00e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000002, 0x10010, r2, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:34 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000180)={0x0, 0x81000, 0x8, 0xfffffffe}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6530200020000a5467c21fd432a7f89a134b9473ad5f0160a2d363350a8651f6e60407ae56b7a2c48b0b0387e347877f10deebe8ab217929f7bd0774463e73b1fa2f5edc71daf047a7ff3752a1389908360900df5024f744ee83d6a5dd76b7da0f4cf1808c0ec7662cd897d5653a21f7528d690f8ba7f7643f695b82e63999ddbf312a6cb1f01723fd6272c578a44d7386c6252863d62b1a01a9030bb0caa773a90b62f5cb64ec0ba9d1e0255871a01438fe8a1fecf3e291b882ca0bb96786cd5754300f8f74769a762b5a34a65b50b7f01a13687a8faaae80efc3824df307718c597eef293ad942b3f0a26c23e332b194ca3bb8f715f309d4dd04da0f0d38d4bb3154b8936d5152775c4dac5331fa925e648c728e3356be382df9fca4dfaa5bbbc443b7c7a56a12eab9711315e453cf1df024b12a48e3e0f4773642e42d083175362af5e5306e3f001377d5420bc462"], 0xf0)
r3 = inotify_init()
dup3(r0, r3, 0x0)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x40000, 0x0)
io_uring_enter(r4, 0x4ad8, 0x281f, 0x2, &(0x7f0000000540)={[0x401]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1692.502784] FAULT_INJECTION: forcing a failure.
[ 1692.502784] name failslab, interval 1, probability 0, space 0, times 0
[ 1692.510330] CPU: 1 PID: 15939 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1692.511817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1692.514211] Call Trace:
[ 1692.514796]  dump_stack+0x107/0x163
[ 1692.515564]  should_fail.cold+0x5/0xa
[ 1692.516373]  should_failslab+0x5/0x10
[ 1692.517175]  __kmalloc_track_caller+0x79/0x3c0
[ 1692.518131]  ? kasprintf+0xbb/0xf0
[ 1692.518887]  kvasprintf+0xb5/0x150
[ 1692.519644]  ? bust_spinlocks+0xe0/0xe0
[ 1692.520484]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1692.521582]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1692.522748]  ? trace_hardirqs_on+0x5b/0x180
[ 1692.523671]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1692.524804]  kasprintf+0xbb/0xf0
[ 1692.525525]  ? kvasprintf_const+0x190/0x190
[ 1692.526446]  alloc_bprm+0x10f/0x8e0
[ 1692.527232]  ? do_execveat_common+0x9b/0x8c0
[ 1692.528155]  ? do_execveat_common+0xad/0x8c0
[ 1692.529095]  do_execveat_common+0x270/0x8c0
[ 1692.530017]  ? strncpy_from_user+0x9e/0x460
[ 1692.530945]  ? bprm_execve+0x1b00/0x1b00
[ 1692.531831]  __x64_sys_execveat+0xed/0x130
[ 1692.532739]  do_syscall_64+0x33/0x40
[ 1692.533535]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1692.534650] RIP: 0033:0x7f48cbaccb19
[ 1692.535447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1692.539396] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1692.541026] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1692.542520] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1692.544020] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1692.545514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1692.547059] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1692.646513] FAULT_INJECTION: forcing a failure.
[ 1692.646513] name failslab, interval 1, probability 0, space 0, times 0
[ 1692.649047] CPU: 0 PID: 15944 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1692.650522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1692.652933] Call Trace:
[ 1692.653493]  dump_stack+0x107/0x163
[ 1692.654263]  should_fail.cold+0x5/0xa
[ 1692.655078]  ? create_object.isra.0+0x3a/0xa20
[ 1692.656049]  should_failslab+0x5/0x10
[ 1