358] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2371.115486] FAULT_INJECTION: forcing a failure.
[ 2371.115486] name failslab, interval 1, probability 0, space 0, times 0
[ 2371.205062] CPU: 1 PID: 12460 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2371.206560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2371.208416] Call Trace:
[ 2371.208984]  dump_stack+0x107/0x167
[ 2371.209774]  should_fail.cold+0x5/0xa
[ 2371.210603]  ? create_object.isra.0+0x3a/0xa20
[ 2371.211602]  should_failslab+0x5/0x20
[ 2371.212444]  kmem_cache_alloc+0x5b/0x310
[ 2371.213301]  ? mark_held_locks+0x9e/0xe0
[ 2371.214179]  create_object.isra.0+0x3a/0xa20
[ 2371.215147]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2371.216231]  kmem_cache_alloc_bulk+0x168/0x320
[ 2371.217218]  io_submit_sqes+0x6f76/0x85c0
[ 2371.218139]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2371.219217]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2371.220255]  ? lock_downgrade+0x6d0/0x6d0
[ 2371.221144]  ? find_held_lock+0x2c/0x110
[ 2371.222021]  ? io_submit_sqes+0x85c0/0x85c0
[ 2371.222964]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2371.224003]  ? wait_for_completion_io+0x270/0x270
[ 2371.225039]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2371.226013]  ? vfs_write+0x354/0xa70
[ 2371.226833]  ? fput_many+0x2f/0x1a0
[ 2371.227619]  ? ksys_write+0x1a9/0x260
[ 2371.228439]  ? __ia32_sys_read+0xb0/0xb0
[ 2371.229436]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2371.230568]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2371.231688]  do_syscall_64+0x33/0x40
[ 2371.232488]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2371.233587] RIP: 0033:0x7f1edfa23b19
[ 2371.234390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2371.238445] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2371.240089] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2371.241621] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2371.243174] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2371.244702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2371.246231] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:09:15 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x9}, 0x0)

04:09:15 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x300, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:28 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 54)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:09:28 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 40)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:28 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc11e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:28 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, 0xffffffffffffffff, 0x0)

04:09:28 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 29)

04:09:28 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x4}, 0x0)

04:09:28 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xe}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:28 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf}, 0x0)

[ 2384.349498] FAULT_INJECTION: forcing a failure.
[ 2384.349498] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2384.351438] CPU: 1 PID: 12503 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2384.352340] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2384.352345] Call Trace:
[ 2384.352363]  dump_stack+0x107/0x167
[ 2384.352380]  should_fail.cold+0x5/0xa
[ 2384.352399]  __alloc_pages_nodemask+0x182/0x600
[ 2384.352412]  ? lock_acquire+0x197/0x470
[ 2384.352425]  ? lockref_get+0x11/0x50
[ 2384.352439]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2384.352457]  ? lock_downgrade+0x6d0/0x6d0
[ 2384.352469]  ? do_raw_spin_lock+0x121/0x260
[ 2384.352484]  ? rwlock_bug.part.0+0x90/0x90
[ 2384.352500]  alloc_pages_current+0x187/0x280
[ 2384.352516]  __get_free_pages+0xc/0xa0
[ 2384.352528]  inode_doinit_with_dentry+0x8f1/0x1240
[ 2384.352543]  ? retrigger_next_event+0x167/0x1f0
[ 2384.352554]  ? hrtimer_init+0x20/0x170
[ 2384.352566]  ? selinux_file_lock+0x280/0x280
[ 2384.352578]  ? current_time+0x1e6/0x2c0
[ 2384.352589]  ? igrab+0xc0/0xc0
[ 2384.352604]  selinux_d_instantiate+0x23/0x30
[ 2384.352618]  security_d_instantiate+0x56/0xe0
[ 2384.352632]  d_instantiate+0x5a/0x90
[ 2384.352646]  __debugfs_create_file+0x246/0x530
[ 2384.352661]  ? blk_trace_remove+0x40/0x40
[ 2384.352673]  relay_create_buf_file+0xf6/0x180
[ 2384.352688]  relay_open_buf.part.0+0x7de/0xc00
[ 2384.352710]  relay_open+0x531/0xa10
[ 2384.355808] FAULT_INJECTION: forcing a failure.
[ 2384.355808] name failslab, interval 1, probability 0, space 0, times 0
[ 2384.356074]  do_blk_trace_setup+0x4cf/0xc10
[ 2384.356089]  ? _copy_from_user+0xfb/0x1b0
[ 2384.356104]  __blk_trace_setup+0xca/0x180
[ 2384.356120]  ? do_blk_trace_setup+0xc10/0xc10
[ 2384.371147]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2384.371817]  blk_trace_setup+0x43/0x60
[ 2384.372338]  sg_ioctl_common+0x634/0x2570
[ 2384.372867]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2384.373530]  ? do_vfs_ioctl+0x283/0x10d0
[ 2384.374046]  ? sg_write+0x120/0x120
[ 2384.374505]  ? generic_block_fiemap+0x60/0x60
[ 2384.375109]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2384.375783]  ? selinux_file_ioctl+0xb6/0x270
[ 2384.376386]  ? sg_compat_ioctl+0x120/0x120
[ 2384.376972]  sg_ioctl+0x8f/0x120
[ 2384.377450]  __x64_sys_ioctl+0x19a/0x210
[ 2384.378019]  do_syscall_64+0x33/0x40
[ 2384.378532]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2384.379254] RIP: 0033:0x7fb64c457b19
[ 2384.379771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2384.382317] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2384.383326] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2384.384310] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2384.385294] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2384.386279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2384.387298] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2384.388296] CPU: 0 PID: 12501 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2384.389199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2384.390197] Call Trace:
[ 2384.390516]  dump_stack+0x107/0x167
[ 2384.390965]  should_fail.cold+0x5/0xa
[ 2384.391402]  ? create_object.isra.0+0x3a/0xa20
[ 2384.391931]  should_failslab+0x5/0x20
[ 2384.392362]  kmem_cache_alloc+0x5b/0x310
[ 2384.392829]  ? mark_held_locks+0x9e/0xe0
[ 2384.393291]  create_object.isra.0+0x3a/0xa20
[ 2384.393786]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2384.394369]  kmem_cache_alloc_bulk+0x168/0x320
[ 2384.394893]  io_submit_sqes+0x6f76/0x85c0
[ 2384.395383]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2384.395946]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2384.396498]  ? lock_downgrade+0x6d0/0x6d0
[ 2384.396972]  ? find_held_lock+0x2c/0x110
[ 2384.397432]  ? io_submit_sqes+0x85c0/0x85c0
[ 2384.397933]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2384.398476]  ? wait_for_completion_io+0x270/0x270
[ 2384.399037]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2384.399561]  ? vfs_write+0x354/0xa70
[ 2384.399986]  ? fput_many+0x2f/0x1a0
[ 2384.400404]  ? ksys_write+0x1a9/0x260
[ 2384.400837]  ? __ia32_sys_read+0xb0/0xb0
[ 2384.401301]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2384.401892]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2384.402477]  do_syscall_64+0x33/0x40
[ 2384.402927]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2384.403534] RIP: 0033:0x7f1edfa23b19
[ 2384.403980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2384.406142] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2384.407044] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2384.407885] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2384.408715] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2384.409560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2384.410399] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2384.412639] device veth0_vlan entered promiscuous mode
[ 2384.432581] device veth0_vlan entered promiscuous mode
[ 2384.443422] FAULT_INJECTION: forcing a failure.
[ 2384.443422] name failslab, interval 1, probability 0, space 0, times 0
[ 2384.445204] CPU: 0 PID: 12498 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2384.446026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2384.447012] Call Trace:
[ 2384.447334]  dump_stack+0x107/0x167
[ 2384.447772]  should_fail.cold+0x5/0xa
[ 2384.448223]  should_failslab+0x5/0x20
[ 2384.448672]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2384.449255]  ? inet_netconf_notify_devconf+0xdd/0x250
[ 2384.449873]  __alloc_skb+0xb1/0x5b0
[ 2384.450301]  inet_netconf_notify_devconf+0xdd/0x250
[ 2384.450906]  inetdev_event+0x1035/0x1610
[ 2384.451382]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2384.452000]  ? call_rcu+0x435/0x9c0
[ 2384.452423]  ? devinet_init_net+0x650/0x650
[ 2384.452941]  ? nh_netdev_event+0x8c/0x370
[ 2384.453432]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2384.454044]  raw_notifier_call_chain+0xb3/0x110
[ 2384.454587]  call_netdevice_notifiers_info+0xb5/0x130
[ 2384.455199]  unregister_netdevice_many+0x852/0x1490
[ 2384.455788]  ? netdev_pick_tx+0xc70/0xc70
[ 2384.456288]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2384.456902]  ? queue_delayed_work_on+0xb4/0xe0
[ 2384.457438]  ? trace_hardirqs_on+0x5b/0x180
[ 2384.457949]  unregister_netdevice_queue+0x201/0x2c0
[ 2384.458535]  ? unregister_netdevice_many+0x1490/0x1490
[ 2384.459154]  ? linkwatch_fire_event+0x63/0x190
[ 2384.459693]  __tun_detach+0xf92/0x1280
[ 2384.460161]  tun_chr_close+0xc4/0x250
[ 2384.460611]  __fput+0x285/0x980
[ 2384.460998]  ? __tun_detach+0x1280/0x1280
[ 2384.461493]  task_work_run+0xe2/0x1a0
[ 2384.461941]  exit_to_user_mode_prepare+0x186/0x190
[ 2384.462515]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2384.463087]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2384.463685] RIP: 0033:0x7ff4e0665b19
[ 2384.464127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2384.466257] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2384.467145] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2384.467969] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2384.468802] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2384.469636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2384.470452] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:09:43 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 41)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:43 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x21}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:43 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:43 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 55)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:09:43 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x5}, 0x0)

04:09:43 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d604d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:43 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf0}, 0x0)

04:09:43 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 30)

[ 2399.785358] FAULT_INJECTION: forcing a failure.
[ 2399.785358] name failslab, interval 1, probability 0, space 0, times 0
[ 2399.788116] CPU: 0 PID: 12524 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2399.789760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2399.791898] Call Trace:
[ 2399.792494]  dump_stack+0x107/0x167
[ 2399.793294]  should_fail.cold+0x5/0xa
[ 2399.794132]  ? relay_open_buf.part.0+0x91/0xc00
[ 2399.795163]  should_failslab+0x5/0x20
[ 2399.796023]  kmem_cache_alloc_trace+0x55/0x320
[ 2399.796996]  ? __relay_reset+0x318/0x450
[ 2399.797861]  relay_open_buf.part.0+0x91/0xc00
[ 2399.798818]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2399.799924]  relay_open+0x531/0xa10
[ 2399.800707]  do_blk_trace_setup+0x4cf/0xc10
[ 2399.801612]  ? _copy_from_user+0xfb/0x1b0
[ 2399.802488]  __blk_trace_setup+0xca/0x180
[ 2399.803364]  ? do_blk_trace_setup+0xc10/0xc10
[ 2399.804321]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2399.805435]  blk_trace_setup+0x43/0x60
[ 2399.805791] FAULT_INJECTION: forcing a failure.
[ 2399.805791] name failslab, interval 1, probability 0, space 0, times 0
[ 2399.806253]  sg_ioctl_common+0x634/0x2570
[ 2399.806275]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2399.806295]  ? do_vfs_ioctl+0x283/0x10d0
[ 2399.806319]  ? sg_write+0x120/0x120
[ 2399.811978]  ? generic_block_fiemap+0x60/0x60
[ 2399.812936]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2399.813978]  ? selinux_file_ioctl+0xb6/0x270
[ 2399.814921]  ? sg_compat_ioctl+0x120/0x120
[ 2399.815873]  sg_ioctl+0x8f/0x120
[ 2399.816613]  __x64_sys_ioctl+0x19a/0x210
[ 2399.817487]  do_syscall_64+0x33/0x40
[ 2399.818289]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2399.819415] RIP: 0033:0x7fb64c457b19
[ 2399.820212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2399.824070] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2399.825654] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2399.827168] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2399.828656] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2399.830147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2399.831649] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2399.833167] CPU: 1 PID: 12529 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2399.834476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2399.836086] Call Trace:
[ 2399.836589]  dump_stack+0x107/0x167
[ 2399.837296]  should_fail.cold+0x5/0xa
[ 2399.838012]  ? create_object.isra.0+0x3a/0xa20
[ 2399.838868]  should_failslab+0x5/0x20
[ 2399.839593]  kmem_cache_alloc+0x5b/0x310
[ 2399.840356]  create_object.isra.0+0x3a/0xa20
[ 2399.841176]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2399.842128]  kmem_cache_alloc_bulk+0x168/0x320
[ 2399.842997]  io_submit_sqes+0x6f76/0x85c0
[ 2399.843803]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2399.844737]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2399.845641]  ? lock_downgrade+0x6d0/0x6d0
[ 2399.846404]  ? find_held_lock+0x2c/0x110
[ 2399.847178]  ? io_submit_sqes+0x85c0/0x85c0
[ 2399.847981]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2399.848862]  ? wait_for_completion_io+0x270/0x270
[ 2399.849746]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2399.850597]  ? vfs_write+0x354/0xa70
[ 2399.851297]  ? fput_many+0x2f/0x1a0
[ 2399.851966]  ? ksys_write+0x1a9/0x260
[ 2399.852665]  ? __ia32_sys_read+0xb0/0xb0
[ 2399.853415]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2399.854370]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2399.855334]  do_syscall_64+0x33/0x40
[ 2399.856028]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2399.856990] RIP: 0033:0x7f1edfa23b19
[ 2399.857673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2399.861184] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2399.862609] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2399.863986] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2399.865284] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2399.866573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2399.867869] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:09:44 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 56)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:09:44 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x1fc}, 0x0)

04:09:44 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x300}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2399.928991] device veth0_vlan entered promiscuous mode
04:09:44 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x6}, 0x0)

04:09:44 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d625d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2399.984643] FAULT_INJECTION: forcing a failure.
[ 2399.984643] name failslab, interval 1, probability 0, space 0, times 0
[ 2399.986692] CPU: 1 PID: 12549 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2399.987924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2399.989309] Call Trace:
[ 2399.989753]  dump_stack+0x107/0x167
[ 2399.990371]  should_fail.cold+0x5/0xa
[ 2399.991018]  ? create_object.isra.0+0x3a/0xa20
[ 2399.991779]  should_failslab+0x5/0x20
[ 2399.992421]  kmem_cache_alloc+0x5b/0x310
[ 2399.993107]  ? lockdep_init_map_type+0x2c7/0x780
[ 2399.993895]  create_object.isra.0+0x3a/0xa20
[ 2399.994625]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2399.995491]  kmem_cache_alloc_trace+0x151/0x320
[ 2399.996291]  relay_open_buf.part.0+0x91/0xc00
[ 2399.997045]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2399.997917]  relay_open+0x531/0xa10
[ 2399.998548]  do_blk_trace_setup+0x4cf/0xc10
[ 2399.999292]  ? _copy_from_user+0xfb/0x1b0
[ 2399.999991]  __blk_trace_setup+0xca/0x180
[ 2400.000691]  ? do_blk_trace_setup+0xc10/0xc10
[ 2400.001459]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2400.002353]  blk_trace_setup+0x43/0x60
[ 2400.003024]  sg_ioctl_common+0x634/0x2570
[ 2400.003725]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2400.004598]  ? do_vfs_ioctl+0x283/0x10d0
[ 2400.005275]  ? sg_write+0x120/0x120
[ 2400.005885]  ? generic_block_fiemap+0x60/0x60
[ 2400.006635]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2400.007493]  ? selinux_file_ioctl+0xb6/0x270
[ 2400.008209]  ? sg_compat_ioctl+0x120/0x120
[ 2400.008919]  sg_ioctl+0x8f/0x120
[ 2400.009474]  __x64_sys_ioctl+0x19a/0x210
[ 2400.010166]  do_syscall_64+0x33/0x40
[ 2400.010810]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2400.011679] RIP: 0033:0x7fb64c457b19
[ 2400.012306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2400.015386] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2400.016649] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2400.017832] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2400.019028] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2400.020213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2400.021399] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2400.023752] FAULT_INJECTION: forcing a failure.
[ 2400.023752] name failslab, interval 1, probability 0, space 0, times 0
[ 2400.026671] CPU: 0 PID: 12536 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2400.028130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2400.029844] Call Trace:
[ 2400.030398]  dump_stack+0x107/0x167
[ 2400.031170]  should_fail.cold+0x5/0xa
[ 2400.031970]  should_failslab+0x5/0x20
[ 2400.032760]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2400.033791]  ? inet_netconf_notify_devconf+0xdd/0x250
[ 2400.034865]  __alloc_skb+0xb1/0x5b0
[ 2400.035634]  inet_netconf_notify_devconf+0xdd/0x250
[ 2400.036667]  inetdev_event+0x1035/0x1610
[ 2400.037512]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2400.038592]  ? call_rcu+0x435/0x9c0
[ 2400.039593]  ? devinet_init_net+0x650/0x650
[ 2400.040668]  ? nh_netdev_event+0x8c/0x370
[ 2400.041692]  ? __sanitizer_cov_trace_switch+0x45/0x80
04:09:44 executing program 4:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x7}, 0x0)

[ 2400.042971]  raw_notifier_call_chain+0xb3/0x110
[ 2400.044304]  call_netdevice_notifiers_info+0xb5/0x130
[ 2400.045589]  unregister_netdevice_many+0x852/0x1490
[ 2400.046841]  ? netdev_pick_tx+0xc70/0xc70
[ 2400.047894]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2400.049193]  ? queue_delayed_work_on+0xb4/0xe0
[ 2400.050321]  ? trace_hardirqs_on+0x5b/0x180
[ 2400.051415]  unregister_netdevice_queue+0x201/0x2c0
[ 2400.052583]  ? unregister_netdevice_many+0x1490/0x1490
[ 2400.053691]  ? linkwatch_fire_event+0x63/0x190
[ 2400.054668]  __tun_detach+0xf92/0x1280
[ 2400.055521]  tun_chr_close+0xc4/0x250
[ 2400.056315]  __fput+0x285/0x980
[ 2400.057015]  ? __tun_detach+0x1280/0x1280
[ 2400.057881]  task_work_run+0xe2/0x1a0
[ 2400.058688]  exit_to_user_mode_prepare+0x186/0x190
[ 2400.059726]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2400.060737]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2400.061799] RIP: 0033:0x7ff4e0665b19
[ 2400.062596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2400.066415] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2400.068018] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2400.069506] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2400.070985] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2400.072508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2400.074000] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:09:44 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x300}, 0x0)

04:09:44 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1e4}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:57 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 31)

04:09:57 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x8}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xe00}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x7}, 0x0)

04:09:57 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 42)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x500}, 0x0)

04:09:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb02166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:57 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 57)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2413.421784] FAULT_INJECTION: forcing a failure.
[ 2413.421784] name failslab, interval 1, probability 0, space 0, times 0
[ 2413.424530] CPU: 1 PID: 12587 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2413.425930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2413.427619] Call Trace:
[ 2413.428183]  dump_stack+0x107/0x167
[ 2413.428934]  should_fail.cold+0x5/0xa
[ 2413.429719]  ? create_object.isra.0+0x3a/0xa20
[ 2413.430669]  should_failslab+0x5/0x20
[ 2413.431481]  kmem_cache_alloc+0x5b/0x310
[ 2413.432315]  create_object.isra.0+0x3a/0xa20
[ 2413.433210]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2413.434276]  kmem_cache_alloc_trace+0x151/0x320
[ 2413.435251]  relay_open_buf.part.0+0x91/0xc00
[ 2413.436182]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2413.437237]  relay_open+0x531/0xa10
[ 2413.438003]  do_blk_trace_setup+0x4cf/0xc10
[ 2413.438882]  ? _copy_from_user+0xfb/0x1b0
[ 2413.439742]  __blk_trace_setup+0xca/0x180
[ 2413.440598]  ? do_blk_trace_setup+0xc10/0xc10
[ 2413.441536]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2413.442633]  blk_trace_setup+0x43/0x60
[ 2413.443456]  sg_ioctl_common+0x634/0x2570
[ 2413.444308]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2413.445373]  ? do_vfs_ioctl+0x283/0x10d0
[ 2413.446201]  ? sg_write+0x120/0x120
[ 2413.446952]  ? generic_block_fiemap+0x60/0x60
[ 2413.447887]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2413.448906]  ? selinux_file_ioctl+0xb6/0x270
[ 2413.449807]  ? sg_compat_ioctl+0x120/0x120
[ 2413.450678]  sg_ioctl+0x8f/0x120
[ 2413.451397]  __x64_sys_ioctl+0x19a/0x210
[ 2413.452244]  do_syscall_64+0x33/0x40
[ 2413.453011]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2413.454062] RIP: 0033:0x7fb64c457b19
[ 2413.454833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2413.458600] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2413.460160] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2413.461628] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2413.463092] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2413.464552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2413.466014] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2413.471400] FAULT_INJECTION: forcing a failure.
[ 2413.471400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2413.474671] CPU: 0 PID: 12597 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2413.476256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2413.477991] Call Trace:
[ 2413.478552]  dump_stack+0x107/0x167
[ 2413.479338]  should_fail.cold+0x5/0xa
[ 2413.480142]  _copy_from_user+0x2e/0x1b0
[ 2413.480980]  move_addr_to_kernel.part.0+0x31/0x110
[ 2413.482019]  move_addr_to_kernel+0x4f/0x70
[ 2413.482915]  io_connect+0x47a/0x610
[ 2413.483686]  ? io_prep_rw+0x1050/0x1050
[ 2413.484526]  ? lock_acquire+0x197/0x470
[ 2413.485354]  ? __lock_acquire+0xbb1/0x5b00
[ 2413.486241]  io_issue_sqe+0x1611/0x7700
[ 2413.487075]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2413.488172]  ? lock_chain_count+0x20/0x20
[ 2413.489032]  ? __is_insn_slot_addr+0x14c/0x290
[ 2413.489981]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2413.491064]  ? io_connect+0x610/0x610
[ 2413.491878]  ? lock_acquire+0x197/0x470
[ 2413.492701]  ? find_held_lock+0x2c/0x110
[ 2413.493549]  ? __fget_files+0x26d/0x4c0
[ 2413.494374]  ? lock_downgrade+0x6d0/0x6d0
[ 2413.495253]  __io_queue_sqe+0x90/0x9d0
[ 2413.496066]  ? io_issue_sqe+0x7700/0x7700
[ 2413.496942]  io_submit_sqes+0x4461/0x85c0
[ 2413.497835]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2413.498866]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2413.499882]  ? lock_downgrade+0x6d0/0x6d0
[ 2413.500739]  ? find_held_lock+0x2c/0x110
[ 2413.501588]  ? io_submit_sqes+0x85c0/0x85c0
[ 2413.502489]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2413.503505]  ? wait_for_completion_io+0x270/0x270
[ 2413.504510]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2413.505469]  ? vfs_write+0x354/0xa70
[ 2413.506243]  ? fput_many+0x2f/0x1a0
[ 2413.506998]  ? ksys_write+0x1a9/0x260
[ 2413.507804]  ? __ia32_sys_read+0xb0/0xb0
[ 2413.508652]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2413.509737]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2413.510812]  do_syscall_64+0x33/0x40
[ 2413.511591]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2413.512651] RIP: 0033:0x7f1edfa23b19
[ 2413.513424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2413.517224] RSP: 002b:00007f1edcf78188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2413.518795] RAX: ffffffffffffffda RBX: 00007f1edfb37020 RCX: 00007f1edfa23b19
[ 2413.520289] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2413.521759] RBP: 00007f1edcf781d0 R08: 0000000000000000 R09: 0000000000000000
[ 2413.523238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2413.524712] R13: 00007ffd53ee3cbf R14: 00007f1edcf78300 R15: 0000000000022000
[ 2413.542109] device veth0_vlan entered promiscuous mode
04:09:57 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x600}, 0x0)

04:09:57 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

[ 2413.597662] FAULT_INJECTION: forcing a failure.
[ 2413.597662] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2413.600706] CPU: 1 PID: 12590 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2413.602149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2413.603842] Call Trace:
[ 2413.604387]  dump_stack+0x107/0x167
[ 2413.605136]  should_fail.cold+0x5/0xa
[ 2413.605927]  __alloc_pages_nodemask+0x182/0x600
[ 2413.606879]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2413.608145]  alloc_pages_current+0x187/0x280
[ 2413.609052]  allocate_slab+0x26f/0x380
[ 2413.609852]  ___slab_alloc+0x470/0x700
[ 2413.610652]  ? inet_netconf_notify_devconf+0xdd/0x250
[ 2413.611727]  ? __kmalloc_node_track_caller+0x393/0x3b0
[ 2413.612800]  __kmalloc_node_track_caller+0x393/0x3b0
[ 2413.613831]  ? inet_netconf_notify_devconf+0xdd/0x250
[ 2413.614889]  __alloc_skb+0xb1/0x5b0
[ 2413.615651]  inet_netconf_notify_devconf+0xdd/0x250
[ 2413.616671]  inetdev_event+0x1035/0x1610
[ 2413.617501]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2413.618565]  ? call_rcu+0x435/0x9c0
[ 2413.619312]  ? devinet_init_net+0x650/0x650
[ 2413.620198]  ? nh_netdev_event+0x8c/0x370
[ 2413.621049]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2413.622107]  raw_notifier_call_chain+0xb3/0x110
[ 2413.623067]  call_netdevice_notifiers_info+0xb5/0x130
[ 2413.624146]  unregister_netdevice_many+0x852/0x1490
[ 2413.625173]  ? netdev_pick_tx+0xc70/0xc70
[ 2413.626028]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2413.627097]  ? queue_delayed_work_on+0xb4/0xe0
[ 2413.628031]  ? trace_hardirqs_on+0x5b/0x180
[ 2413.628924]  unregister_netdevice_queue+0x201/0x2c0
[ 2413.629944]  ? unregister_netdevice_many+0x1490/0x1490
[ 2413.631016]  ? linkwatch_fire_event+0x63/0x190
[ 2413.631962]  __tun_detach+0xf92/0x1280
[ 2413.632774]  tun_chr_close+0xc4/0x250
[ 2413.633557]  __fput+0x285/0x980
[ 2413.634233]  ? __tun_detach+0x1280/0x1280
[ 2413.635088]  task_work_run+0xe2/0x1a0
[ 2413.635890]  exit_to_user_mode_prepare+0x186/0x190
[ 2413.636906]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2413.637887]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2413.638927] RIP: 0033:0x7ff4e0665b19
[ 2413.639696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2413.643473] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2413.645025] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2413.646481] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2413.647937] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2413.649384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2413.650837] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:09:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb03166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:57 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 43)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:09:57 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x60ff}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:09:57 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x8}, 0x0)

04:09:57 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb04166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:09:57 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 58)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2413.802744] FAULT_INJECTION: forcing a failure.
[ 2413.802744] name failslab, interval 1, probability 0, space 0, times 0
[ 2413.805366] CPU: 1 PID: 12615 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2413.806772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2413.808464] Call Trace:
[ 2413.809008]  dump_stack+0x107/0x167
[ 2413.809770]  should_fail.cold+0x5/0xa
[ 2413.810547]  ? create_object.isra.0+0x3a/0xa20
[ 2413.811492]  should_failslab+0x5/0x20
[ 2413.812263]  kmem_cache_alloc+0x5b/0x310
[ 2413.813090]  ? mark_held_locks+0x9e/0xe0
[ 2413.813918]  create_object.isra.0+0x3a/0xa20
[ 2413.814814]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2413.815865]  kmem_cache_alloc_bulk+0x168/0x320
[ 2413.816803]  io_submit_sqes+0x6f76/0x85c0
[ 2413.817676]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2413.818686]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2413.819680]  ? lock_downgrade+0x6d0/0x6d0
[ 2413.820521]  ? find_held_lock+0x2c/0x110
[ 2413.821352]  ? io_submit_sqes+0x85c0/0x85c0
[ 2413.822241]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2413.823233]  ? wait_for_completion_io+0x270/0x270
[ 2413.824214]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2413.825158]  ? vfs_write+0x354/0xa70
[ 2413.825919]  ? fput_many+0x2f/0x1a0
[ 2413.826660]  ? ksys_write+0x1a9/0x260
[ 2413.827449]  ? __ia32_sys_read+0xb0/0xb0
[ 2413.828278]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2413.829339]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2413.830394]  do_syscall_64+0x33/0x40
[ 2413.831151]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2413.832200] RIP: 0033:0x7f1edfa23b19
[ 2413.832957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2413.836697] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2413.838240] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2413.839692] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2413.841135] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2413.842581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2413.843298] FAULT_INJECTION: forcing a failure.
[ 2413.843298] name failslab, interval 1, probability 0, space 0, times 0
[ 2413.844029] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2413.848511] CPU: 0 PID: 12627 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2413.849975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2413.851709] Call Trace:
[ 2413.852255]  dump_stack+0x107/0x167
[ 2413.853020]  should_fail.cold+0x5/0xa
[ 2413.853834]  ? create_object.isra.0+0x3a/0xa20
[ 2413.854788]  should_failslab+0x5/0x20
[ 2413.855599]  kmem_cache_alloc+0x5b/0x310
[ 2413.856442]  ? mark_held_locks+0x9e/0xe0
[ 2413.857284]  create_object.isra.0+0x3a/0xa20
[ 2413.858195]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2413.859264]  __kmalloc+0x16e/0x390
[ 2413.860140]  relay_open_buf.part.0+0xf9/0xc00
[ 2413.861234]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 2413.862490]  relay_open+0x531/0xa10
[ 2413.863389]  do_blk_trace_setup+0x4cf/0xc10
[ 2413.864439]  ? _copy_from_user+0xfb/0x1b0
[ 2413.865449]  __blk_trace_setup+0xca/0x180
[ 2413.866458]  ? do_blk_trace_setup+0xc10/0xc10
[ 2413.867592]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2413.868888]  blk_trace_setup+0x43/0x60
[ 2413.869846]  sg_ioctl_common+0x634/0x2570
[ 2413.870863]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2413.872123]  ? do_vfs_ioctl+0x283/0x10d0
[ 2413.873108]  ? sg_write+0x120/0x120
[ 2413.873986]  ? generic_block_fiemap+0x60/0x60
[ 2413.875080]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2413.876278]  ? selinux_file_ioctl+0xb6/0x270
[ 2413.877343]  ? sg_compat_ioctl+0x120/0x120
[ 2413.878384]  sg_ioctl+0x8f/0x120
[ 2413.879229]  __x64_sys_ioctl+0x19a/0x210
[ 2413.880230]  do_syscall_64+0x33/0x40
[ 2413.881140]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2413.882384] RIP: 0033:0x7fb64c457b19
[ 2413.883302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2413.887772] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2413.889619] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2413.891356] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2413.893082] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2413.894799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2413.896531] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:09:58 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 32)

04:09:58 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x700}, 0x0)

04:09:58 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x80000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2413.993317] device veth0_vlan entered promiscuous mode
[ 2414.038112] FAULT_INJECTION: forcing a failure.
[ 2414.038112] name failslab, interval 1, probability 0, space 0, times 0
[ 2414.041229] CPU: 1 PID: 12629 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2414.042614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2414.044234] Call Trace:
[ 2414.044745]  dump_stack+0x107/0x167
[ 2414.045465]  should_fail.cold+0x5/0xa
[ 2414.046207]  ? create_object.isra.0+0x3a/0xa20
[ 2414.047099]  ? create_object.isra.0+0x3a/0xa20
[ 2414.047985]  should_failslab+0x5/0x20
[ 2414.048729]  kmem_cache_alloc+0x5b/0x310
[ 2414.049506]  create_object.isra.0+0x3a/0xa20
[ 2414.050340]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2414.051325]  kmem_cache_alloc_node+0x169/0x330
[ 2414.052200]  __alloc_skb+0x6d/0x5b0
[ 2414.052900]  inet6_netconf_notify_devconf+0x84/0x1a0
[ 2414.053864]  addrconf_sysctl_unregister+0x131/0x1c0
[ 2414.054813]  addrconf_ifdown.isra.0+0x122b/0x15f0
[ 2414.055742]  ? addrconf_dad_run+0x180/0x180
[ 2414.056579]  addrconf_notify+0x159/0x2410
[ 2414.057351]  ? tun_device_event+0x71/0x1160
[ 2414.058178]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2414.059157]  ? inet6_ifinfo_notify+0x150/0x150
[ 2414.060020]  ? failover_register+0x530/0x530
[ 2414.060864]  ? cfg80211_netdev_notifier_call+0x298/0x10c0
[ 2414.061862]  ? ipmr_device_event+0x18b/0x1f0
[ 2414.062704]  raw_notifier_call_chain+0xb3/0x110
[ 2414.063600]  call_netdevice_notifiers_info+0xb5/0x130
[ 2414.064582]  unregister_netdevice_many+0x852/0x1490
[ 2414.065529]  ? netdev_pick_tx+0xc70/0xc70
[ 2414.066320]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2414.067323]  ? queue_delayed_work_on+0xb4/0xe0
[ 2414.068178]  ? trace_hardirqs_on+0x5b/0x180
[ 2414.068996]  unregister_netdevice_queue+0x201/0x2c0
[ 2414.069936]  ? unregister_netdevice_many+0x1490/0x1490
[ 2414.070925]  ? linkwatch_fire_event+0x63/0x190
[ 2414.071777]  __tun_detach+0xf92/0x1280
[ 2414.072521]  tun_chr_close+0xc4/0x250
[ 2414.073240]  __fput+0x285/0x980
[ 2414.073862]  ? __tun_detach+0x1280/0x1280
[ 2414.074648]  task_work_run+0xe2/0x1a0
[ 2414.075380]  exit_to_user_mode_prepare+0x186/0x190
[ 2414.076302]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2414.077206]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2414.078166] RIP: 0033:0x7ff4e0665b19
[ 2414.078867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2414.082308] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2414.083738] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2414.085066] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2414.086391] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2414.087729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2414.089051] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:10:11 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 33)

04:10:11 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 59)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:11 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x900}, 0x0)

04:10:11 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x9}, 0x0)

04:10:11 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

04:10:11 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 44)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:10:11 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xf0ff1f}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2427.565563] FAULT_INJECTION: forcing a failure.
[ 2427.565563] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.568271] CPU: 0 PID: 12645 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2427.569696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2427.571414] Call Trace:
[ 2427.571958]  dump_stack+0x107/0x167
[ 2427.572787]  should_fail.cold+0x5/0xa
[ 2427.573656]  ? relay_open_buf.part.0+0x472/0xc00
[ 2427.574740]  should_failslab+0x5/0x20
[ 2427.575619]  __kmalloc+0x72/0x390
[ 2427.576378]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2427.577420]  relay_open_buf.part.0+0x472/0xc00
[ 2427.578368]  relay_open+0x531/0xa10
[ 2427.579119]  do_blk_trace_setup+0x4cf/0xc10
[ 2427.580018]  ? _copy_from_user+0xfb/0x1b0
[ 2427.580856]  __blk_trace_setup+0xca/0x180
[ 2427.581700]  ? do_blk_trace_setup+0xc10/0xc10
[ 2427.582664]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2427.583757]  blk_trace_setup+0x43/0x60
[ 2427.584572]  sg_ioctl_common+0x634/0x2570
[ 2427.585431]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2427.586512]  ? do_vfs_ioctl+0x283/0x10d0
[ 2427.587353]  ? sg_write+0x120/0x120
[ 2427.588105]  ? generic_block_fiemap+0x60/0x60
[ 2427.589036]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2427.590064]  ? selinux_file_ioctl+0xb6/0x270
[ 2427.590966]  ? sg_compat_ioctl+0x120/0x120
[ 2427.591881]  sg_ioctl+0x8f/0x120
04:10:11 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb05166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2427.592711]  __x64_sys_ioctl+0x19a/0x210
[ 2427.593570]  do_syscall_64+0x33/0x40
[ 2427.594332]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2427.595602] RIP: 0033:0x7fb64c457b19
[ 2427.596363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2427.600853] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2427.602707] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2427.604445] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2427.606170] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2427.607910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2427.609634] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2427.626760] FAULT_INJECTION: forcing a failure.
[ 2427.626760] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.629349] CPU: 1 PID: 12652 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2427.630728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2427.632375] Call Trace:
[ 2427.632896]  dump_stack+0x107/0x167
[ 2427.633630]  should_fail.cold+0x5/0xa
[ 2427.634387]  ? create_object.isra.0+0x3a/0xa20
[ 2427.635292]  should_failslab+0x5/0x20
[ 2427.636059]  kmem_cache_alloc+0x5b/0x310
[ 2427.636860]  ? mark_held_locks+0x9e/0xe0
[ 2427.637661]  create_object.isra.0+0x3a/0xa20
[ 2427.638528]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2427.639606]  kmem_cache_alloc_bulk+0x168/0x320
[ 2427.640523]  io_submit_sqes+0x6f76/0x85c0
[ 2427.641399]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2427.642413]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2427.643395]  ? lock_downgrade+0x6d0/0x6d0
[ 2427.644229]  ? find_held_lock+0x2c/0x110
[ 2427.645065]  ? io_submit_sqes+0x85c0/0x85c0
[ 2427.645949]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2427.646934]  ? wait_for_completion_io+0x270/0x270
[ 2427.647945]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2427.648884]  ? vfs_write+0x354/0xa70
[ 2427.649646]  ? fput_many+0x2f/0x1a0
[ 2427.650392]  ? ksys_write+0x1a9/0x260
[ 2427.651164]  ? __ia32_sys_read+0xb0/0xb0
[ 2427.652001]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2427.653060]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2427.654124]  do_syscall_64+0x33/0x40
[ 2427.654882]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2427.655937] RIP: 0033:0x7f1edfa23b19
[ 2427.656694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2427.660433] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2427.660455] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2427.660467] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2427.660479] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2427.660491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
04:10:11 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf}, 0x0)

[ 2427.660503] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:10:11 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf00}, 0x0)

04:10:11 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb07166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2427.753517] device veth0_vlan entered promiscuous mode
04:10:11 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x1000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2427.843490] device veth0_vlan entered promiscuous mode
[ 2427.852189] FAULT_INJECTION: forcing a failure.
[ 2427.852189] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.854810] CPU: 1 PID: 12665 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2427.856239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2427.857926] Call Trace:
[ 2427.858468]  dump_stack+0x107/0x167
[ 2427.859219]  should_fail.cold+0x5/0xa
[ 2427.860016]  should_failslab+0x5/0x20
[ 2427.860797]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2427.861812]  ? inet6_netconf_notify_devconf+0x84/0x1a0
[ 2427.862886]  __alloc_skb+0xb1/0x5b0
[ 2427.863642]  inet6_netconf_notify_devconf+0x84/0x1a0
[ 2427.864671]  addrconf_sysctl_unregister+0x131/0x1c0
[ 2427.865684]  addrconf_ifdown.isra.0+0x122b/0x15f0
[ 2427.866671]  ? addrconf_dad_run+0x180/0x180
[ 2427.867586]  addrconf_notify+0x159/0x2410
[ 2427.868431]  ? tun_device_event+0x71/0x1160
[ 2427.869316]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2427.870367]  ? inet6_ifinfo_notify+0x150/0x150
[ 2427.871289]  ? failover_register+0x530/0x530
[ 2427.872195]  ? cfg80211_netdev_notifier_call+0x298/0x10c0
[ 2427.873301]  ? ipmr_device_event+0x18b/0x1f0
[ 2427.874198]  raw_notifier_call_chain+0xb3/0x110
[ 2427.875149]  call_netdevice_notifiers_info+0xb5/0x130
[ 2427.876217]  unregister_netdevice_many+0x852/0x1490
[ 2427.877234]  ? netdev_pick_tx+0xc70/0xc70
[ 2427.878086]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2427.879141]  ? queue_delayed_work_on+0xb4/0xe0
[ 2427.880064]  ? trace_hardirqs_on+0x5b/0x180
[ 2427.880943]  unregister_netdevice_queue+0x201/0x2c0
[ 2427.881951]  ? unregister_netdevice_many+0x1490/0x1490
[ 2427.883010]  ? linkwatch_fire_event+0x63/0x190
[ 2427.883957]  __tun_detach+0xf92/0x1280
[ 2427.884767]  tun_chr_close+0xc4/0x250
[ 2427.885545]  __fput+0x285/0x980
[ 2427.886218]  ? __tun_detach+0x1280/0x1280
[ 2427.887068]  task_work_run+0xe2/0x1a0
[ 2427.887861]  exit_to_user_mode_prepare+0x186/0x190
[ 2427.888857]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2427.889831]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2427.890875] RIP: 0033:0x7ff4e0665b19
[ 2427.891637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2427.895352] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2427.896904] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2427.898343] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2427.899794] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2427.901230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2427.902666] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
04:10:12 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf000}, 0x0)

04:10:12 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 60)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:12 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb08166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2428.008484] FAULT_INJECTION: forcing a failure.
[ 2428.008484] name failslab, interval 1, probability 0, space 0, times 0
[ 2428.011326] CPU: 1 PID: 12684 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2428.012765] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2428.014450] Call Trace:
[ 2428.015004]  dump_stack+0x107/0x167
[ 2428.015775]  should_fail.cold+0x5/0xa
[ 2428.016556]  ? create_object.isra.0+0x3a/0xa20
[ 2428.017508]  should_failslab+0x5/0x20
[ 2428.018306]  kmem_cache_alloc+0x5b/0x310
[ 2428.019144]  ? mark_held_locks+0x9e/0xe0
[ 2428.020013]  create_object.isra.0+0x3a/0xa20
[ 2428.020927]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2428.021991]  __kmalloc+0x16e/0x390
[ 2428.022726]  relay_open_buf.part.0+0x472/0xc00
[ 2428.023690]  relay_open+0x531/0xa10
[ 2428.024451]  do_blk_trace_setup+0x4cf/0xc10
[ 2428.025345]  ? _copy_from_user+0xfb/0x1b0
[ 2428.026203]  __blk_trace_setup+0xca/0x180
[ 2428.027058]  ? do_blk_trace_setup+0xc10/0xc10
[ 2428.027998]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2428.029081]  blk_trace_setup+0x43/0x60
[ 2428.029892]  sg_ioctl_common+0x634/0x2570
[ 2428.030752]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2428.031830]  ? do_vfs_ioctl+0x283/0x10d0
[ 2428.032667]  ? sg_write+0x120/0x120
[ 2428.033426]  ? generic_block_fiemap+0x60/0x60
[ 2428.034357]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2428.035386]  ? selinux_file_ioctl+0xb6/0x270
[ 2428.036293]  ? sg_compat_ioctl+0x120/0x120
[ 2428.037168]  sg_ioctl+0x8f/0x120
[ 2428.037876]  __x64_sys_ioctl+0x19a/0x210
[ 2428.038716]  do_syscall_64+0x33/0x40
[ 2428.039498]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2428.040546] RIP: 0033:0x7fb64c457b19
[ 2428.041318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2428.045044] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2428.046607] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2428.048094] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2428.049555] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2428.051020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2428.052465] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:10:27 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 61)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:27 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r3, r0, 0x0)

04:10:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x2000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:27 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf0}, 0x0)

04:10:27 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d7e244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:27 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 45)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:10:27 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xfc01}, 0x0)

04:10:27 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 34)

[ 2443.503791] FAULT_INJECTION: forcing a failure.
[ 2443.503791] name failslab, interval 1, probability 0, space 0, times 0
[ 2443.506494] CPU: 0 PID: 12696 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2443.506505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.506511] Call Trace:
[ 2443.506535]  dump_stack+0x107/0x167
[ 2443.506559]  should_fail.cold+0x5/0xa
[ 2443.506581]  ? create_object.isra.0+0x3a/0xa20
[ 2443.506603]  should_failslab+0x5/0x20
[ 2443.506621]  kmem_cache_alloc+0x5b/0x310
[ 2443.506642]  ? mark_held_locks+0x9e/0xe0
[ 2443.506664]  create_object.isra.0+0x3a/0xa20
[ 2443.506683]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.506706]  __kmalloc+0x16e/0x390
[ 2443.506732]  relay_open_buf.part.0+0x472/0xc00
[ 2443.506763]  relay_open+0x531/0xa10
[ 2443.506790]  do_blk_trace_setup+0x4cf/0xc10
04:10:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x3000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2443.506816]  ? _copy_from_user+0xfb/0x1b0
[ 2443.506837]  __blk_trace_setup+0xca/0x180
[ 2443.506855]  ? do_blk_trace_setup+0xc10/0xc10
[ 2443.506887]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2443.506914]  blk_trace_setup+0x43/0x60
[ 2443.506937]  sg_ioctl_common+0x634/0x2570
[ 2443.506958]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2443.506977]  ? do_vfs_ioctl+0x283/0x10d0
[ 2443.506994]  ? sg_write+0x120/0x120
04:10:27 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x1d6}, 0x0)

[ 2443.507012]  ? generic_block_fiemap+0x60/0x60
[ 2443.507035]  ? __mutex_unlock_slowpath+0xe1/0x600
04:10:27 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x30000}, 0x0)

[ 2443.507071]  ? selinux_file_ioctl+0xb6/0x270
[ 2443.507087]  ? sg_compat_ioctl+0x120/0x120
[ 2443.507106]  sg_ioctl+0x8f/0x120
[ 2443.507127]  __x64_sys_ioctl+0x19a/0x210
[ 2443.507151]  do_syscall_64+0x33/0x40
[ 2443.507169]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2443.507182] RIP: 0033:0x7fb64c457b19
[ 2443.507202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.507212] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2443.507234] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
04:10:27 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10002, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2443.507245] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2443.507257] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2443.507268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
04:10:27 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x4000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2443.507280] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2443.511728] FAULT_INJECTION: forcing a failure.
[ 2443.511728] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2443.511744] CPU: 1 PID: 12701 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2443.511752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.511756] Call Trace:
[ 2443.511776]  dump_stack+0x107/0x167
[ 2443.511796]  should_fail.cold+0x5/0xa
[ 2443.511819]  _copy_from_user+0x2e/0x1b0
[ 2443.511838]  move_addr_to_kernel.part.0+0x31/0x110
[ 2443.511852]  move_addr_to_kernel+0x4f/0x70
[ 2443.511867]  io_connect+0x47a/0x610
[ 2443.511881]  ? io_prep_rw+0x1050/0x1050
[ 2443.511913]  ? __lock_acquire+0xbb1/0x5b00
04:10:27 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 46)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2443.511930]  io_issue_sqe+0x1611/0x7700
[ 2443.511949]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
04:10:27 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x1fa}, 0x0)

04:10:27 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 62)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2443.511963]  ? lock_chain_count+0x20/0x20
[ 2443.511978]  ? __is_insn_slot_addr+0x14c/0x290
[ 2443.511992]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2443.512004]  ? io_connect+0x610/0x610
[ 2443.512018]  ? lock_acquire+0x197/0x470
04:10:27 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x34000}, 0x0)

[ 2443.512030]  ? find_held_lock+0x2c/0x110
[ 2443.512048]  ? __fget_files+0x26d/0x4c0
[ 2443.512060]  ? lock_downgrade+0x6d0/0x6d0
[ 2443.512078]  __io_queue_sqe+0x90/0x9d0
[ 2443.512096]  ? io_issue_sqe+0x7700/0x7700
[ 2443.512121]  io_submit_sqes+0x4461/0x85c0
[ 2443.512155]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2443.512168]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2443.512183]  ? lock_downgrade+0x6d0/0x6d0
[ 2443.512193]  ? find_held_lock+0x2c/0x110
[ 2443.512210]  ? io_submit_sqes+0x85c0/0x85c0
[ 2443.512230]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2443.512246]  ? wait_for_completion_io+0x270/0x270
[ 2443.512260]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2443.512273]  ? vfs_write+0x354/0xa70
[ 2443.512288]  ? fput_many+0x2f/0x1a0
[ 2443.512300]  ? ksys_write+0x1a9/0x260
[ 2443.512313]  ? __ia32_sys_read+0xb0/0xb0
[ 2443.512328]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2443.512340]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2443.512357]  do_syscall_64+0x33/0x40
[ 2443.512368]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2443.512377] RIP: 0033:0x7f1edfa23b19
[ 2443.512390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.512398] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2443.512412] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2443.512419] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2443.512427] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2443.512434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.512441] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2443.629233] device veth0_vlan entered promiscuous mode
[ 2443.634289] device veth0_vlan entered promiscuous mode
[ 2443.704574] FAULT_INJECTION: forcing a failure.
[ 2443.704574] name failslab, interval 1, probability 0, space 0, times 0
[ 2443.704598] CPU: 0 PID: 12716 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2443.704610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.704616] Call Trace:
[ 2443.704642]  dump_stack+0x107/0x167
[ 2443.704668]  should_fail.cold+0x5/0xa
[ 2443.704691]  ? create_object.isra.0+0x3a/0xa20
[ 2443.704713]  should_failslab+0x5/0x20
[ 2443.704733]  kmem_cache_alloc+0x5b/0x310
[ 2443.704758]  create_object.isra.0+0x3a/0xa20
[ 2443.704778]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.704804]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2443.704827]  ? inet6_netconf_notify_devconf+0x84/0x1a0
[ 2443.704854]  __alloc_skb+0xb1/0x5b0
[ 2443.704878]  inet6_netconf_notify_devconf+0x84/0x1a0
[ 2443.704902]  addrconf_sysctl_unregister+0x131/0x1c0
[ 2443.704925]  addrconf_ifdown.isra.0+0x122b/0x15f0
[ 2443.704955]  ? addrconf_dad_run+0x180/0x180
[ 2443.704992]  addrconf_notify+0x159/0x2410
[ 2443.705015]  ? tun_device_event+0x71/0x1160
[ 2443.705039]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2443.705060]  ? inet6_ifinfo_notify+0x150/0x150
[ 2443.705078]  ? failover_register+0x530/0x530
[ 2443.705100]  ? cfg80211_netdev_notifier_call+0x298/0x10c0
[ 2443.705119]  ? ipmr_device_event+0x18b/0x1f0
[ 2443.705145]  raw_notifier_call_chain+0xb3/0x110
[ 2443.705170]  call_netdevice_notifiers_info+0xb5/0x130
[ 2443.705193]  unregister_netdevice_many+0x852/0x1490
[ 2443.705220]  ? netdev_pick_tx+0xc70/0xc70
[ 2443.705248]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2443.705266]  ? queue_delayed_work_on+0xb4/0xe0
[ 2443.705282]  ? trace_hardirqs_on+0x5b/0x180
[ 2443.705308]  unregister_netdevice_queue+0x201/0x2c0
[ 2443.705329]  ? unregister_netdevice_many+0x1490/0x1490
[ 2443.705351]  ? linkwatch_fire_event+0x63/0x190
[ 2443.705376]  __tun_detach+0xf92/0x1280
[ 2443.705407]  tun_chr_close+0xc4/0x250
[ 2443.705427]  __fput+0x285/0x980
[ 2443.705445]  ? __tun_detach+0x1280/0x1280
[ 2443.705470]  task_work_run+0xe2/0x1a0
[ 2443.705497]  exit_to_user_mode_prepare+0x186/0x190
[ 2443.705518]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2443.705536]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2443.705550] RIP: 0033:0x7ff4e0665b19
[ 2443.705571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.705581] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2443.705607] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2443.705619] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2443.705630] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2443.705640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.705652] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2443.752517] FAULT_INJECTION: forcing a failure.
[ 2443.752517] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2443.752531] CPU: 1 PID: 12742 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2443.752539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.752543] Call Trace:
[ 2443.752561]  dump_stack+0x107/0x167
[ 2443.752578]  should_fail.cold+0x5/0xa
[ 2443.752595]  __alloc_pages_nodemask+0x182/0x600
[ 2443.752607]  ? __kmalloc+0x16e/0x390
[ 2443.752621]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2443.752640]  ? trace_hardirqs_on+0x5b/0x180
[ 2443.752654]  alloc_pages_current+0x187/0x280
[ 2443.752669]  relay_open_buf.part.0+0x2a5/0xc00
[ 2443.752690]  relay_open+0x531/0xa10
[ 2443.752706]  do_blk_trace_setup+0x4cf/0xc10
[ 2443.752720]  ? _copy_from_user+0xfb/0x1b0
[ 2443.752733]  __blk_trace_setup+0xca/0x180
[ 2443.752744]  ? do_blk_trace_setup+0xc10/0xc10
[ 2443.752763]  ? perf_trace_lock+0xac/0x490
[ 2443.752781]  blk_trace_setup+0x43/0x60
[ 2443.752796]  sg_ioctl_common+0x634/0x2570
[ 2443.752813]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2443.752826]  ? do_vfs_ioctl+0x283/0x10d0
[ 2443.752835]  ? sg_write+0x120/0x120
[ 2443.752849]  ? generic_block_fiemap+0x60/0x60
[ 2443.752863]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2443.752884]  ? selinux_file_ioctl+0xb6/0x270
[ 2443.752894]  ? sg_compat_ioctl+0x120/0x120
[ 2443.752905]  sg_ioctl+0x8f/0x120
[ 2443.752917]  __x64_sys_ioctl+0x19a/0x210
[ 2443.752932]  do_syscall_64+0x33/0x40
[ 2443.752943]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2443.752950] RIP: 0033:0x7fb64c457b19
[ 2443.752963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.752969] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2443.752982] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2443.752989] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2443.752996] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2443.753002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.753009] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2443.780474] FAULT_INJECTION: forcing a failure.
[ 2443.780474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2443.780493] CPU: 1 PID: 12744 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2443.780499] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.780502] Call Trace:
[ 2443.780512]  dump_stack+0x107/0x167
[ 2443.780528]  should_fail.cold+0x5/0xa
[ 2443.780542]  _copy_from_user+0x2e/0x1b0
[ 2443.780558]  move_addr_to_kernel.part.0+0x31/0x110
[ 2443.780571]  move_addr_to_kernel+0x4f/0x70
[ 2443.780582]  io_connect+0x47a/0x610
[ 2443.780593]  ? io_prep_rw+0x1050/0x1050
[ 2443.780617]  ? __lock_acquire+0xbb1/0x5b00
[ 2443.780632]  io_issue_sqe+0x1611/0x7700
[ 2443.780648]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2443.780659]  ? lock_chain_count+0x20/0x20
[ 2443.780669]  ? __is_insn_slot_addr+0x14c/0x290
[ 2443.780681]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2443.780690]  ? io_connect+0x610/0x610
[ 2443.780703]  ? lock_acquire+0x197/0x470
[ 2443.780712]  ? find_held_lock+0x2c/0x110
[ 2443.780726]  ? __fget_files+0x26d/0x4c0
[ 2443.780737]  ? lock_downgrade+0x6d0/0x6d0
[ 2443.780751]  __io_queue_sqe+0x90/0x9d0
[ 2443.780766]  ? io_issue_sqe+0x7700/0x7700
[ 2443.780787]  io_submit_sqes+0x4461/0x85c0
[ 2443.780818]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2443.780828]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2443.780841]  ? lock_downgrade+0x6d0/0x6d0
[ 2443.780850]  ? find_held_lock+0x2c/0x110
[ 2443.780863]  ? io_submit_sqes+0x85c0/0x85c0
[ 2443.780879]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2443.780891]  ? wait_for_completion_io+0x270/0x270
[ 2443.780905]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2443.780916]  ? vfs_write+0x354/0xa70
[ 2443.780928]  ? fput_many+0x2f/0x1a0
[ 2443.780939]  ? ksys_write+0x1a9/0x260
[ 2443.780949]  ? __ia32_sys_read+0xb0/0xb0
[ 2443.780962]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2443.780972]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2443.780985]  do_syscall_64+0x33/0x40
[ 2443.780994]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2443.781001] RIP: 0033:0x7f1edfa23b19
[ 2443.781012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.781017] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2443.781029] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2443.781035] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2443.781041] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2443.781047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.781053] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:10:41 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xe000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:41 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x3000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:41 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10003, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:41 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 35)

04:10:41 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 63)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:41 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x80000}, 0x0)

04:10:41 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x300}, 0x0)

04:10:41 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 47)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2457.827736] FAULT_INJECTION: forcing a failure.
[ 2457.827736] name failslab, interval 1, probability 0, space 0, times 0
[ 2457.830534] CPU: 1 PID: 12768 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2457.831958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2457.833643] Call Trace:
[ 2457.834189]  dump_stack+0x107/0x167
[ 2457.834943]  should_fail.cold+0x5/0xa
[ 2457.835749]  ? __get_vm_area_node+0xd4/0x340
[ 2457.836654]  should_failslab+0x5/0x20
[ 2457.837439]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2457.838460]  __get_vm_area_node+0xd4/0x340
[ 2457.839316]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2457.840282]  get_vm_area_caller+0x70/0xb0
[ 2457.841118]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2457.842073]  vmap+0xe9/0x2c0
[ 2457.842697]  ? vunmap+0x70/0x70
[ 2457.843385]  relay_open_buf.part.0+0x4cf/0xc00
[ 2457.844338]  relay_open+0x531/0xa10
[ 2457.845087]  do_blk_trace_setup+0x4cf/0xc10
[ 2457.845960]  ? _copy_from_user+0xfb/0x1b0
[ 2457.846802]  __blk_trace_setup+0xca/0x180
[ 2457.847641]  ? do_blk_trace_setup+0xc10/0xc10
[ 2457.848587]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2457.849655]  blk_trace_setup+0x43/0x60
[ 2457.850448]  sg_ioctl_common+0x634/0x2570
[ 2457.851295]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2457.852348]  ? do_vfs_ioctl+0x283/0x10d0
[ 2457.853178]  ? sg_write+0x120/0x120
[ 2457.853920]  ? generic_block_fiemap+0x60/0x60
[ 2457.854369] FAULT_INJECTION: forcing a failure.
[ 2457.854369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2457.854830]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2457.854875]  ? selinux_file_ioctl+0xb6/0x270
[ 2457.854892]  ? sg_compat_ioctl+0x120/0x120
[ 2457.854913]  sg_ioctl+0x8f/0x120
[ 2457.854936]  __x64_sys_ioctl+0x19a/0x210
[ 2457.854978]  do_syscall_64+0x33/0x40
[ 2457.862289]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2457.863326] RIP: 0033:0x7fb64c457b19
[ 2457.864091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2457.867806] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2457.869344] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2457.870783] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2457.872234] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2457.873676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2457.875117] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2457.876628] CPU: 0 PID: 12766 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2457.878115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2457.879906] Call Trace:
[ 2457.880493]  dump_stack+0x107/0x167
[ 2457.881288]  should_fail.cold+0x5/0xa
[ 2457.882111]  _copy_from_user+0x2e/0x1b0
[ 2457.882973]  move_addr_to_kernel.part.0+0x31/0x110
[ 2457.884040]  move_addr_to_kernel+0x4f/0x70
[ 2457.884949]  io_connect+0x47a/0x610
[ 2457.885739]  ? io_prep_rw+0x1050/0x1050
[ 2457.886620]  ? __lock_acquire+0xbb1/0x5b00
[ 2457.887538]  io_issue_sqe+0x1611/0x7700
[ 2457.888411]  ? perf_trace_lock+0xac/0x490
[ 2457.889310]  ? __lockdep_reset_lock+0x180/0x180
[ 2457.890299]  ? io_connect+0x610/0x610
[ 2457.891107]  ? lock_acquire+0x197/0x470
[ 2457.891959]  ? find_held_lock+0x2c/0x110
[ 2457.892833]  ? __fget_files+0x26d/0x4c0
[ 2457.893686]  ? lock_downgrade+0x6d0/0x6d0
[ 2457.894619]  __io_queue_sqe+0x90/0x9d0
[ 2457.895655]  ? io_issue_sqe+0x7700/0x7700
[ 2457.896798]  io_submit_sqes+0x4461/0x85c0
[ 2457.897926]  ? __do_sys_io_uring_enter+0x1db/0x1920
[ 2457.899173]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2457.900248]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2457.901303]  ? io_submit_sqes+0x85c0/0x85c0
[ 2457.902217]  ? recalibrate_cpu_khz+0x10/0x10
[ 2457.903145]  ? ktime_get+0x158/0x1f0
[ 2457.903955]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 2457.904879]  ? clockevents_program_event+0x131/0x360
[ 2457.905967]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2457.907070]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2457.908242]  ? trace_hardirqs_on+0x5b/0x180
[ 2457.909151]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2457.910340]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2457.911490]  do_syscall_64+0x33/0x40
[ 2457.912401]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2457.913495] RIP: 0033:0x7f1edfa23b19
[ 2457.914312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2457.918201] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2457.919830] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2457.921340] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2457.922838] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2457.924398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2457.925897] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2457.933872] device veth0_vlan entered promiscuous mode
04:10:42 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x400300}, 0x0)

[ 2457.969699] FAULT_INJECTION: forcing a failure.
[ 2457.969699] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2457.972431] CPU: 1 PID: 12764 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2457.973832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2457.975513] Call Trace:
[ 2457.976062]  dump_stack+0x107/0x167
[ 2457.976811]  should_fail.cold+0x5/0xa
[ 2457.977600]  __alloc_pages_nodemask+0x182/0x600
[ 2457.978551]  ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 2457.979814]  alloc_pages_current+0x187/0x280
[ 2457.980709]  allocate_slab+0x26f/0x380
[ 2457.981503]  ___slab_alloc+0x470/0x700
[ 2457.982301]  ? inet6_netconf_notify_devconf+0x84/0x1a0
[ 2457.983389]  ? __kmalloc_node_track_caller+0x393/0x3b0
[ 2457.984458]  __kmalloc_node_track_caller+0x393/0x3b0
[ 2457.985484]  ? inet6_netconf_notify_devconf+0x84/0x1a0
[ 2457.986553]  __alloc_skb+0xb1/0x5b0
[ 2457.987299]  inet6_netconf_notify_devconf+0x84/0x1a0
[ 2457.988352]  addrconf_sysctl_unregister+0x131/0x1c0
[ 2457.989368]  addrconf_ifdown.isra.0+0x122b/0x15f0
[ 2457.990359]  ? addrconf_dad_run+0x180/0x180
[ 2457.991258]  addrconf_notify+0x159/0x2410
[ 2457.992112]  ? tun_device_event+0x71/0x1160
[ 2457.993001]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2457.994054]  ? inet6_ifinfo_notify+0x150/0x150
[ 2457.994985]  ? failover_register+0x530/0x530
[ 2457.995908]  ? cfg80211_netdev_notifier_call+0x298/0x10c0
[ 2457.997018]  ? ipmr_device_event+0x18b/0x1f0
[ 2457.997924]  raw_notifier_call_chain+0xb3/0x110
[ 2457.998872]  call_netdevice_notifiers_info+0xb5/0x130
[ 2457.999941]  unregister_netdevice_many+0x852/0x1490
[ 2458.000958]  ? netdev_pick_tx+0xc70/0xc70
[ 2458.001830]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2458.002889]  ? queue_delayed_work_on+0xb4/0xe0
[ 2458.003822]  ? trace_hardirqs_on+0x5b/0x180
[ 2458.004704]  unregister_netdevice_queue+0x201/0x2c0
[ 2458.005719]  ? unregister_netdevice_many+0x1490/0x1490
[ 2458.006790]  ? linkwatch_fire_event+0x63/0x190
[ 2458.007749]  __tun_detach+0xf92/0x1280
[ 2458.008569]  tun_chr_close+0xc4/0x250
[ 2458.009350]  __fput+0x285/0x980
[ 2458.010022]  ? __tun_detach+0x1280/0x1280
[ 2458.010895]  task_work_run+0xe2/0x1a0
[ 2458.011679]  exit_to_user_mode_prepare+0x186/0x190
[ 2458.012696]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2458.013674]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2458.014718] RIP: 0033:0x7ff4e0665b19
[ 2458.015479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2458.019215] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2458.020822] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2458.022291] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2458.023759] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2458.025220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2458.026685] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:10:42 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x500}, 0x0)

04:10:42 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x1ffff000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:42 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10004, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:42 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 64)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:42 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x3000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:42 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf0ffff}, 0x0)

[ 2458.160760] FAULT_INJECTION: forcing a failure.
[ 2458.160760] name failslab, interval 1, probability 0, space 0, times 0
[ 2458.163241] CPU: 0 PID: 12790 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2458.164736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2458.166471] Call Trace:
[ 2458.167028]  dump_stack+0x107/0x167
[ 2458.167834]  should_fail.cold+0x5/0xa
[ 2458.168640]  ? create_object.isra.0+0x3a/0xa20
[ 2458.169652]  should_failslab+0x5/0x20
[ 2458.170453]  kmem_cache_alloc+0x5b/0x310
[ 2458.171351]  create_object.isra.0+0x3a/0xa20
[ 2458.172299]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2458.173408]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2458.174487]  __get_vm_area_node+0xd4/0x340
[ 2458.175419]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2458.176428]  get_vm_area_caller+0x70/0xb0
[ 2458.177359]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2458.178355]  vmap+0xe9/0x2c0
[ 2458.178987]  ? vunmap+0x70/0x70
[ 2458.179773]  relay_open_buf.part.0+0x4cf/0xc00
[ 2458.180719]  relay_open+0x531/0xa10
[ 2458.181493]  do_blk_trace_setup+0x4cf/0xc10
04:10:42 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x600}, 0x0)

[ 2458.182375]  ? _copy_from_user+0xfb/0x1b0
[ 2458.183322]  __blk_trace_setup+0xca/0x180
[ 2458.184192]  ? do_blk_trace_setup+0xc10/0xc10
[ 2458.185155]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2458.186238]  blk_trace_setup+0x43/0x60
[ 2458.187073]  sg_ioctl_common+0x634/0x2570
[ 2458.187929]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2458.189011]  ? do_vfs_ioctl+0x283/0x10d0
[ 2458.189842]  ? sg_write+0x120/0x120
[ 2458.190604]  ? generic_block_fiemap+0x60/0x60
[ 2458.191535]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2458.192603]  ? selinux_file_ioctl+0xb6/0x270
[ 2458.193509]  ? sg_compat_ioctl+0x120/0x120
[ 2458.194412]  sg_ioctl+0x8f/0x120
[ 2458.195110]  __x64_sys_ioctl+0x19a/0x210
[ 2458.196010]  do_syscall_64+0x33/0x40
[ 2458.196808]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2458.197885] RIP: 0033:0x7fb64c457b19
[ 2458.198682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2458.202598] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2458.204220] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2458.205733] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2458.207239] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2458.208752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2458.210266] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:10:42 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 36)

04:10:42 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x20000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:42 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0)

[ 2458.353548] device veth0_vlan entered promiscuous mode
[ 2458.386261] FAULT_INJECTION: forcing a failure.
[ 2458.386261] name failslab, interval 1, probability 0, space 0, times 0
[ 2458.389230] CPU: 0 PID: 12804 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2458.390697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2458.390704] Call Trace:
[ 2458.390729]  dump_stack+0x107/0x167
[ 2458.390755]  should_fail.cold+0x5/0xa
[ 2458.390778]  ? create_object.isra.0+0x3a/0xa20
[ 2458.390801]  should_failslab+0x5/0x20
[ 2458.390819]  kmem_cache_alloc+0x5b/0x310
[ 2458.390843]  create_object.isra.0+0x3a/0xa20
[ 2458.390863]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2458.390888]  kmem_cache_alloc_node+0x169/0x330
[ 2458.390914]  __alloc_skb+0x6d/0x5b0
[ 2458.390938]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2458.390967]  unregister_netdevice_many+0x8e3/0x1490
[ 2458.390995]  ? netdev_pick_tx+0xc70/0xc70
[ 2458.391024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2458.391042]  ? queue_delayed_work_on+0xb4/0xe0
[ 2458.391058]  ? trace_hardirqs_on+0x5b/0x180
[ 2458.391084]  unregister_netdevice_queue+0x201/0x2c0
[ 2458.391106]  ? unregister_netdevice_many+0x1490/0x1490
[ 2458.391127]  ? linkwatch_fire_event+0x63/0x190
[ 2458.391155]  __tun_detach+0xf92/0x1280
[ 2458.391189]  tun_chr_close+0xc4/0x250
[ 2458.411104]  __fput+0x285/0x980
[ 2458.411815]  ? __tun_detach+0x1280/0x1280
[ 2458.412687]  task_work_run+0xe2/0x1a0
[ 2458.413488]  exit_to_user_mode_prepare+0x186/0x190
[ 2458.414526]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2458.415527]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2458.416599] RIP: 0033:0x7ff4e0665b19
[ 2458.417380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2458.421239] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2458.422832] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2458.424340] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2458.425828] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2458.427320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2458.428823] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
[ 2458.473208] device veth0_vlan entered promiscuous mode
04:10:55 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 37)

04:10:55 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10008, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:55 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:55 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 48)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:10:55 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x1000000}, 0x0)

04:10:55 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x700}, 0x0)

04:10:55 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x21000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:55 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 65)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2471.503470] FAULT_INJECTION: forcing a failure.
[ 2471.503470] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.504842] CPU: 1 PID: 12830 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2471.505629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.506605] Call Trace:
[ 2471.506913]  dump_stack+0x107/0x167
[ 2471.507334]  should_fail.cold+0x5/0xa
[ 2471.507776]  ? alloc_vmap_area+0x148/0x1d10
[ 2471.508284]  should_failslab+0x5/0x20
[ 2471.508718]  kmem_cache_alloc_node+0x55/0x330
[ 2471.509229]  alloc_vmap_area+0x148/0x1d10
[ 2471.509696]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 2471.510298]  ? mark_held_locks+0x9e/0xe0
[ 2471.510766]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2471.511276]  ? kasan_unpoison_shadow+0x33/0x50
[ 2471.511798]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2471.512397]  __get_vm_area_node+0x127/0x340
[ 2471.512883]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2471.513419]  get_vm_area_caller+0x70/0xb0
[ 2471.513882]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2471.514411]  vmap+0xe9/0x2c0
[ 2471.514754]  ? vunmap+0x70/0x70
[ 2471.515134]  relay_open_buf.part.0+0x4cf/0xc00
[ 2471.515651]  relay_open+0x531/0xa10
[ 2471.516106]  do_blk_trace_setup+0x4cf/0xc10
[ 2471.516592]  ? _copy_from_user+0xfb/0x1b0
[ 2471.517056]  __blk_trace_setup+0xca/0x180
[ 2471.517518]  ? do_blk_trace_setup+0xc10/0xc10
[ 2471.518031]  ? perf_trace_lock+0xac/0x490
[ 2471.518504]  blk_trace_setup+0x43/0x60
[ 2471.518944]  sg_ioctl_common+0x634/0x2570
[ 2471.519405]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2471.519987]  ? do_vfs_ioctl+0x283/0x10d0
[ 2471.520467]  ? sg_write+0x120/0x120
[ 2471.520871]  ? generic_block_fiemap+0x60/0x60
[ 2471.521375]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2471.521929]  ? selinux_file_ioctl+0xb6/0x270
[ 2471.522439]  ? sg_compat_ioctl+0x120/0x120
[ 2471.522938]  sg_ioctl+0x8f/0x120
[ 2471.523337]  __x64_sys_ioctl+0x19a/0x210
[ 2471.523827]  do_syscall_64+0x33/0x40
[ 2471.524278]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2471.524858] RIP: 0033:0x7fb64c457b19
[ 2471.525293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.527411] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2471.528298] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2471.529115] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2471.529919] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.530714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2471.531547] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:10:55 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 66)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:10:55 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10300, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:55 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x900}, 0x0)

[ 2471.594385] FAULT_INJECTION: forcing a failure.
[ 2471.594385] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2471.597123] CPU: 0 PID: 12825 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2471.598549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.600249] Call Trace:
[ 2471.600791]  dump_stack+0x107/0x167
[ 2471.601554]  should_fail.cold+0x5/0xa
[ 2471.602351]  _copy_from_user+0x2e/0x1b0
[ 2471.603188]  move_addr_to_kernel.part.0+0x31/0x110
[ 2471.604219]  move_addr_to_kernel+0x4f/0x70
[ 2471.605086]  io_connect+0x47a/0x610
[ 2471.605845]  ? io_prep_rw+0x1050/0x1050
[ 2471.606688]  ? __lock_acquire+0xbb1/0x5b00
[ 2471.607575]  io_issue_sqe+0x1611/0x7700
[ 2471.608418]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2471.609514]  ? lock_chain_count+0x20/0x20
[ 2471.610381]  ? __is_insn_slot_addr+0x14c/0x290
[ 2471.611321]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2471.612419]  ? io_connect+0x610/0x610
[ 2471.613218]  ? lock_acquire+0x197/0x470
[ 2471.614043]  ? find_held_lock+0x2c/0x110
[ 2471.614893]  ? __fget_files+0x26d/0x4c0
[ 2471.615724]  ? lock_downgrade+0x6d0/0x6d0
[ 2471.616615]  __io_queue_sqe+0x90/0x9d0
[ 2471.617436]  ? io_issue_sqe+0x7700/0x7700
[ 2471.618311]  io_submit_sqes+0x4461/0x85c0
[ 2471.619200]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2471.620240]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2471.621243]  ? lock_downgrade+0x6d0/0x6d0
[ 2471.622093]  ? find_held_lock+0x2c/0x110
[ 2471.622940]  ? io_submit_sqes+0x85c0/0x85c0
[ 2471.623836]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2471.624839]  ? wait_for_completion_io+0x270/0x270
[ 2471.625845]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2471.626801]  ? vfs_write+0x354/0xa70
[ 2471.627579]  ? fput_many+0x2f/0x1a0
[ 2471.628347]  ? ksys_write+0x1a9/0x260
[ 2471.629134]  ? __ia32_sys_read+0xb0/0xb0
[ 2471.629989]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2471.631073]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2471.632149]  do_syscall_64+0x33/0x40
[ 2471.632916]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2471.633981] RIP: 0033:0x7f1edfa23b19
[ 2471.634756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.638571] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2471.640159] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2471.641638] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2471.643113] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.644592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2471.646062] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2471.658224] FAULT_INJECTION: forcing a failure.
[ 2471.658224] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.659783] CPU: 1 PID: 12847 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2471.660467] device veth0_vlan entered promiscuous mode
[ 2471.660550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.660564] Call Trace:
[ 2471.662843]  dump_stack+0x107/0x167
[ 2471.663247]  should_fail.cold+0x5/0xa
[ 2471.663656]  ? create_object.isra.0+0x3a/0xa20
[ 2471.664173]  should_failslab+0x5/0x20
[ 2471.664576]  kmem_cache_alloc+0x5b/0x310
[ 2471.665005]  ? do_blk_trace_setup+0x4cf/0xc10
[ 2471.665481]  ? __blk_trace_setup+0xca/0x180
[ 2471.665943]  create_object.isra.0+0x3a/0xa20
[ 2471.666407]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2471.666947]  kmem_cache_alloc_node+0x169/0x330
[ 2471.667439]  alloc_vmap_area+0x148/0x1d10
[ 2471.667886]  ? kmem_cache_alloc_node_trace+0x16d/0x340
[ 2471.668449]  ? mark_held_locks+0x9e/0xe0
[ 2471.668887]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2471.669371]  ? kasan_unpoison_shadow+0x33/0x50
[ 2471.669874]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2471.670443]  __get_vm_area_node+0x127/0x340
[ 2471.670925]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2471.671460]  get_vm_area_caller+0x70/0xb0
[ 2471.671928]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2471.672450]  vmap+0xe9/0x2c0
[ 2471.672795]  ? vunmap+0x70/0x70
[ 2471.673167]  relay_open_buf.part.0+0x4cf/0xc00
[ 2471.673675]  relay_open+0x531/0xa10
[ 2471.674085]  do_blk_trace_setup+0x4cf/0xc10
[ 2471.674557]  ? _copy_from_user+0xfb/0x1b0
[ 2471.675030]  __blk_trace_setup+0xca/0x180
[ 2471.675485]  ? do_blk_trace_setup+0xc10/0xc10
[ 2471.676006]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2471.676588]  blk_trace_setup+0x43/0x60
[ 2471.677024]  sg_ioctl_common+0x634/0x2570
[ 2471.677490]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2471.678062]  ? do_vfs_ioctl+0x283/0x10d0
[ 2471.678507]  ? sg_write+0x120/0x120
[ 2471.678907]  ? generic_block_fiemap+0x60/0x60
[ 2471.679405]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2471.679951]  ? selinux_file_ioctl+0xb6/0x270
[ 2471.680435]  ? sg_compat_ioctl+0x120/0x120
[ 2471.680909]  sg_ioctl+0x8f/0x120
[ 2471.681286]  __x64_sys_ioctl+0x19a/0x210
[ 2471.681745]  do_syscall_64+0x33/0x40
[ 2471.682152]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2471.682717] RIP: 0033:0x7fb64c457b19
[ 2471.683129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.685179] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2471.686018] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2471.686811] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2471.687604] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.688416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2471.689213] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:10:55 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x4000000, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:55 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x2000000}, 0x0)

[ 2471.706624] FAULT_INJECTION: forcing a failure.
[ 2471.706624] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.709258] CPU: 0 PID: 12834 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2471.710685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.712262] Call Trace:
[ 2471.712767]  dump_stack+0x107/0x167
[ 2471.713455]  should_fail.cold+0x5/0xa
[ 2471.714175]  should_failslab+0x5/0x20
[ 2471.714889]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2471.715821]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2471.716726]  __alloc_skb+0xb1/0x5b0
[ 2471.717413]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2471.718274]  unregister_netdevice_many+0x8e3/0x1490
[ 2471.719214]  ? netdev_pick_tx+0xc70/0xc70
[ 2471.720011]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2471.720991]  ? queue_delayed_work_on+0xb4/0xe0
[ 2471.721891]  ? trace_hardirqs_on+0x5b/0x180
[ 2471.722808]  unregister_netdevice_queue+0x201/0x2c0
[ 2471.723859]  ? unregister_netdevice_many+0x1490/0x1490
[ 2471.724977]  ? linkwatch_fire_event+0x63/0x190
[ 2471.725843]  __tun_detach+0xf92/0x1280
[ 2471.726721]  tun_chr_close+0xc4/0x250
[ 2471.727573]  __fput+0x285/0x980
[ 2471.728363]  ? __tun_detach+0x1280/0x1280
[ 2471.729438]  task_work_run+0xe2/0x1a0
[ 2471.730225]  exit_to_user_mode_prepare+0x186/0x190
[ 2471.731244]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2471.732248]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2471.733470] RIP: 0033:0x7ff4e0665b19
[ 2471.734357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.738737] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2471.740637] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2471.742327] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2471.743931] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.745585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2471.747146] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:10:55 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x300, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:10:55 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xff600000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:10:55 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x4000000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:08 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 67)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:11:08 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 38)

04:11:08 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x2, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:08 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf00}, 0x0)

04:11:08 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x2000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2483.995220] device veth0_vlan entered promiscuous mode
04:11:08 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x3000000}, 0x0)

04:11:08 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 49)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:11:08 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2484.031566] FAULT_INJECTION: forcing a failure.
[ 2484.031566] name failslab, interval 1, probability 0, space 0, times 0
[ 2484.033115] CPU: 0 PID: 12889 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2484.033896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2484.034824] Call Trace:
[ 2484.035139]  dump_stack+0x107/0x167
[ 2484.035564]  should_fail.cold+0x5/0xa
[ 2484.036006]  ? kmemleak_scan_area+0xa6/0x360
[ 2484.036524]  should_failslab+0x5/0x20
[ 2484.036955]  kmem_cache_alloc+0x5b/0x310
[ 2484.037427]  kmemleak_scan_area+0xa6/0x360
[ 2484.037917]  alloc_vmap_area+0x171/0x1d10
[ 2484.038406]  ? purge_vmap_area_lazy+0xc0/0xc0
[ 2484.038928]  ? kasan_unpoison_shadow+0x33/0x50
[ 2484.039463]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2484.040065]  __get_vm_area_node+0x127/0x340
[ 2484.040553]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2484.041104]  get_vm_area_caller+0x70/0xb0
[ 2484.041564]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2484.042104]  vmap+0xe9/0x2c0
[ 2484.042450]  ? vunmap+0x70/0x70
[ 2484.042839]  relay_open_buf.part.0+0x4cf/0xc00
[ 2484.043371]  relay_open+0x531/0xa10
[ 2484.043799]  do_blk_trace_setup+0x4cf/0xc10
[ 2484.044313]  ? _copy_from_user+0xfb/0x1b0
[ 2484.044783]  __blk_trace_setup+0xca/0x180
[ 2484.045256]  ? do_blk_trace_setup+0xc10/0xc10
[ 2484.045787]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2484.046400]  blk_trace_setup+0x43/0x60
[ 2484.046847]  sg_ioctl_common+0x634/0x2570
[ 2484.047337]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2484.047928]  ? do_vfs_ioctl+0x283/0x10d0
[ 2484.048398]  ? sg_write+0x120/0x120
[ 2484.048813]  ? generic_block_fiemap+0x60/0x60
[ 2484.049328]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2484.049889]  ? selinux_file_ioctl+0xb6/0x270
[ 2484.050390]  ? sg_compat_ioctl+0x120/0x120
[ 2484.050866]  sg_ioctl+0x8f/0x120
[ 2484.051253]  __x64_sys_ioctl+0x19a/0x210
[ 2484.051722]  do_syscall_64+0x33/0x40
[ 2484.052167]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2484.052756] RIP: 0033:0x7fb64c457b19
[ 2484.053179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2484.055262] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2484.056124] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2484.056922] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2484.057731] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2484.058522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2484.059330] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2484.073582] FAULT_INJECTION: forcing a failure.
[ 2484.073582] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2484.074926] CPU: 0 PID: 12890 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2484.075692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2484.076625] Call Trace:
[ 2484.076917]  dump_stack+0x107/0x167
[ 2484.077324]  should_fail.cold+0x5/0xa
[ 2484.077755]  _copy_from_user+0x2e/0x1b0
[ 2484.078206]  move_addr_to_kernel.part.0+0x31/0x110
[ 2484.078749]  move_addr_to_kernel+0x4f/0x70
[ 2484.079219]  io_connect+0x47a/0x610
[ 2484.079625]  ? io_prep_rw+0x1050/0x1050
[ 2484.080078]  ? __lock_acquire+0xbb1/0x5b00
[ 2484.080556]  io_issue_sqe+0x1611/0x7700
[ 2484.081016]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2484.081604]  ? lock_chain_count+0x20/0x20
[ 2484.082064]  ? __is_insn_slot_addr+0x14c/0x290
[ 2484.082584]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2484.083168]  ? io_connect+0x610/0x610
[ 2484.083616]  ? lock_acquire+0x197/0x470
[ 2484.084071]  ? find_held_lock+0x2c/0x110
[ 2484.084533]  ? __fget_files+0x26d/0x4c0
[ 2484.084975]  ? lock_downgrade+0x6d0/0x6d0
[ 2484.085462]  __io_queue_sqe+0x90/0x9d0
[ 2484.085911]  ? io_issue_sqe+0x7700/0x7700
[ 2484.086393]  io_submit_sqes+0x4461/0x85c0
[ 2484.086877]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2484.087429]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2484.087979]  ? lock_downgrade+0x6d0/0x6d0
[ 2484.088445]  ? find_held_lock+0x2c/0x110
[ 2484.088901]  ? io_submit_sqes+0x85c0/0x85c0
[ 2484.089387]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2484.089935]  ? wait_for_completion_io+0x270/0x270
[ 2484.090475]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2484.090991]  ? vfs_write+0x354/0xa70
[ 2484.091424]  ? fput_many+0x2f/0x1a0
[ 2484.091836]  ? ksys_write+0x1a9/0x260
[ 2484.092278]  ? __ia32_sys_read+0xb0/0xb0
[ 2484.092753]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2484.093334]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2484.093923]  do_syscall_64+0x33/0x40
[ 2484.094340]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2484.094921] RIP: 0033:0x7f1edfa23b19
[ 2484.095345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2484.097411] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2484.098264] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2484.099066] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2484.099875] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2484.100701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2484.101519] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2484.103495] FAULT_INJECTION: forcing a failure.
[ 2484.103495] name failslab, interval 1, probability 0, space 0, times 0
[ 2484.105137] CPU: 0 PID: 12878 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2484.105934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2484.106871] Call Trace:
[ 2484.107166]  dump_stack+0x107/0x167
[ 2484.107589]  should_fail.cold+0x5/0xa
[ 2484.108029]  ? create_object.isra.0+0x3a/0xa20
[ 2484.108560]  should_failslab+0x5/0x20
[ 2484.108983]  kmem_cache_alloc+0x5b/0x310
[ 2484.109443]  create_object.isra.0+0x3a/0xa20
[ 2484.109927]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2484.110515]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2484.111076]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2484.111595]  __alloc_skb+0xb1/0x5b0
[ 2484.112018]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2484.112527]  unregister_netdevice_many+0x8e3/0x1490
[ 2484.113091]  ? netdev_pick_tx+0xc70/0xc70
[ 2484.113548]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2484.114128]  ? queue_delayed_work_on+0xb4/0xe0
[ 2484.114630]  ? trace_hardirqs_on+0x5b/0x180
[ 2484.115118]  unregister_netdevice_queue+0x201/0x2c0
[ 2484.115662]  ? unregister_netdevice_many+0x1490/0x1490
[ 2484.116251]  ? linkwatch_fire_event+0x63/0x190
[ 2484.116763]  __tun_detach+0xf92/0x1280
[ 2484.117203]  tun_chr_close+0xc4/0x250
[ 2484.117617]  __fput+0x285/0x980
[ 2484.117975]  ? __tun_detach+0x1280/0x1280
[ 2484.118438]  task_work_run+0xe2/0x1a0
[ 2484.118861]  exit_to_user_mode_prepare+0x186/0x190
[ 2484.119396]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2484.119924]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2484.120521] RIP: 0033:0x7ff4e0665b19
[ 2484.120943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2484.123019] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2484.123890] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2484.124693] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2484.125479] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2484.126286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2484.127087] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:11:08 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x4000000}, 0x0)

04:11:08 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x3, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:08 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x2100000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:08 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:08 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x4, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:08 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x8, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:22 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 50)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:11:22 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x5000000}, 0x0)

04:11:22 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x60ffffffffff}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:22 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xd601}, 0x0)

04:11:22 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 39)

04:11:22 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 68)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:11:22 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x300, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:22 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x8, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2498.098494] FAULT_INJECTION: forcing a failure.
[ 2498.098494] name failslab, interval 1, probability 0, space 0, times 0
[ 2498.101210] CPU: 0 PID: 12936 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2498.102652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2498.104394] Call Trace:
[ 2498.104946]  dump_stack+0x107/0x167
[ 2498.105708]  should_fail.cold+0x5/0xa
[ 2498.106505]  ? relay_create_buf_file+0x4d/0x180
[ 2498.106911] device veth0_vlan entered promiscuous mode
[ 2498.107471]  should_failslab+0x5/0x20
[ 2498.107501]  kmem_cache_alloc_trace+0x55/0x320
[ 2498.110341]  relay_create_buf_file+0x4d/0x180
[ 2498.111284]  relay_open_buf.part.0+0x7de/0xc00
[ 2498.112255]  relay_open+0x531/0xa10
[ 2498.113021]  do_blk_trace_setup+0x4cf/0xc10
[ 2498.113929]  ? _copy_from_user+0xfb/0x1b0
[ 2498.114791]  __blk_trace_setup+0xca/0x180
[ 2498.115656]  ? do_blk_trace_setup+0xc10/0xc10
[ 2498.116619]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2498.117714]  blk_trace_setup+0x43/0x60
[ 2498.118523]  sg_ioctl_common+0x634/0x2570
[ 2498.119383]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2498.120457]  ? do_vfs_ioctl+0x283/0x10d0
[ 2498.121303]  ? sg_write+0x120/0x120
[ 2498.122070]  ? generic_block_fiemap+0x60/0x60
[ 2498.123005]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2498.124024]  ? selinux_file_ioctl+0xb6/0x270
[ 2498.124938]  ? sg_compat_ioctl+0x120/0x120
[ 2498.125824]  sg_ioctl+0x8f/0x120
[ 2498.126538]  __x64_sys_ioctl+0x19a/0x210
[ 2498.127394]  do_syscall_64+0x33/0x40
[ 2498.128183]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2498.129257] RIP: 0033:0x7fb64c457b19
[ 2498.130032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2498.133822] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2498.135398] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2498.136884] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2498.138362] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2498.139840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2498.141326] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
04:11:22 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf000}, 0x0)

04:11:22 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x6000000}, 0x0)

[ 2498.167175] FAULT_INJECTION: forcing a failure.
[ 2498.167175] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2498.170195] CPU: 0 PID: 12927 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2498.170609] FAULT_INJECTION: forcing a failure.
[ 2498.170609] name failslab, interval 1, probability 0, space 0, times 0
[ 2498.171636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2498.171643] Call Trace:
[ 2498.171662]  dump_stack+0x107/0x167
[ 2498.171686]  should_fail.cold+0x5/0xa
[ 2498.171711]  _copy_from_user+0x2e/0x1b0
[ 2498.171736]  move_addr_to_kernel.part.0+0x31/0x110
[ 2498.171757]  move_addr_to_kernel+0x4f/0x70
[ 2498.171779]  io_connect+0x47a/0x610
[ 2498.171805]  ? io_prep_rw+0x1050/0x1050
[ 2498.181948]  ? __lock_acquire+0xbb1/0x5b00
[ 2498.182840]  io_issue_sqe+0x1611/0x7700
[ 2498.183681]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2498.184793]  ? lock_chain_count+0x20/0x20
[ 2498.185665]  ? __is_insn_slot_addr+0x14c/0x290
[ 2498.186619]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2498.187713]  ? io_connect+0x610/0x610
[ 2498.188527]  ? lock_acquire+0x197/0x470
[ 2498.189359]  ? find_held_lock+0x2c/0x110
[ 2498.190216]  ? __fget_files+0x26d/0x4c0
[ 2498.191050]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.191925]  __io_queue_sqe+0x90/0x9d0
[ 2498.192762]  ? io_issue_sqe+0x7700/0x7700
[ 2498.193650]  io_submit_sqes+0x4461/0x85c0
[ 2498.194557]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2498.195599]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2498.196637]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.197505]  ? find_held_lock+0x2c/0x110
[ 2498.198364]  ? io_submit_sqes+0x85c0/0x85c0
[ 2498.199276]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2498.200305]  ? wait_for_completion_io+0x270/0x270
[ 2498.201315]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2498.202285]  ? vfs_write+0x354/0xa70
[ 2498.203075]  ? fput_many+0x2f/0x1a0
[ 2498.203832]  ? ksys_write+0x1a9/0x260
[ 2498.204659]  ? __ia32_sys_read+0xb0/0xb0
[ 2498.205517]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2498.206611]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2498.207705]  do_syscall_64+0x33/0x40
[ 2498.208495]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2498.209566] RIP: 0033:0x7f1edfa23b19
[ 2498.210352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2498.214213] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2498.215815] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2498.217319] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2498.218801] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2498.220306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2498.221787] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2498.223308] CPU: 1 PID: 12931 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2498.224646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2498.226132] Call Trace:
[ 2498.226622]  dump_stack+0x107/0x167
[ 2498.227282]  should_fail.cold+0x5/0xa
[ 2498.227965]  ? kobject_uevent_env+0x22b/0xf90
[ 2498.228790]  should_failslab+0x5/0x20
[ 2498.229478]  kmem_cache_alloc_trace+0x55/0x320
[ 2498.230306]  kobject_uevent_env+0x22b/0xf90
[ 2498.231095]  __kobject_del+0x27c/0x320
[ 2498.231794]  kobject_put+0x215/0x270
[ 2498.232472]  net_rx_queue_update_kobjects+0x370/0x470
[ 2498.233389]  netdev_unregister_kobject+0x152/0x280
[ 2498.234265]  unregister_netdevice_many+0xbb7/0x1490
[ 2498.235143]  ? netdev_pick_tx+0xc70/0xc70
[ 2498.235894]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2498.236812]  ? queue_delayed_work_on+0xb4/0xe0
[ 2498.237604]  ? trace_hardirqs_on+0x5b/0x180
[ 2498.238348]  unregister_netdevice_queue+0x201/0x2c0
[ 2498.239221]  ? unregister_netdevice_many+0x1490/0x1490
[ 2498.240129]  ? linkwatch_fire_event+0x63/0x190
[ 2498.240943]  __tun_detach+0xf92/0x1280
[ 2498.241618]  tun_chr_close+0xc4/0x250
[ 2498.242297]  __fput+0x285/0x980
[ 2498.242868]  ? __tun_detach+0x1280/0x1280
[ 2498.243611]  task_work_run+0xe2/0x1a0
[ 2498.244289]  exit_to_user_mode_prepare+0x186/0x190
[ 2498.245152]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2498.246017]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2498.246921] RIP: 0033:0x7ff4e0665b19
[ 2498.247582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2498.250874] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2498.252243] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2498.253524] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2498.254737] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2498.256032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2498.257253] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:11:22 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x3, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:22 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x7f53919aa000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:22 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x80000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:22 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xfa01}, 0x0)

04:11:35 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)="ff", 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:35 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 51)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:11:35 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 40)

04:11:35 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x1000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:35 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 69)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:11:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x7f53921cb000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:35 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x7000000}, 0x0)

04:11:35 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x30000}, 0x0)

[ 2511.466104] FAULT_INJECTION: forcing a failure.
[ 2511.466104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2511.467391] CPU: 1 PID: 12978 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2511.468104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.468960] Call Trace:
[ 2511.469287]  dump_stack+0x107/0x167
[ 2511.469666]  should_fail.cold+0x5/0xa
[ 2511.470065]  _copy_from_user+0x2e/0x1b0
[ 2511.470481]  move_addr_to_kernel.part.0+0x31/0x110
[ 2511.470978]  move_addr_to_kernel+0x4f/0x70
[ 2511.471412]  io_connect+0x47a/0x610
[ 2511.471789]  ? io_prep_rw+0x1050/0x1050
[ 2511.472212]  ? __lock_acquire+0xbb1/0x5b00
[ 2511.472703]  io_issue_sqe+0x1611/0x7700
[ 2511.473118]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2511.473666]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2511.474201]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2511.474760]  ? io_connect+0x610/0x610
[ 2511.475153]  ? lock_acquire+0x197/0x470
[ 2511.475591]  ? find_held_lock+0x2c/0x110
[ 2511.476021]  ? __fget_files+0x26d/0x4c0
[ 2511.476437]  ? lock_downgrade+0x6d0/0x6d0
[ 2511.476891]  __io_queue_sqe+0x90/0x9d0
[ 2511.477322]  ? io_issue_sqe+0x7700/0x7700
[ 2511.477798]  io_submit_sqes+0x4461/0x85c0
[ 2511.478269]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2511.478790]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2511.479311]  ? lock_downgrade+0x6d0/0x6d0
[ 2511.479744]  ? find_held_lock+0x2c/0x110
[ 2511.480201]  ? io_submit_sqes+0x85c0/0x85c0
[ 2511.480679]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2511.481194]  ? wait_for_completion_io+0x270/0x270
[ 2511.481716]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2511.482219]  ? vfs_write+0x354/0xa70
[ 2511.482617]  ? fput_many+0x2f/0x1a0
[ 2511.483002]  ? ksys_write+0x1a9/0x260
[ 2511.483438]  ? __ia32_sys_read+0xb0/0xb0
[ 2511.483453]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
04:11:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x7f53923cb000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2511.483463]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2511.483479]  do_syscall_64+0x33/0x40
[ 2511.483489]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2511.483496] RIP: 0033:0x7f1edfa23b19
[ 2511.483508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
04:11:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x7f539454a000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:35 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:35 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x9000000}, 0x0)

04:11:35 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x34000}, 0x0)

04:11:35 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x2000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2511.483515] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2511.483527] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2511.483534] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2511.483541] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.483548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2511.483555] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2511.483746] FAULT_INJECTION: forcing a failure.
[ 2511.483746] name failslab, interval 1, probability 0, space 0, times 0
04:11:35 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 1)

04:11:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x7ffffffff000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2511.483769] CPU: 0 PID: 12986 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2511.483779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.483790] Call Trace:
[ 2511.483816]  dump_stack+0x107/0x167
[ 2511.483841]  should_fail.cold+0x5/0xa
04:11:35 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 70)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2511.483861]  ? create_object.isra.0+0x3a/0xa20
[ 2511.483879]  ? create_object.isra.0+0x3a/0xa20
[ 2511.483902]  should_failslab+0x5/0x20
[ 2511.483922]  kmem_cache_alloc+0x5b/0x310
[ 2511.483941]  ? relay_open_buf.part.0+0x4cf/0xc00
[ 2511.483965]  create_object.isra.0+0x3a/0xa20
[ 2511.483985]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2511.484011]  kmem_cache_alloc_trace+0x151/0x320
[ 2511.484037]  relay_create_buf_file+0x4d/0x180
[ 2511.484059]  relay_open_buf.part.0+0x7de/0xc00
[ 2511.484091]  relay_open+0x531/0xa10
[ 2511.484119]  do_blk_trace_setup+0x4cf/0xc10
[ 2511.484141]  ? _copy_from_user+0xfb/0x1b0
[ 2511.484163]  __blk_trace_setup+0xca/0x180
[ 2511.484182]  ? do_blk_trace_setup+0xc10/0xc10
[ 2511.484216]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2511.484244]  blk_trace_setup+0x43/0x60
[ 2511.484269]  sg_ioctl_common+0x634/0x2570
[ 2511.484291]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2511.484311]  ? do_vfs_ioctl+0x283/0x10d0
[ 2511.484329]  ? sg_write+0x120/0x120
[ 2511.484347]  ? generic_block_fiemap+0x60/0x60
[ 2511.484371]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2511.484418]  ? selinux_file_ioctl+0xb6/0x270
[ 2511.484435]  ? sg_compat_ioctl+0x120/0x120
[ 2511.484455]  sg_ioctl+0x8f/0x120
[ 2511.484479]  __x64_sys_ioctl+0x19a/0x210
[ 2511.484510]  do_syscall_64+0x33/0x40
[ 2511.484532]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2511.484548] RIP: 0033:0x7fb64c457b19
[ 2511.484571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.484583] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2511.484611] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2511.484626] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2511.484639] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.484650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2511.484663] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2511.710273] device veth0_vlan entered promiscuous mode
[ 2511.750575] FAULT_INJECTION: forcing a failure.
[ 2511.750575] name failslab, interval 1, probability 0, space 0, times 0
[ 2511.753226] CPU: 0 PID: 13018 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2511.754649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.756343] Call Trace:
[ 2511.756897]  dump_stack+0x107/0x167
[ 2511.757662]  should_fail.cold+0x5/0xa
[ 2511.758450]  ? __d_alloc+0x2a/0x990
[ 2511.759206]  should_failslab+0x5/0x20
[ 2511.759987]  kmem_cache_alloc+0x5b/0x310
[ 2511.760838]  __d_alloc+0x2a/0x990
[ 2511.761564]  d_alloc_parallel+0x111/0x1bc0
[ 2511.762452]  ? __lock_acquire+0x1657/0x5b00
[ 2511.763343]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2511.764439]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2511.765323]  ? mark_lock+0xf5/0x2df0
[ 2511.766090]  ? lockdep_init_map_type+0x2c7/0x780
[ 2511.767076]  ? lockdep_init_map_type+0x2c7/0x780
[ 2511.768065]  __lookup_slow+0x193/0x490
[ 2511.768882]  ? lookup_open.isra.0+0x1270/0x1270
[ 2511.769848]  ? __d_lookup+0x3bf/0x760
[ 2511.770647]  ? d_lookup+0xcc/0x130
[ 2511.771388]  lookup_one_len+0x167/0x1a0
[ 2511.772213]  ? __lookup_slow+0x490/0x490
[ 2511.773057]  ? down_write_killable+0x180/0x180
[ 2511.773999]  ? do_raw_spin_unlock+0x4f/0x220
[ 2511.774900]  ? mntput+0xc/0x90
[ 2511.775568]  start_creating.part.0+0x10a/0x230
[ 2511.776539]  __debugfs_create_file+0xdb/0x530
[ 2511.777466]  ? blk_trace_remove+0x40/0x40
[ 2511.778317]  relay_create_buf_file+0xf6/0x180
[ 2511.779244]  relay_open_buf.part.0+0x7de/0xc00
[ 2511.780190]  relay_open+0x531/0xa10
[ 2511.780962]  do_blk_trace_setup+0x4cf/0xc10
[ 2511.781855]  ? _copy_from_user+0xfb/0x1b0
[ 2511.782714]  __blk_trace_setup+0xca/0x180
[ 2511.783568]  ? do_blk_trace_setup+0xc10/0xc10
[ 2511.784519]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2511.785609]  blk_trace_setup+0x43/0x60
[ 2511.786411]  sg_ioctl_common+0x634/0x2570
[ 2511.787262]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2511.788317]  ? do_vfs_ioctl+0x283/0x10d0
[ 2511.789180]  ? sg_write+0x120/0x120
[ 2511.789930]  ? generic_block_fiemap+0x60/0x60
[ 2511.790857]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2511.791868]  ? selinux_file_ioctl+0xb6/0x270
[ 2511.792776]  ? sg_compat_ioctl+0x120/0x120
[ 2511.793644]  sg_ioctl+0x8f/0x120
[ 2511.794344]  __x64_sys_ioctl+0x19a/0x210
[ 2511.794833] device veth0_vlan entered promiscuous mode
[ 2511.795180]  do_syscall_64+0x33/0x40
[ 2511.795202]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2511.797562] RIP: 0033:0x7fb64c457b19
[ 2511.798332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.802180] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2511.803773] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2511.805276] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2511.806770] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.808269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2511.809770] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2511.814262] FAULT_INJECTION: forcing a failure.
[ 2511.814262] name failslab, interval 1, probability 0, space 0, times 0
[ 2511.815742] CPU: 1 PID: 13015 Comm: syz-executor.4 Not tainted 5.10.206 #1
[ 2511.816478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.817389] Call Trace:
[ 2511.817690]  dump_stack+0x107/0x167
[ 2511.818067]  should_fail.cold+0x5/0xa
[ 2511.818457]  ? __alloc_skb+0x6d/0x5b0
[ 2511.818849]  should_failslab+0x5/0x20
[ 2511.819239]  kmem_cache_alloc_node+0x55/0x330
[ 2511.819734]  __alloc_skb+0x6d/0x5b0
[ 2511.820126]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2511.820634]  rtmsg_ifinfo+0x83/0x120
[ 2511.821041]  dev_close_many+0x23f/0x460
[ 2511.821459]  ? __dev_close_many+0x2f0/0x2f0
[ 2511.821917]  ? mark_held_locks+0x9e/0xe0
[ 2511.822348]  unregister_netdevice_many+0x349/0x1490
[ 2511.822868]  ? trace_hardirqs_on+0x5b/0x180
[ 2511.823331]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2511.823892]  ? netdev_pick_tx+0xc70/0xc70
[ 2511.824333]  ? queue_delayed_work_on+0x85/0xe0
[ 2511.824814]  ? queue_delayed_work_on+0xb4/0xe0
[ 2511.825332]  ? queue_delayed_work_on+0x88/0xe0
[ 2511.825815]  unregister_netdevice_queue+0x201/0x2c0
[ 2511.826332]  ? unregister_netdevice_many+0x1490/0x1490
[ 2511.826878]  ? linkwatch_fire_event+0x63/0x190
[ 2511.827366]  __tun_detach+0xf92/0x1280
[ 2511.827785]  tun_chr_close+0xc4/0x250
[ 2511.828180]  __fput+0x285/0x980
[ 2511.828541]  ? __tun_detach+0x1280/0x1280
[ 2511.828986]  task_work_run+0xe2/0x1a0
[ 2511.829398]  exit_to_user_mode_prepare+0x186/0x190
[ 2511.829932]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2511.830428]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2511.830958] RIP: 0033:0x7f7565431b19
[ 2511.831373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.833264] RSP: 002b:00007f75629a7188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2511.834050] RAX: 0000000000000003 RBX: 00007f7565544f60 RCX: 00007f7565431b19
[ 2511.834837] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2511.835609] RBP: 00007f75629a71d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.836392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2511.837143] R13: 00007ffd4c14d77f R14: 00007f75629a7300 R15: 0000000000022000
[ 2511.872226] FAULT_INJECTION: forcing a failure.
[ 2511.872226] name failslab, interval 1, probability 0, space 0, times 0
[ 2511.874266] CPU: 1 PID: 12985 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2511.875340] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2511.876604] Call Trace:
[ 2511.877003]  dump_stack+0x107/0x167
[ 2511.877559]  should_fail.cold+0x5/0xa
[ 2511.878135]  ? create_object.isra.0+0x3a/0xa20
[ 2511.878828]  should_failslab+0x5/0x20
[ 2511.879415]  kmem_cache_alloc+0x5b/0x310
[ 2511.880031]  create_object.isra.0+0x3a/0xa20
[ 2511.880707]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2511.881484]  kmem_cache_alloc_trace+0x151/0x320
[ 2511.882200]  kobject_uevent_env+0x22b/0xf90
[ 2511.882871]  __kobject_del+0x27c/0x320
[ 2511.883467]  kobject_put+0x215/0x270
[ 2511.884040]  net_rx_queue_update_kobjects+0x370/0x470
[ 2511.884873]  netdev_unregister_kobject+0x152/0x280
[ 2511.885616]  unregister_netdevice_many+0xbb7/0x1490
[ 2511.886381]  ? netdev_pick_tx+0xc70/0xc70
[ 2511.887013]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2511.887821]  ? queue_delayed_work_on+0xb4/0xe0
[ 2511.888531]  ? trace_hardirqs_on+0x5b/0x180
[ 2511.889211]  unregister_netdevice_queue+0x201/0x2c0
[ 2511.889997]  ? unregister_netdevice_many+0x1490/0x1490
[ 2511.890816]  ? linkwatch_fire_event+0x63/0x190
[ 2511.891525]  __tun_detach+0xf92/0x1280
[ 2511.892140]  ? tun_chr_close+0x57/0x250
[ 2511.892784]  tun_chr_close+0xc4/0x250
[ 2511.893280]  __fput+0x285/0x980
[ 2511.893616]  ? __tun_detach+0x1280/0x1280
[ 2511.894083]  task_work_run+0xe2/0x1a0
[ 2511.894508]  exit_to_user_mode_prepare+0x186/0x190
[ 2511.895039]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2511.895563]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2511.896090] RIP: 0033:0x7ff4e0665b19
[ 2511.896510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.898515] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2511.899351] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2511.900140] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2511.900941] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.901726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2511.902443] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:11:48 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x80000}, 0x0)

04:11:48 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 2)

04:11:48 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 41)

04:11:48 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 52)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:11:48 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x3000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:48 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xaa7e9f1}, 0x0)

04:11:48 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 71)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:11:48 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x8000000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2524.687193] FAULT_INJECTION: forcing a failure.
[ 2524.687193] name failslab, interval 1, probability 0, space 0, times 0
[ 2524.690174] CPU: 0 PID: 13029 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2524.691635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2524.693397] Call Trace:
[ 2524.693954]  dump_stack+0x107/0x167
[ 2524.694725]  should_fail.cold+0x5/0xa
[ 2524.695531]  ? create_object.isra.0+0x3a/0xa20
[ 2524.696514]  should_failslab+0x5/0x20
[ 2524.697338]  kmem_cache_alloc+0x5b/0x310
[ 2524.698213]  create_object.isra.0+0x3a/0xa20
[ 2524.699141]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2524.700227]  kmem_cache_alloc+0x159/0x310
[ 2524.701106]  __d_alloc+0x2a/0x990
[ 2524.701866]  d_alloc_parallel+0x111/0x1bc0
[ 2524.702773]  ? __lock_acquire+0x1657/0x5b00
[ 2524.703696]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2524.704797]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 2524.705656]  ? mark_lock+0xf5/0x2df0
[ 2524.706427]  ? lockdep_init_map_type+0x2c7/0x780
[ 2524.707426]  ? lockdep_init_map_type+0x2c7/0x780
[ 2524.708404]  __lookup_slow+0x193/0x490
[ 2524.709240]  ? lookup_open.isra.0+0x1270/0x1270
[ 2524.710203]  ? __d_lookup+0x3bf/0x760
[ 2524.711024]  ? d_lookup+0xcc/0x130
[ 2524.711773]  lookup_one_len+0x167/0x1a0
[ 2524.711794]  ? __lookup_slow+0x490/0x490
[ 2524.711813]  ? down_write_killable+0x180/0x180
[ 2524.711834]  ? do_raw_spin_unlock+0x4f/0x220
[ 2524.711851]  ? mntput+0xc/0x90
[ 2524.711878]  start_creating.part.0+0x10a/0x230
[ 2524.711901]  __debugfs_create_file+0xdb/0x530
[ 2524.711923]  ? blk_trace_remove+0x40/0x40
[ 2524.711942]  relay_create_buf_file+0xf6/0x180
[ 2524.711963]  relay_open_buf.part.0+0x7de/0xc00
[ 2524.711995]  relay_open+0x531/0xa10
[ 2524.712022]  do_blk_trace_setup+0x4cf/0xc10
[ 2524.712043]  ? _copy_from_user+0xfb/0x1b0
[ 2524.712064]  __blk_trace_setup+0xca/0x180
[ 2524.712082]  ? do_blk_trace_setup+0xc10/0xc10
[ 2524.712112]  ? perf_trace_lock+0xac/0x490
[ 2524.712140]  blk_trace_setup+0x43/0x60
[ 2524.712163]  sg_ioctl_common+0x634/0x2570
[ 2524.712185]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2524.712203]  ? do_vfs_ioctl+0x283/0x10d0
[ 2524.712220]  ? sg_write+0x120/0x120
[ 2524.712237]  ? generic_block_fiemap+0x60/0x60
[ 2524.712262]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2524.712300]  ? selinux_file_ioctl+0xb6/0x270
[ 2524.712317]  ? sg_compat_ioctl+0x120/0x120
[ 2524.712336]  sg_ioctl+0x8f/0x120
[ 2524.712358]  __x64_sys_ioctl+0x19a/0x210
[ 2524.712383]  do_syscall_64+0x33/0x40
[ 2524.712400]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2524.712413] RIP: 0033:0x7fb64c457b19
[ 2524.712434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2524.712445] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2524.718546] device veth0_vlan entered promiscuous mode
[ 2524.719311] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2524.719324] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2524.719336] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2524.719348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2524.719368] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2524.766588] FAULT_INJECTION: forcing a failure.
[ 2524.766588] name failslab, interval 1, probability 0, space 0, times 0
[ 2524.769182] CPU: 0 PID: 13028 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2524.770637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2524.772354] Call Trace:
[ 2524.772917]  dump_stack+0x107/0x167
[ 2524.773676]  should_fail.cold+0x5/0xa
[ 2524.774487]  should_failslab+0x5/0x20
[ 2524.775273]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2524.776205]  io_submit_sqes+0x6f76/0x85c0
[ 2524.777131]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2524.778156]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2524.779170]  ? lock_downgrade+0x6d0/0x6d0
[ 2524.780019]  ? find_held_lock+0x2c/0x110
[ 2524.780887]  ? io_submit_sqes+0x85c0/0x85c0
[ 2524.781782]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2524.782790]  ? wait_for_completion_io+0x270/0x270
[ 2524.783775]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2524.784737]  ? vfs_write+0x354/0xa70
[ 2524.785521]  ? fput_many+0x2f/0x1a0
[ 2524.786279]  ? ksys_write+0x1a9/0x260
[ 2524.787083]  ? __ia32_sys_read+0xb0/0xb0
[ 2524.787927]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2524.789033]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2524.790115]  do_syscall_64+0x33/0x40
[ 2524.790893]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2524.791951] RIP: 0033:0x7f1edfa23b19
[ 2524.792733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2524.796622] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2524.798201] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2524.799707] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2524.801218] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2524.802704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2524.804207] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2524.825557] FAULT_INJECTION: forcing a failure.
[ 2524.825557] name failslab, interval 1, probability 0, space 0, times 0
[ 2524.828238] CPU: 1 PID: 13041 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2524.829675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2524.831370] Call Trace:
[ 2524.831916]  dump_stack+0x107/0x167
[ 2524.832694]  should_fail.cold+0x5/0xa
[ 2524.833477]  ? kobject_get_path+0xc5/0x1f0
[ 2524.834350]  should_failslab+0x5/0x20
[ 2524.835127]  __kmalloc+0x72/0x390
[ 2524.835840]  ? trace_hardirqs_on+0x5b/0x180
[ 2524.836733]  kobject_get_path+0xc5/0x1f0
[ 2524.837575]  kobject_uevent_env+0x251/0xf90
[ 2524.838473]  __kobject_del+0x27c/0x320
[ 2524.839267]  kobject_put+0x215/0x270
[ 2524.840049]  net_rx_queue_update_kobjects+0x370/0x470
[ 2524.841133]  netdev_unregister_kobject+0x152/0x280
[ 2524.842159]  unregister_netdevice_many+0xbb7/0x1490
[ 2524.843187]  ? netdev_pick_tx+0xc70/0xc70
[ 2524.844049]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2524.845136]  ? queue_delayed_work_on+0xb4/0xe0
[ 2524.846069]  ? trace_hardirqs_on+0x5b/0x180
[ 2524.846962]  unregister_netdevice_queue+0x201/0x2c0
[ 2524.847980]  ? unregister_netdevice_many+0x1490/0x1490
[ 2524.849077]  ? linkwatch_fire_event+0x63/0x190
[ 2524.850016]  __tun_detach+0xf92/0x1280
[ 2524.850837]  tun_chr_close+0xc4/0x250
[ 2524.851615]  __fput+0x285/0x980
[ 2524.852294]  ? __tun_detach+0x1280/0x1280
[ 2524.853157]  task_work_run+0xe2/0x1a0
[ 2524.853947]  exit_to_user_mode_prepare+0x186/0x190
[ 2524.854946]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2524.855930]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2524.856978] RIP: 0033:0x7ff4e0665b19
[ 2524.857741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2524.861504] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2524.863047] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2524.864493] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2524.865953] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2524.867402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2524.868875] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:11:49 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf000000}, 0x0)

04:11:49 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xa05494537f0000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:11:49 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x4000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:11:49 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x400300}, 0x0)

04:11:49 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 72)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:11:49 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x9effffff}, 0x0)

[ 2525.030583] FAULT_INJECTION: forcing a failure.
[ 2525.030583] name failslab, interval 1, probability 0, space 0, times 0
[ 2525.033226] CPU: 0 PID: 13065 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2525.034610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2525.036257] Call Trace:
[ 2525.036813]  dump_stack+0x107/0x167
[ 2525.037555]  should_fail.cold+0x5/0xa
[ 2525.038317]  ? alloc_inode+0x171/0x240
[ 2525.039090]  should_failslab+0x5/0x20
[ 2525.039850]  kmem_cache_alloc+0x5b/0x310
[ 2525.040680]  ? __lookup_slow+0x490/0x490
[ 2525.041494]  alloc_inode+0x171/0x240
[ 2525.042236]  new_inode+0x23/0x250
[ 2525.042929]  debugfs_get_inode+0x1a/0x130
[ 2525.043767]  __debugfs_create_file+0x14e/0x530
[ 2525.044707]  ? blk_trace_remove+0x40/0x40
[ 2525.045544]  relay_create_buf_file+0xf6/0x180
[ 2525.046441]  relay_open_buf.part.0+0x7de/0xc00
[ 2525.047356]  relay_open+0x531/0xa10
[ 2525.048108]  do_blk_trace_setup+0x4cf/0xc10
[ 2525.049007]  ? _copy_from_user+0xfb/0x1b0
[ 2525.049870]  __blk_trace_setup+0xca/0x180
[ 2525.050742]  ? do_blk_trace_setup+0xc10/0xc10
[ 2525.051705]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2525.052835]  blk_trace_setup+0x43/0x60
[ 2525.053663]  sg_ioctl_common+0x634/0x2570
[ 2525.054534]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2525.055611]  ? do_vfs_ioctl+0x283/0x10d0
[ 2525.056473]  ? sg_write+0x120/0x120
[ 2525.057254]  ? generic_block_fiemap+0x60/0x60
[ 2525.058200]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2525.059233]  ? selinux_file_ioctl+0xb6/0x270
[ 2525.060164]  ? sg_compat_ioctl+0x120/0x120
[ 2525.061060]  sg_ioctl+0x8f/0x120
[ 2525.061774]  __x64_sys_ioctl+0x19a/0x210
[ 2525.062633]  do_syscall_64+0x33/0x40
[ 2525.063415]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2525.064498] RIP: 0033:0x7fb64c457b19
[ 2525.065286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2525.069162] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2525.070775] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2525.072275] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2525.073790] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2525.075299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2525.076823] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2525.079109] debugfs: out of free dentries, can not create file 'trace1'
04:11:49 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xa09a91537f0000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2525.123904] device veth0_vlan entered promiscuous mode
[ 2525.128121] FAULT_INJECTION: forcing a failure.
[ 2525.128121] name failslab, interval 1, probability 0, space 0, times 0
[ 2525.130586] CPU: 0 PID: 13051 Comm: syz-executor.4 Not tainted 5.10.206 #1
[ 2525.132033] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2525.133819] Call Trace:
[ 2525.134378]  dump_stack+0x107/0x167
[ 2525.135144]  should_fail.cold+0x5/0xa
[ 2525.135941]  ? create_object.isra.0+0x3a/0xa20
[ 2525.136916]  should_failslab+0x5/0x20
[ 2525.137728]  kmem_cache_alloc+0x5b/0x310
[ 2525.138587]  create_object.isra.0+0x3a/0xa20
[ 2525.139513]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2525.140599]  kmem_cache_alloc_node+0x169/0x330
[ 2525.141545]  __alloc_skb+0x6d/0x5b0
[ 2525.142303]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2525.143234]  rtmsg_ifinfo+0x83/0x120
[ 2525.143977]  dev_close_many+0x23f/0x460
[ 2525.144785]  ? __dev_close_many+0x2f0/0x2f0
[ 2525.145659]  ? __mod_timer+0x7fb/0xd10
[ 2525.146472]  unregister_netdevice_many+0x349/0x1490
[ 2525.147497]  ? netdev_pick_tx+0xc70/0xc70
[ 2525.148377]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2525.149486]  ? queue_delayed_work_on+0xb4/0xe0
[ 2525.150439]  ? trace_hardirqs_on+0x5b/0x180
[ 2525.151343]  unregister_netdevice_queue+0x201/0x2c0
[ 2525.152372]  ? unregister_netdevice_many+0x1490/0x1490
[ 2525.153496]  ? linkwatch_fire_event+0x63/0x190
[ 2525.154448]  __tun_detach+0xf92/0x1280
[ 2525.155231]  ? __tun_detach+0x2/0x1280
[ 2525.156041]  tun_chr_close+0xc4/0x250
[ 2525.156854]  __fput+0x285/0x980
[ 2525.157536]  ? __tun_detach+0x1280/0x1280
[ 2525.158389]  task_work_run+0xe2/0x1a0
[ 2525.159166]  exit_to_user_mode_prepare+0x186/0x190
[ 2525.160185]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2525.161180]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2525.162238] RIP: 0033:0x7f7565431b19
[ 2525.162998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2525.166790] RSP: 002b:00007f7562986188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2525.168359] RAX: 0000000000000003 RBX: 00007f7565545020 RCX: 00007f7565431b19
[ 2525.169832] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2525.171305] RBP: 00007f75629861d0 R08: 0000000000000000 R09: 0000000000000000
[ 2525.172787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2525.174263] R13: 00007ffd4c14d77f R14: 00007f7562986300 R15: 0000000000022000
04:12:03 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xb01c92537f0000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:12:03 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf0ffff}, 0x0)

04:12:03 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 3)

04:12:03 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 53)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:12:03 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 73)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:12:03 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf0ffffff}, 0x0)

04:12:03 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x8000000000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:03 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 42)

[ 2538.943225] FAULT_INJECTION: forcing a failure.
[ 2538.943225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2538.944610] CPU: 0 PID: 13083 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2538.945412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2538.946337] Call Trace:
[ 2538.946646]  dump_stack+0x107/0x167
[ 2538.947064]  should_fail.cold+0x5/0xa
[ 2538.947489]  _copy_from_user+0x2e/0x1b0
[ 2538.947947]  move_addr_to_kernel.part.0+0x31/0x110
[ 2538.948495]  move_addr_to_kernel+0x4f/0x70
[ 2538.948976]  io_connect+0x47a/0x610
[ 2538.949383]  ? io_prep_rw+0x1050/0x1050
[ 2538.949832]  ? __lock_acquire+0xbb1/0x5b00
[ 2538.950307]  io_issue_sqe+0x1611/0x7700
[ 2538.950758]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2538.951343]  ? lock_chain_count+0x20/0x20
[ 2538.951802]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2538.952398]  ? io_connect+0x610/0x610
[ 2538.952846]  ? lock_acquire+0x197/0x470
[ 2538.953304]  ? find_held_lock+0x2c/0x110
[ 2538.953764]  ? __fget_files+0x26d/0x4c0
[ 2538.954224]  ? lock_downgrade+0x6d0/0x6d0
[ 2538.954711]  __io_queue_sqe+0x90/0x9d0
[ 2538.955170]  ? io_issue_sqe+0x7700/0x7700
[ 2538.955189]  io_submit_sqes+0x4461/0x85c0
[ 2538.955215]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2538.955224]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2538.955237]  ? lock_downgrade+0x6d0/0x6d0
[ 2538.955245]  ? find_held_lock+0x2c/0x110
04:12:03 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x100000000000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2538.955258]  ? io_submit_sqes+0x85c0/0x85c0
[ 2538.955274]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2538.955287]  ? wait_for_completion_io+0x270/0x270
[ 2538.955300]  ? rcu_read_lock_any_held+0x75/0xa0
04:12:03 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xf1e9a70a}, 0x0)

[ 2538.955309]  ? vfs_write+0x354/0xa70
[ 2538.955321]  ? fput_many+0x2f/0x1a0
[ 2538.955332]  ? ksys_write+0x1a9/0x260
[ 2538.955342]  ? __ia32_sys_read+0xb0/0xb0
[ 2538.955355]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2538.955365]  ? syscall_enter_from_user_mode+0x1d/0x50
04:12:03 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xb03c92537f0000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:12:03 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x1000000}, 0x0)

[ 2538.955379]  do_syscall_64+0x33/0x40
[ 2538.955388]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
04:12:03 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xfc010000}, 0x0)

04:12:03 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 54)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2538.955395] RIP: 0033:0x7f1edfa23b19
[ 2538.955407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2538.955413] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2538.955425] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2538.955431] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
04:12:03 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x200000000000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

[ 2538.955437] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2538.955443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2538.955450] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2539.004323] FAULT_INJECTION: forcing a failure.
[ 2539.004323] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.004348] CPU: 1 PID: 13096 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2539.004366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2539.004374] Call Trace:
[ 2539.004401]  dump_stack+0x107/0x167
[ 2539.004429]  should_fail.cold+0x5/0xa
[ 2539.004455]  ? create_object.isra.0+0x3a/0xa20
[ 2539.004478]  should_failslab+0x5/0x20
[ 2539.004498]  kmem_cache_alloc+0x5b/0x310
[ 2539.004525]  create_object.isra.0+0x3a/0xa20
[ 2539.004546]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2539.004574]  kmem_cache_alloc+0x159/0x310
[ 2539.004601]  alloc_inode+0x171/0x240
[ 2539.004619]  new_inode+0x23/0x250
[ 2539.004645]  debugfs_get_inode+0x1a/0x130
[ 2539.004671]  __debugfs_create_file+0x14e/0x530
[ 2539.004696]  ? blk_trace_remove+0x40/0x40
[ 2539.004726]  relay_create_buf_file+0xf6/0x180
[ 2539.004749]  relay_open_buf.part.0+0x7de/0xc00
[ 2539.004785]  relay_open+0x531/0xa10
[ 2539.004814]  do_blk_trace_setup+0x4cf/0xc10
[ 2539.004836]  ? _copy_from_user+0xfb/0x1b0
[ 2539.004859]  __blk_trace_setup+0xca/0x180
[ 2539.004879]  ? do_blk_trace_setup+0xc10/0xc10
[ 2539.004913]  ? perf_trace_lock+0xac/0x490
[ 2539.004943]  blk_trace_setup+0x43/0x60
[ 2539.004968]  sg_ioctl_common+0x634/0x2570
[ 2539.004991]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2539.005012]  ? do_vfs_ioctl+0x283/0x10d0
[ 2539.005029]  ? sg_write+0x120/0x120
[ 2539.005048]  ? generic_block_fiemap+0x60/0x60
[ 2539.005073]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2539.005114]  ? selinux_file_ioctl+0xb6/0x270
[ 2539.005131]  ? sg_compat_ioctl+0x120/0x120
[ 2539.005151]  sg_ioctl+0x8f/0x120
[ 2539.005174]  __x64_sys_ioctl+0x19a/0x210
[ 2539.005201]  do_syscall_64+0x33/0x40
[ 2539.005220]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2539.005233] RIP: 0033:0x7fb64c457b19
[ 2539.005255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.005266] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2539.005289] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2539.005301] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2539.005312] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.005324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2539.005335] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2539.011485] device veth0_vlan entered promiscuous mode
[ 2539.035535] FAULT_INJECTION: forcing a failure.
[ 2539.035535] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.035549] CPU: 0 PID: 13100 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2539.035556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2539.035559] Call Trace:
[ 2539.035580]  dump_stack+0x107/0x167
[ 2539.035596]  should_fail.cold+0x5/0xa
[ 2539.035611]  ? create_object.isra.0+0x3a/0xa20
[ 2539.035624]  should_failslab+0x5/0x20
[ 2539.035636]  kmem_cache_alloc+0x5b/0x310
[ 2539.035647]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2539.035661]  create_object.isra.0+0x3a/0xa20
[ 2539.035672]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2539.035686]  __kmalloc+0x16e/0x390
[ 2539.035703]  kobject_get_path+0xc5/0x1f0
[ 2539.035717]  kobject_uevent_env+0x251/0xf90
[ 2539.035736]  __kobject_del+0x27c/0x320
[ 2539.035748]  kobject_put+0x215/0x270
[ 2539.035765]  net_rx_queue_update_kobjects+0x370/0x470
[ 2539.035784]  netdev_unregister_kobject+0x152/0x280
[ 2539.035800]  unregister_netdevice_many+0xbb7/0x1490
[ 2539.035819]  ? netdev_pick_tx+0xc70/0xc70
[ 2539.035837]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2539.035848]  ? queue_delayed_work_on+0xb4/0xe0
[ 2539.035858]  ? trace_hardirqs_on+0x5b/0x180
[ 2539.035874]  unregister_netdevice_queue+0x201/0x2c0
[ 2539.035886]  ? unregister_netdevice_many+0x1490/0x1490
[ 2539.035899]  ? linkwatch_fire_event+0x63/0x190
[ 2539.035915]  __tun_detach+0xf92/0x1280
[ 2539.035933]  tun_chr_close+0xc4/0x250
[ 2539.035945]  __fput+0x285/0x980
[ 2539.035955]  ? __tun_detach+0x1280/0x1280
[ 2539.035970]  task_work_run+0xe2/0x1a0
[ 2539.035986]  exit_to_user_mode_prepare+0x186/0x190
[ 2539.035999]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2539.036011]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2539.036018] RIP: 0033:0x7ff4e0665b19
[ 2539.036030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.036037] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2539.036050] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2539.036056] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2539.036063] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.036069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2539.036075] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2539.071357] device veth0_vlan entered promiscuous mode
[ 2539.102687] FAULT_INJECTION: forcing a failure.
[ 2539.102687] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.102709] CPU: 1 PID: 13102 Comm: syz-executor.4 Not tainted 5.10.206 #1
[ 2539.102721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2539.102727] Call Trace:
[ 2539.102752]  dump_stack+0x107/0x167
[ 2539.102782]  should_fail.cold+0x5/0xa
[ 2539.102812]  should_failslab+0x5/0x20
[ 2539.102833]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2539.102852]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2539.102879]  __alloc_skb+0xb1/0x5b0
[ 2539.102904]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2539.102927]  rtmsg_ifinfo+0x83/0x120
[ 2539.102952]  dev_close_many+0x23f/0x460
[ 2539.102976]  ? __dev_close_many+0x2f0/0x2f0
[ 2539.102993]  ? __mod_timer+0x7fb/0xd10
[ 2539.103029]  unregister_netdevice_many+0x349/0x1490
[ 2539.103058]  ? netdev_pick_tx+0xc70/0xc70
[ 2539.103088]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2539.103107]  ? queue_delayed_work_on+0xb4/0xe0
[ 2539.103123]  ? trace_hardirqs_on+0x5b/0x180
[ 2539.103150]  unregister_netdevice_queue+0x201/0x2c0
[ 2539.103172]  ? unregister_netdevice_many+0x1490/0x1490
[ 2539.103194]  ? linkwatch_fire_event+0x63/0x190
[ 2539.103223]  __tun_detach+0xf92/0x1280
[ 2539.103256]  tun_chr_close+0xc4/0x250
[ 2539.103278]  __fput+0x285/0x980
[ 2539.103297]  ? __tun_detach+0x1280/0x1280
[ 2539.103323]  task_work_run+0xe2/0x1a0
[ 2539.103352]  exit_to_user_mode_prepare+0x186/0x190
[ 2539.103375]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2539.103395]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2539.103408] RIP: 0033:0x7f7565431b19
[ 2539.103429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.103440] RSP: 002b:00007f7562986188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2539.103461] RAX: 0000000000000003 RBX: 00007f7565545020 RCX: 00007f7565431b19
[ 2539.103472] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2539.103484] RBP: 00007f75629861d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.103495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2539.103507] R13: 00007ffd4c14d77f R14: 00007f7562986300 R15: 0000000000022000
[ 2539.161686] FAULT_INJECTION: forcing a failure.
[ 2539.161686] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2539.161699] CPU: 0 PID: 13119 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2539.161705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2539.161709] Call Trace:
[ 2539.161727]  dump_stack+0x107/0x167
[ 2539.161740]  should_fail.cold+0x5/0xa
[ 2539.161756]  _copy_from_user+0x2e/0x1b0
[ 2539.161775]  move_addr_to_kernel.part.0+0x31/0x110
[ 2539.161786]  move_addr_to_kernel+0x4f/0x70
[ 2539.161798]  io_connect+0x47a/0x610
[ 2539.161809]  ? io_prep_rw+0x1050/0x1050
[ 2539.161831]  ? __lock_acquire+0xbb1/0x5b00
[ 2539.161844]  io_issue_sqe+0x1611/0x7700
[ 2539.161859]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2539.161870]  ? lock_chain_count+0x20/0x20
[ 2539.161882]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2539.161891]  ? io_connect+0x610/0x610
[ 2539.161903]  ? lock_acquire+0x197/0x470
[ 2539.161913]  ? find_held_lock+0x2c/0x110
[ 2539.161926]  ? __fget_files+0x26d/0x4c0
[ 2539.161937]  ? lock_downgrade+0x6d0/0x6d0
[ 2539.161950]  __io_queue_sqe+0x90/0x9d0
[ 2539.161963]  ? io_issue_sqe+0x7700/0x7700
[ 2539.161981]  io_submit_sqes+0x4461/0x85c0
[ 2539.162002]  ? __do_sys_io_uring_enter+0x1f2/0x1920
[ 2539.162015]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2539.162025]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2539.162036]  ? lock_downgrade+0x6d0/0x6d0
[ 2539.162045]  ? find_held_lock+0x2c/0x110
[ 2539.162058]  ? io_submit_sqes+0x85c0/0x85c0
[ 2539.162074]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2539.162089]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2539.162099]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2539.162108]  ? trace_hardirqs_on+0x5b/0x180
[ 2539.162118]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2539.162140]  do_syscall_64+0x33/0x40
[ 2539.162149]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2539.162156] RIP: 0033:0x7f1edfa23b19
[ 2539.162167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.162172] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2539.162185] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2539.162191] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2539.162197] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.162203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2539.162209] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
04:12:16 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 4)

04:12:16 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xf0ff1f00000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:12:16 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 43)

04:12:16 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xfffff000}, 0x0)

04:12:16 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 74)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:12:16 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x2000000}, 0x0)

04:12:16 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x300000000000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:16 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 55)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

[ 2552.053627] FAULT_INJECTION: forcing a failure.
[ 2552.053627] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.055300] CPU: 0 PID: 13142 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2552.056114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.057130] Call Trace:
[ 2552.057443]  dump_stack+0x107/0x167
[ 2552.057884]  should_fail.cold+0x5/0xa
[ 2552.058339]  should_failslab+0x5/0x20
[ 2552.058804]  kmem_cache_alloc_bulk+0x4b/0x320
[ 2552.059335]  io_submit_sqes+0x6f76/0x85c0
[ 2552.059847]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2552.060430]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2552.061010]  ? lock_downgrade+0x6d0/0x6d0
[ 2552.061494]  ? find_held_lock+0x2c/0x110
[ 2552.061971]  ? io_submit_sqes+0x85c0/0x85c0
[ 2552.062484]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2552.063048]  ? wait_for_completion_io+0x270/0x270
[ 2552.063615]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2552.064156]  ? vfs_write+0x354/0xa70
[ 2552.064598]  ? fput_many+0x2f/0x1a0
[ 2552.065057]  ? ksys_write+0x1a9/0x260
[ 2552.065069]  ? __ia32_sys_read+0xb0/0xb0
[ 2552.065083]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.065094]  ? syscall_enter_from_user_mode+0x1d/0x50
04:12:16 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xffffff7f}, 0x0)

[ 2552.065109]  do_syscall_64+0x33/0x40
[ 2552.065120]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2552.065128] RIP: 0033:0x7f1edfa23b19
[ 2552.065140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.065146] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2552.065159] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
04:12:16 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x3000000}, 0x0)

[ 2552.065166] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
04:12:16 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0xf0ffffff7f0000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2552.065172] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
04:12:16 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xffffff9e}, 0x0)

[ 2552.065179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
04:12:16 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x400000000000000, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:16 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 75)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2552.065186] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2552.077239] FAULT_INJECTION: forcing a failure.
[ 2552.077239] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.077267] CPU: 1 PID: 13143 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2552.077279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
04:12:16 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x4000000}, 0x0)

[ 2552.077285] Call Trace:
[ 2552.077311]  dump_stack+0x107/0x167
04:12:16 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x100000000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2552.077339]  should_fail.cold+0x5/0xa
[ 2552.077365]  ? security_inode_alloc+0x34/0x160
[ 2552.077389]  should_failslab+0x5/0x20
[ 2552.077409]  kmem_cache_alloc+0x5b/0x310
[ 2552.077438]  security_inode_alloc+0x34/0x160
[ 2552.077460]  inode_init_always+0xa4e/0xd10
[ 2552.077482]  alloc_inode+0x84/0x240
[ 2552.077500]  new_inode+0x23/0x250
[ 2552.077524]  debugfs_get_inode+0x1a/0x130
[ 2552.077544]  __debugfs_create_file+0x14e/0x530
[ 2552.077567]  ? blk_trace_remove+0x40/0x40
[ 2552.077587]  relay_create_buf_file+0xf6/0x180
[ 2552.077609]  relay_open_buf.part.0+0x7de/0xc00
[ 2552.077644]  relay_open+0x531/0xa10
[ 2552.077672]  do_blk_trace_setup+0x4cf/0xc10
[ 2552.077694]  ? _copy_from_user+0xfb/0x1b0
[ 2552.077716]  __blk_trace_setup+0xca/0x180
[ 2552.077734]  ? do_blk_trace_setup+0xc10/0xc10
[ 2552.077756]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.077805]  blk_trace_setup+0x43/0x60
[ 2552.077830]  sg_ioctl_common+0x634/0x2570
[ 2552.077852]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2552.077872]  ? do_vfs_ioctl+0x283/0x10d0
[ 2552.077889]  ? sg_write+0x120/0x120
[ 2552.077906]  ? generic_block_fiemap+0x60/0x60
[ 2552.077935]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.077955]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2552.077969]  ? trace_hardirqs_on+0x5b/0x180
[ 2552.077990]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2552.078010]  ? sg_compat_ioctl+0x120/0x120
[ 2552.078029]  ? sg_compat_ioctl+0x120/0x120
[ 2552.078049]  sg_ioctl+0x8f/0x120
[ 2552.078070]  __x64_sys_ioctl+0x19a/0x210
[ 2552.078095]  do_syscall_64+0x33/0x40
[ 2552.078112]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2552.078126] RIP: 0033:0x7fb64c457b19
[ 2552.078146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.078157] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2552.078179] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2552.078191] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2552.078203] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.078214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2552.078225] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2552.078558] debugfs: out of free dentries, can not create file 'trace1'
[ 2552.133103] device veth0_vlan entered promiscuous mode
[ 2552.166066] FAULT_INJECTION: forcing a failure.
[ 2552.166066] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.166080] CPU: 0 PID: 13157 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2552.166086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.166090] Call Trace:
[ 2552.166107]  dump_stack+0x107/0x167
[ 2552.166120]  should_fail.cold+0x5/0xa
[ 2552.166134]  ? create_object.isra.0+0x3a/0xa20
[ 2552.166147]  should_failslab+0x5/0x20
[ 2552.166158]  kmem_cache_alloc+0x5b/0x310
[ 2552.166169]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2552.166178]  ? trace_hardirqs_on+0x5b/0x180
[ 2552.166191]  create_object.isra.0+0x3a/0xa20
[ 2552.166201]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2552.166214]  __kmalloc+0x16e/0x390
[ 2552.166225]  ? kobject_get_path+0x63/0x1f0
[ 2552.166238]  kobject_get_path+0xc5/0x1f0
[ 2552.166252]  kobject_uevent_env+0x251/0xf90
[ 2552.166269]  __kobject_del+0x27c/0x320
[ 2552.166280]  kobject_put+0x215/0x270
[ 2552.166304]  net_rx_queue_update_kobjects+0x370/0x470
[ 2552.166321]  netdev_unregister_kobject+0x152/0x280
[ 2552.166337]  unregister_netdevice_many+0xbb7/0x1490
[ 2552.166352]  ? netdev_pick_tx+0xc70/0xc70
[ 2552.166368]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.166379]  ? queue_delayed_work_on+0xb4/0xe0
[ 2552.166386]  ? trace_hardirqs_on+0x5b/0x180
[ 2552.166400]  unregister_netdevice_queue+0x201/0x2c0
[ 2552.166412]  ? unregister_netdevice_many+0x1490/0x1490
[ 2552.166424]  ? linkwatch_fire_event+0x63/0x190
[ 2552.166439]  __tun_detach+0xf92/0x1280
[ 2552.166456]  tun_chr_close+0xc4/0x250
[ 2552.166467]  __fput+0x285/0x980
[ 2552.166477]  ? __tun_detach+0x1280/0x1280
[ 2552.166491]  task_work_run+0xe2/0x1a0
[ 2552.166506]  exit_to_user_mode_prepare+0x186/0x190
[ 2552.166521]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2552.166531]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2552.166538] RIP: 0033:0x7ff4e0665b19
[ 2552.166550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.166556] RSP: 002b:00007ff4ddbba188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2552.166568] RAX: 0000000000000003 RBX: 00007ff4e0779020 RCX: 00007ff4e0665b19
[ 2552.166574] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2552.166581] RBP: 00007ff4ddbba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.166589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2552.166595] R13: 00007ffce1da37af R14: 00007ff4ddbba300 R15: 0000000000022000
[ 2552.196158] device veth0_vlan entered promiscuous mode
[ 2552.244705] FAULT_INJECTION: forcing a failure.
[ 2552.244705] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.244728] CPU: 1 PID: 13159 Comm: syz-executor.4 Not tainted 5.10.206 #1
[ 2552.244740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.244746] Call Trace:
[ 2552.244777]  dump_stack+0x107/0x167
[ 2552.244803]  should_fail.cold+0x5/0xa
[ 2552.244832]  ? create_object.isra.0+0x3a/0xa20
[ 2552.244855]  should_failslab+0x5/0x20
[ 2552.244875]  kmem_cache_alloc+0x5b/0x310
[ 2552.244909]  create_object.isra.0+0x3a/0xa20
[ 2552.244930]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2552.244956]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2552.244975]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2552.245001]  __alloc_skb+0xb1/0x5b0
[ 2552.245026]  rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2552.245049]  rtmsg_ifinfo+0x83/0x120
[ 2552.245074]  dev_close_many+0x23f/0x460
[ 2552.245098]  ? __dev_close_many+0x2f0/0x2f0
[ 2552.245115]  ? __mod_timer+0x7fb/0xd10
[ 2552.245150]  unregister_netdevice_many+0x349/0x1490
[ 2552.245179]  ? netdev_pick_tx+0xc70/0xc70
[ 2552.245208]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.245228]  ? queue_delayed_work_on+0xb4/0xe0
[ 2552.245244]  ? trace_hardirqs_on+0x5b/0x180
[ 2552.245271]  unregister_netdevice_queue+0x201/0x2c0
[ 2552.245293]  ? unregister_netdevice_many+0x1490/0x1490
[ 2552.245316]  ? linkwatch_fire_event+0x63/0x190
[ 2552.245344]  __tun_detach+0xf92/0x1280
[ 2552.245377]  tun_chr_close+0xc4/0x250
[ 2552.245399]  __fput+0x285/0x980
[ 2552.245417]  ? __tun_detach+0x1280/0x1280
[ 2552.245444]  task_work_run+0xe2/0x1a0
[ 2552.245472]  exit_to_user_mode_prepare+0x186/0x190
[ 2552.245494]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2552.245513]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2552.245527] RIP: 0033:0x7f7565431b19
[ 2552.245548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.245559] RSP: 002b:00007f7562986188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2552.245581] RAX: 0000000000000003 RBX: 00007f7565545020 RCX: 00007f7565431b19
[ 2552.245593] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2552.245604] RBP: 00007f75629861d0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.245616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2552.245628] R13: 00007ffd4c14d77f R14: 00007f7562986300 R15: 0000000000022000
[ 2552.320489] FAULT_INJECTION: forcing a failure.
[ 2552.320489] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.320513] CPU: 0 PID: 13171 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2552.320525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.320532] Call Trace:
[ 2552.320559]  dump_stack+0x107/0x167
[ 2552.320586]  should_fail.cold+0x5/0xa
[ 2552.320612]  ? security_inode_alloc+0x34/0x160
[ 2552.320635]  should_failslab+0x5/0x20
[ 2552.320655]  kmem_cache_alloc+0x5b/0x310
[ 2552.320684]  security_inode_alloc+0x34/0x160
[ 2552.320713]  inode_init_always+0xa4e/0xd10
[ 2552.320741]  alloc_inode+0x84/0x240
[ 2552.320759]  new_inode+0x23/0x250
[ 2552.320783]  debugfs_get_inode+0x1a/0x130
[ 2552.320804]  __debugfs_create_file+0x14e/0x530
[ 2552.320828]  ? blk_trace_remove+0x40/0x40
[ 2552.320848]  relay_create_buf_file+0xf6/0x180
[ 2552.320870]  relay_open_buf.part.0+0x7de/0xc00
[ 2552.320913]  relay_open+0x531/0xa10
[ 2552.320941]  do_blk_trace_setup+0x4cf/0xc10
[ 2552.320964]  ? _copy_from_user+0xfb/0x1b0
[ 2552.320986]  __blk_trace_setup+0xca/0x180
[ 2552.321006]  ? do_blk_trace_setup+0xc10/0xc10
[ 2552.321038]  ? perf_trace_lock+0xac/0x490
[ 2552.321067]  blk_trace_setup+0x43/0x60
[ 2552.321091]  sg_ioctl_common+0x634/0x2570
[ 2552.321116]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2552.321145]  ? do_vfs_ioctl+0x283/0x10d0
[ 2552.321162]  ? sg_write+0x120/0x120
[ 2552.321181]  ? generic_block_fiemap+0x60/0x60
[ 2552.321205]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2552.321243]  ? selinux_file_ioctl+0xb6/0x270
[ 2552.321260]  ? sg_compat_ioctl+0x120/0x120
[ 2552.321281]  sg_ioctl+0x8f/0x120
[ 2552.321304]  __x64_sys_ioctl+0x19a/0x210
[ 2552.321330]  do_syscall_64+0x33/0x40
[ 2552.321348]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2552.321362] RIP: 0033:0x7fb64c457b19
[ 2552.321384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.321395] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2552.321418] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2552.321431] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2552.321443] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.321455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2552.321467] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2552.321803] debugfs: out of free dentries, can not create file 'trace1'
04:12:35 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0xfffffff0}, 0x0)

04:12:35 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 76)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

04:12:35 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 5)

04:12:35 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 44)

04:12:35 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x4}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:35 executing program 5:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000ac0))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1\x00'}}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000)
r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r5, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 56)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000340)={0x0, 0xad58, 0x1, 0x2, 0x3a3, 0x0, r6}, &(0x7f00000df000/0x3000)=nil, &(0x7f00008b7000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000003c0))

04:12:35 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x5000000}, 0x0)

04:12:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x200000000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

[ 2571.461348] device veth0_vlan entered promiscuous mode
[ 2571.465036] device veth0_vlan entered promiscuous mode
[ 2571.469335] FAULT_INJECTION: forcing a failure.
[ 2571.469335] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.472083] CPU: 0 PID: 13198 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2571.472872] FAULT_INJECTION: forcing a failure.
[ 2571.472872] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.473533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.473550] Call Trace:
[ 2571.477044]  dump_stack+0x107/0x167
[ 2571.477840]  should_fail.cold+0x5/0xa
[ 2571.478641]  ? create_object.isra.0+0x3a/0xa20
[ 2571.479600]  should_failslab+0x5/0x20
[ 2571.480402]  kmem_cache_alloc+0x5b/0x310
[ 2571.481284]  create_object.isra.0+0x3a/0xa20
[ 2571.482229]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2571.483324]  kmem_cache_alloc+0x159/0x310
[ 2571.484233]  security_inode_alloc+0x34/0x160
[ 2571.485195]  inode_init_always+0xa4e/0xd10
[ 2571.486097]  alloc_inode+0x84/0x240
[ 2571.486864]  new_inode+0x23/0x250
[ 2571.487609]  debugfs_get_inode+0x1a/0x130
[ 2571.488490]  __debugfs_create_file+0x14e/0x530
[ 2571.489476]  ? blk_trace_remove+0x40/0x40
[ 2571.490355]  relay_create_buf_file+0xf6/0x180
[ 2571.491307]  relay_open_buf.part.0+0x7de/0xc00
[ 2571.492278]  relay_open+0x531/0xa10
[ 2571.493058]  do_blk_trace_setup+0x4cf/0xc10
[ 2571.493963]  ? _copy_from_user+0xfb/0x1b0
[ 2571.494855]  __blk_trace_setup+0xca/0x180
[ 2571.495720]  ? do_blk_trace_setup+0xc10/0xc10
[ 2571.496696]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2571.497839]  ? trace_hardirqs_on+0x5b/0x180
[ 2571.498737]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2571.499870]  blk_trace_setup+0x43/0x60
[ 2571.500691]  sg_ioctl_common+0x634/0x2570
[ 2571.501582]  ? do_vfs_ioctl+0x283/0x10d0
[ 2571.502434]  ? sg_write+0x120/0x120
[ 2571.503211]  ? generic_block_fiemap+0x60/0x60
[ 2571.504181]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2571.505298]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2571.506433]  ? trace_raw_output_preemptirq_template+0x12b/0x130
[ 2571.507710]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2571.508861]  ? selinux_file_ioctl+0xb6/0x270
[ 2571.509807]  ? sg_compat_ioctl+0x120/0x120
[ 2571.510707]  sg_ioctl+0x8f/0x120
[ 2571.511445]  __x64_sys_ioctl+0x19a/0x210
[ 2571.512319]  do_syscall_64+0x33/0x40
[ 2571.513119]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.514240] RIP: 0033:0x7fb64c457b19
[ 2571.515042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.518952] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2571.520586] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2571.522124] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2571.523620] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.525148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2571.526649] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2571.528192] CPU: 1 PID: 13204 Comm: syz-executor.5 Not tainted 5.10.206 #1
[ 2571.528986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.529918] Call Trace:
[ 2571.530230]  dump_stack+0x107/0x167
[ 2571.530641]  should_fail.cold+0x5/0xa
[ 2571.531067]  ? create_object.isra.0+0x3a/0xa20
[ 2571.531575]  should_failslab+0x5/0x20
[ 2571.531993]  kmem_cache_alloc+0x5b/0x310
[ 2571.532448]  create_object.isra.0+0x3a/0xa20
[ 2571.532928]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2571.533482]  kmem_cache_alloc_bulk+0x168/0x320
[ 2571.533993]  io_submit_sqes+0x6f76/0x85c0
[ 2571.534469]  ? __do_sys_io_uring_enter+0x6b5/0x1920
[ 2571.535014]  __do_sys_io_uring_enter+0x6b5/0x1920
[ 2571.535552]  ? lock_downgrade+0x6d0/0x6d0
[ 2571.536016]  ? find_held_lock+0x2c/0x110
[ 2571.536471]  ? io_submit_sqes+0x85c0/0x85c0
[ 2571.536958]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2571.537499]  ? wait_for_completion_io+0x270/0x270
[ 2571.538040]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2571.538554]  ? vfs_write+0x354/0xa70
[ 2571.538974]  ? fput_many+0x2f/0x1a0
[ 2571.539371]  ? ksys_write+0x1a9/0x260
[ 2571.539787]  ? __ia32_sys_read+0xb0/0xb0
[ 2571.540240]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2571.540804]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2571.541394]  do_syscall_64+0x33/0x40
[ 2571.541818]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.542380] RIP: 0033:0x7f1edfa23b19
[ 2571.542788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.544813] RSP: 002b:00007f1edcf99188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 2571.545664] RAX: ffffffffffffffda RBX: 00007f1edfb36f60 RCX: 00007f1edfa23b19
[ 2571.546458] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003
[ 2571.547246] RBP: 00007f1edcf991d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.548026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2571.548806] R13: 00007ffd53ee3cbf R14: 00007f1edcf99300 R15: 0000000000022000
[ 2571.554370] FAULT_INJECTION: forcing a failure.
[ 2571.554370] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.555672] CPU: 1 PID: 13191 Comm: syz-executor.1 Not tainted 5.10.206 #1
[ 2571.556459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.557391] Call Trace:
[ 2571.557690]  dump_stack+0x107/0x167
[ 2571.558099]  should_fail.cold+0x5/0xa
[ 2571.558528]  ? create_object.isra.0+0x3a/0xa20
[ 2571.559047]  should_failslab+0x5/0x20
[ 2571.559482]  kmem_cache_alloc+0x5b/0x310
[ 2571.559917]  create_object.isra.0+0x3a/0xa20
[ 2571.560418]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2571.560997]  __kmalloc+0x16e/0x390
[ 2571.561419]  kobject_get_path+0xc5/0x1f0
[ 2571.561877]  kobject_uevent_env+0x251/0xf90
[ 2571.562378]  __kobject_del+0x27c/0x320
[ 2571.562815]  kobject_put+0x215/0x270
[ 2571.563248]  net_rx_queue_update_kobjects+0x370/0x470
[ 2571.563836]  netdev_unregister_kobject+0x152/0x280
[ 2571.564398]  unregister_netdevice_many+0xbb7/0x1490
[ 2571.564961]  ? netdev_pick_tx+0xc70/0xc70
[ 2571.565444]  ? queue_delayed_work_on+0x85/0xe0
[ 2571.565932]  ? queue_delayed_work_on+0xb4/0xe0
[ 2571.566443]  ? queue_delayed_work_on+0x88/0xe0
[ 2571.566955]  unregister_netdevice_queue+0x201/0x2c0
[ 2571.567519]  ? unregister_netdevice_many+0x1490/0x1490
[ 2571.568105]  ? linkwatch_fire_event+0x63/0x190
[ 2571.568624]  __tun_detach+0xf92/0x1280
[ 2571.569078]  tun_chr_close+0xc4/0x250
[ 2571.569510]  __fput+0x285/0x980
[ 2571.569886]  ? __tun_detach+0x1280/0x1280
[ 2571.570357]  task_work_run+0xe2/0x1a0
[ 2571.570790]  exit_to_user_mode_prepare+0x186/0x190
[ 2571.571344]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2571.571885]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.572467] RIP: 0033:0x7ff4e0665b19
[ 2571.572887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.574850] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2571.575694] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2571.576490] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2571.577301] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.578055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2571.578855] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000
04:12:35 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x6000000}, 0x0)

[ 2571.597414] FAULT_INJECTION: forcing a failure.
[ 2571.597414] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.599045] CPU: 1 PID: 13200 Comm: syz-executor.4 Not tainted 5.10.206 #1
[ 2571.599809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.600676] Call Trace:
[ 2571.600970]  dump_stack+0x107/0x167
[ 2571.601397]  should_fail.cold+0x5/0xa
[ 2571.601834]  should_failslab+0x5/0x20
[ 2571.602264]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2571.602826]  ? netlink_trim+0x1ee/0x250
[ 2571.603280]  pskb_expand_head+0x15a/0x1040
[ 2571.603763]  netlink_trim+0x1ee/0x250
[ 2571.604194]  netlink_broadcast_filtered+0x60/0xdc0
[ 2571.604745]  ? rtmsg_ifinfo_build_skb+0x72/0x1a0
[ 2571.605258]  ? rtmsg_ifinfo_build_skb+0xd1/0x1a0
[ 2571.605792]  nlmsg_notify+0x94/0x290
[ 2571.606211]  rtmsg_ifinfo+0xf0/0x120
[ 2571.606633]  dev_close_many+0x23f/0x460
[ 2571.607076]  ? __dev_close_many+0x2f0/0x2f0
[ 2571.607551]  ? lock_downgrade+0x6d0/0x6d0
[ 2571.608028]  unregister_netdevice_many+0x349/0x1490
[ 2571.608594]  ? __queue_work+0x681/0xf40
[ 2571.609044]  ? netdev_pick_tx+0xc70/0xc70
[ 2571.609520]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2571.610102]  ? queue_delayed_work_on+0xb4/0xe0
[ 2571.610585]  ? trace_hardirqs_on+0x5b/0x180
[ 2571.611077]  unregister_netdevice_queue+0x201/0x2c0
[ 2571.611640]  ? unregister_netdevice_many+0x1490/0x1490
[ 2571.612233]  ? linkwatch_fire_event+0x63/0x190
[ 2571.612746]  __tun_detach+0xf92/0x1280
[ 2571.613202]  tun_chr_close+0xc4/0x250
[ 2571.613632]  __fput+0x285/0x980
[ 2571.614010]  ? __tun_detach+0x1280/0x1280
[ 2571.614482]  task_work_run+0xe2/0x1a0
[ 2571.614917]  exit_to_user_mode_prepare+0x186/0x190
[ 2571.615464]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2571.615997]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.616571] RIP: 0033:0x7f7565431b19
[ 2571.616985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.619060] RSP: 002b:00007f75629a7188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2571.619869] RAX: 0000000000000003 RBX: 00007f7565544f60 RCX: 00007f7565431b19
[ 2571.620667] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2571.621482] RBP: 00007f75629a71d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.622276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2571.623070] R13: 00007ffd4c14d77f R14: 00007f75629a7300 R15: 0000000000022000
04:12:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x300000000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:12:35 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x2, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:35 executing program 3:
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x408, 0x7}) (fail_nth: 77)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x426f00)
sendto$packet(r1, &(0x7f0000001240)="8a2cfa50ff54c020ca0a98d0585656b631dd08d972dcdd18602c1e33b0e70bcf85b0096ec4c626f137544d19073a08fbf5d9a0e78ae726cd2e99f384af68cfb33cc239ac321a9f7f6edfaef37245b9f9e8120583e1833491b9073ba34f2a33d1d024b25f5c2c800a23e220d37683c61e7a1e62bba9a50e1f49def89a2e508490dd150ef37a9b63ea605bb9e07c656e9d3aeff195d00446740ccb09f80d6c87f8de8f3bc45a170c9ea73fa7571d6fd670180bffc208dfbb1759e7bbb47e1f0f242fb73af2e09cb9dfe4d54406ac074a", 0xcf, 0x800, 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x12f142, 0x15c)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000140)={0x0, 0xffff})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000058c0)={@local}, 0x0)
ioctl$EVIOCGABS2F(r3, 0x8018456f, &(0x7f0000001180)=""/153)
openat(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', 0x140c0, 0x0)

[ 2571.671212] FAULT_INJECTION: forcing a failure.
[ 2571.671212] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.672748] CPU: 1 PID: 13213 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2571.673496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.674387] Call Trace:
[ 2571.674675]  dump_stack+0x107/0x167
[ 2571.675077]  should_fail.cold+0x5/0xa
[ 2571.675492]  ? tracepoint_add_func+0x35b/0xff0
[ 2571.675987]  should_failslab+0x5/0x20
[ 2571.676400]  __kmalloc+0x72/0x390
[ 2571.676785]  tracepoint_add_func+0x35b/0xff0
[ 2571.677282]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2571.677811]  ? blk_add_trace_rq_issue+0x50/0x50
[ 2571.678314]  tracepoint_probe_register+0xa1/0xf0
[ 2571.678825]  ? tracepoint_probe_register_prio+0xf0/0xf0
[ 2571.679395]  ? blk_add_trace_rq_issue+0x50/0x50
[ 2571.679905]  ? relay_open+0x69f/0xa10
[ 2571.680318]  blk_register_tracepoints+0x1b/0x3e0
[ 2571.680835]  do_blk_trace_setup+0x9db/0xc10
[ 2571.681301]  ? _copy_from_user+0xfb/0x1b0
[ 2571.681772]  __blk_trace_setup+0xca/0x180
[ 2571.682212]  ? do_blk_trace_setup+0xc10/0xc10
[ 2571.682711]  ? perf_trace_lock+0xac/0x490
[ 2571.683169]  blk_trace_setup+0x43/0x60
[ 2571.683608]  sg_ioctl_common+0x634/0x2570
[ 2571.684051]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2571.684633]  ? do_vfs_ioctl+0x283/0x10d0
[ 2571.685066]  ? sg_write+0x120/0x120
[ 2571.685488]  ? generic_block_fiemap+0x60/0x60
[ 2571.685968]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2571.686531]  ? selinux_file_ioctl+0xb6/0x270
[ 2571.686999]  ? sg_compat_ioctl+0x120/0x120
[ 2571.687470]  sg_ioctl+0x8f/0x120
[ 2571.687855]  __x64_sys_ioctl+0x19a/0x210
[ 2571.688316]  do_syscall_64+0x33/0x40
[ 2571.688736]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.689316] RIP: 0033:0x7fb64c457b19
[ 2571.689733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.691813] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2571.692674] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2571.693483] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2571.694284] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.695094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2571.695872] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2571.698181] ------------[ cut here ]------------
[ 2571.699177] WARNING: CPU: 1 PID: 13213 at kernel/trace/blktrace.c:1141 blk_register_tracepoints+0x309/0x3e0
[ 2571.700297] Modules linked in:
[ 2571.700732] CPU: 1 PID: 13213 Comm: syz-executor.3 Not tainted 5.10.206 #1
[ 2571.701549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.702504] RIP: 0010:blk_register_tracepoints+0x309/0x3e0
[ 2571.703164] Code: 48 c7 c7 00 c5 65 85 e8 95 b9 fb ff 31 ff 89 c3 89 c6 e8 0a 72 f9 ff 85 db 0f 85 c6 00 00 00 5b e9 ac 78 f9 ff e8 a7 78 f9 ff <0f> 0b e9 1e fd ff ff e8 9b 78 f9 ff 0f 0b e9 3f fd ff ff e8 8f 78
[ 2571.705181] RSP: 0018:ffff88801e1e7bc8 EFLAGS: 00010212
[ 2571.705811] RAX: 0000000000017752 RBX: 00000000fffffff4 RCX: ffffc900017e7000
[ 2571.706610] RDX: 0000000000040000 RSI: ffffffff814712b9 RDI: 0000000000000005
[ 2571.707420] RBP: ffff888009816b00 R08: 0000000000000001 R09: ffffffff85039c27
[ 2571.708240] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[ 2571.709060] R13: 0000000000000000 R14: ffff888009816b30 R15: 0000000000000000
[ 2571.709912] FS:  00007fb6499cd700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 2571.714293] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2571.714952] CR2: 0000555741d5f3b8 CR3: 00000000172b4000 CR4: 0000000000350ee0
[ 2571.715797] Call Trace:
[ 2571.716135]  ? __warn+0xe2/0x1f0
[ 2571.716553]  ? blk_register_tracepoints+0x309/0x3e0
[ 2571.717193]  ? report_bug+0x1c1/0x210
[ 2571.717693]  ? handle_bug+0x41/0x90
[ 2571.718500]  ? exc_invalid_op+0x14/0x50
[ 2571.719405]  ? asm_exc_invalid_op+0x12/0x20
[ 2571.720370]  ? blk_register_tracepoints+0x309/0x3e0
[ 2571.721473]  ? blk_register_tracepoints+0x309/0x3e0
[ 2571.722540]  ? blk_register_tracepoints+0x309/0x3e0
[ 2571.723616]  do_blk_trace_setup+0x9db/0xc10
[ 2571.724596]  ? _copy_from_user+0xfb/0x1b0
[ 2571.725577]  __blk_trace_setup+0xca/0x180
[ 2571.726549]  ? do_blk_trace_setup+0xc10/0xc10
[ 2571.727580]  ? perf_trace_lock+0xac/0x490
[ 2571.728529]  blk_trace_setup+0x43/0x60
[ 2571.729438]  sg_ioctl_common+0x634/0x2570
[ 2571.730060]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2571.730760]  ? do_vfs_ioctl+0x283/0x10d0
[ 2571.731298]  ? sg_write+0x120/0x120
[ 2571.731718]  ? generic_block_fiemap+0x60/0x60
[ 2571.732270]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2571.732938]  ? selinux_file_ioctl+0xb6/0x270
[ 2571.733459]  ? sg_compat_ioctl+0x120/0x120
[ 2571.733997]  sg_ioctl+0x8f/0x120
[ 2571.734408]  __x64_sys_ioctl+0x19a/0x210
[ 2571.734928]  do_syscall_64+0x33/0x40
[ 2571.735369]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.735986] RIP: 0033:0x7fb64c457b19
[ 2571.736439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.738535] RSP: 002b:00007fb6499cd188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2571.739505] RAX: ffffffffffffffda RBX: 00007fb64c56af60 RCX: 00007fb64c457b19
[ 2571.740336] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005
[ 2571.741167] RBP: 00007fb6499cd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2571.741995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2571.742815] R13: 00007ffdb8bab3bf R14: 00007fb6499cd300 R15: 0000000000022000
[ 2571.743735] irq event stamp: 3261
[ 2571.744182] hardirqs last  enabled at (3279): [<ffffffff84000cc2>] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2571.745302] hardirqs last disabled at (3300): [<ffffffff83e4679b>] sysvec_apic_timer_interrupt+0xb/0xa0
[ 2571.746383] softirqs last  enabled at (1698): [<ffffffff84001042>] asm_call_irq_on_stack+0x12/0x20
[ 2571.747421] softirqs last disabled at (1519): [<ffffffff84001042>] asm_call_irq_on_stack+0x12/0x20
[ 2571.748435] ---[ end trace 502424cf6e6b1633 ]---
04:12:35 executing program 6:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x7000000}, 0x0)

04:12:35 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x3000000000000}, 0x0)

04:12:35 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
ptrace$getsig(0x4202, 0x0, 0x3c, &(0x7f0000000540))
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB])
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000400))
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000040)='\x00', 0x1, 0x400000000000000}, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, r2, &(0x7f0000000240)="a75ea6d9666205d520bcecb9c8366064642a6b3eb9f53849bc2b83c88f23357ebf7cbc452238f824172e991c59a47a026f34b36302aa19d6710571b7926594dda198f218b7614e5cfde1baadf50b9ee6e179c88a6c3bfad7d47eea94477671d8438c2973b7e14ca74b2f312d1f7fdf9f9481a08784bdec59a4a04a8418be402426756f727b06eee55f", 0x89, 0x0, 0x0, 0x3}])

04:12:35 executing program 0:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r1=>0x0)
creat(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1)
io_submit(r1, 0x3, &(0x7f0000000340)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x2000, r0, &(0x7f0000000040)='\x00', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="8ce558489bc7a255365f9b57b922a781525a51742065be36844a7123c07f24e05fb840eb9b5946866cdfe82bc10e34834f8906b781dbcd4338f892654d6a7c3055945bc1d605d8b6cce4bb01166d0f244b472335f75e12c7b9904c20ccbc08818ed531ce442e86989e470707bd63dc0fd559da15a87c79a9a7cdf3938a11979c791fe38daf931b6a7add613b40a5f97df4f9934ffbae244a91f82d23e68dc9878e6ab42716ba00cb5fa9b1c3e800f0746e4fcb49", 0xb4, 0x10000, 0x0, 0x2}, &(0x7f0000000300)={0x3, 0x0, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x101, 0x0, 0x3}])

04:12:35 executing program 2:
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)={0x1c, 0x1b, 0x1, 0x0, 0x0, {0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="0da8c725"]}]}, 0x1c}, 0x1, 0x8000000000000}, 0x0)

04:12:36 executing program 1:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
flock(r1, 0x2)
io_uring_setup(0x7e2a, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x2, 0x101cf, 0x0, r1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6003, @fd_index=0xfffffffc, 0xa075, 0x0, 0x0, 0x2, 0x1, {0x0, r2}}, 0x1)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
dup3(r3, r0, 0x0) (fail_nth: 45)

[ 2571.929912] ------------[ cut here ]------------
[ 2571.930524] WARNING: CPU: 1 PID: 13230 at kernel/tracepoint.c:425 tracepoint_probe_unregister+0x776/0xd20
[ 2571.931582] Modules linked in:
[ 2571.931956] CPU: 1 PID: 13230 Comm: syz-executor.3 Tainted: G        W         5.10.206 #1
[ 2571.932850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2571.933743] RIP: 0010:tracepoint_probe_unregister+0x776/0xd20
[ 2571.934385] Code: ff ff be c0 0c 00 00 48 c7 c7 ff ff ff ff 89 c2 e8 9f cd 19 00 48 89 44 24 08 e9 58 fa ff ff 41 bc fe ff ff ff e8 ca b6 fd ff <0f> 0b e9 7b fd ff ff e8 be b6 fd ff 48 89 de 48 c7 c7 00 f0 ff ff
[ 2571.936368] RSP: 0018:ffff888048cdfcb0 EFLAGS: 00010216
[ 2571.936961] RAX: 000000000000fb15 RBX: 0000000000000000 RCX: ffffc90002ff3000
[ 2571.937763] RDX: 0000000000040000 RSI: ffffffff8142d496 RDI: 0000000000000005
[ 2571.938543] RBP: ffff888009816b00 R08: 0000000000000001 R09: ffffffff85039c27
[ 2571.939322] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000fffffffe
[ 2571.940136] R13: ffffffff81477b60 R14: 0000000000008000 R15: 0000000000001276
[ 2571.940966] FS:  00007fb6499ac700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 2571.941901] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2571.942549] CR2: 00007f7565513998 CR3: 00000000172b4000 CR4: 0000000000350ee0
[ 2571.943364] Call Trace:
[ 2571.943668]  ? __warn+0xe2/0x1f0
[ 2571.944062]  ? tracepoint_probe_unregister+0x776/0xd20
[ 2571.944656]  ? report_bug+0x1c1/0x210
[ 2571.945108]  ? handle_bug+0x41/0x90
[ 2571.945535]  ? exc_invalid_op+0x14/0x50
[ 2571.945993]  ? asm_exc_invalid_op+0x12/0x20
[ 2571.946473]  ? blk_add_trace_rq_issue+0x50/0x50
[ 2571.947012]  ? tracepoint_probe_unregister+0x776/0xd20
[ 2571.947598]  ? tracepoint_probe_unregister+0x776/0xd20
[ 2571.948204]  ? kfree+0xd7/0x340
[ 2571.948584]  blk_unregister_tracepoints+0x16a/0x180
[ 2571.949159]  __blk_trace_remove+0x1b0/0x1e0
[ 2571.949646]  blk_trace_remove+0x26/0x40
[ 2571.950113]  sg_ioctl_common+0xc8e/0x2570
[ 2571.950585]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2571.951172]  ? do_vfs_ioctl+0x283/0x10d0
[ 2571.951625]  ? sg_write+0x120/0x120
[ 2571.952045]  ? generic_block_fiemap+0x60/0x60
[ 2571.952555]  ? trace_event_raw_event_initcall_level+0x206/0x240
[ 2571.953258]  ? __switch_to_asm+0x34/0x60
[ 2571.953729]  ? __schedule+0x82c/0x1ea0
[ 2571.954196]  ? selinux_file_ioctl+0xb6/0x270
[ 2571.954700]  ? sg_compat_ioctl+0x120/0x120
[ 2571.955193]  sg_ioctl+0x8f/0x120
[ 2571.955579]  __x64_sys_ioctl+0x19a/0x210
[ 2571.956041]  do_syscall_64+0x33/0x40
[ 2571.956457]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2571.957056] RIP: 0033:0x7fb64c457b19
[ 2571.957478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2571.959545] RSP: 002b:00007fb6499ac188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2571.960411] RAX: ffffffffffffffda RBX: 00007fb64c56b020 RCX: 00007fb64c457b19
[ 2571.961255] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000005
[ 2571.962605] RBP: 00007fb64c4b1f6d R08: 0000000000000000 R09: 0000000000000000
[ 2571.962628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2571.962635] R13: 00007ffdb8bab3bf R14: 00007fb6499ac300 R15: 0000000000022000
[ 2571.962658] irq event stamp: 1889
[ 2571.962674] hardirqs last  enabled at (1895): [<ffffffff81299ee6>] vprintk_emit+0x486/0x4d0
[ 2571.962687] hardirqs last disabled at (1900): [<ffffffff81299e78>] vprintk_emit+0x418/0x4d0
[ 2571.962699] softirqs last  enabled at (1396): [<ffffffff84001042>] asm_call_irq_on_stack+0x12/0x20
[ 2571.962710] softirqs last disabled at (1339): [<ffffffff84001042>] asm_call_irq_on_stack+0x12/0x20
[ 2571.962716] ---[ end trace 502424cf6e6b1634 ]---
[ 2572.026467] device veth0_vlan entered promiscuous mode
[ 2572.032603] FAULT_INJECTION: forcing a failure.
[ 2572.032603] name failslab, interval 1, probability 0, space 0, times 0
[ 2572.034342] CPU: 1 PID: 13243 Comm: syz-executor.1 Tainted: G        W         5.10.206 #1
[ 2572.035230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2572.036108] Call Trace:
[ 2572.036403]  dump_stack+0x107/0x167
[ 2572.036801]  should_fail.cold+0x5/0xa
[ 2572.037235]  should_failslab+0x5/0x20
[ 2572.037640]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2572.038176]  ? alloc_uevent_skb+0x7b/0x210
[ 2572.038633]  __alloc_skb+0xb1/0x5b0
[ 2572.039022]  alloc_uevent_skb+0x7b/0x210
[ 2572.039455]  kobject_uevent_env+0xcb8/0xf90
[ 2572.039927]  __kobject_del+0x27c/0x320
[ 2572.040348]  kobject_put+0x215/0x270
[ 2572.040744]  net_rx_queue_update_kobjects+0x370/0x470
[ 2572.041323]  netdev_unregister_kobject+0x152/0x280
[ 2572.041849]  unregister_netdevice_many+0xbb7/0x1490
[ 2572.042388]  ? netdev_pick_tx+0xc70/0xc70
[ 2572.042870]  ? queue_delayed_work_on+0x85/0xe0
[ 2572.043387]  ? queue_delayed_work_on+0xb4/0xe0
[ 2572.043910]  ? queue_delayed_work_on+0x88/0xe0
[ 2572.044430]  unregister_netdevice_queue+0x201/0x2c0
[ 2572.044987]  ? unregister_netdevice_many+0x1490/0x1490
[ 2572.045558]  ? linkwatch_fire_event+0x63/0x190
[ 2572.046056]  __tun_detach+0xf92/0x1280
[ 2572.046478]  tun_chr_close+0xc4/0x250
[ 2572.046884]  __fput+0x285/0x980
[ 2572.047233]  ? __tun_detach+0x1280/0x1280
[ 2572.047675]  task_work_run+0xe2/0x1a0
[ 2572.048089]  exit_to_user_mode_prepare+0x186/0x190
[ 2572.048612]  syscall_exit_to_user_mode+0x38/0x1e0
[ 2572.049126]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2572.049690] RIP: 0033:0x7ff4e0665b19
[ 2572.050087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.052031] RSP: 002b:00007ff4ddbdb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[ 2572.052831] RAX: 0000000000000003 RBX: 00007ff4e0778f60 RCX: 00007ff4e0665b19
[ 2572.053592] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000009
[ 2572.054341] RBP: 00007ff4ddbdb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2572.055103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2572.055852] R13: 00007ffce1da37af R14: 00007ff4ddbdb300 R15: 0000000000022000

VM DIAGNOSIS:
04:12:35  Registers:
info registers vcpu 0
RAX=0000068a7534e464 RBX=0000000000000000 RCX=00000000000006e0 RDX=000000000000068a
RSI=ffff88806ce27980 RDI=000000000000027b RBP=ffff88806ce27980 RSP=ffff88806ce09a60
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=000000000000027b R13=0000000000000000 R14=ffff88806ce2eab8 R15=0000000000000001
RIP=ffffffff810dfef1 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f807f741700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe4700000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d623000 CR3=000000000f4cc000 CR4=00350ef0
DR0=07fe000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822cb781 RDI=ffffffff879e8240 RBP=ffffffff879e8200 RSP=ffff88801e1e75d0
R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001
R12=0000000000000030 R13=0000000000000030 R14=ffffffff879e8200 R15=dffffc0000000000
RIP=ffffffff822cb7d8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb6499cd700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe6900000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555741d5f3b8 CR3=00000000172b4000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000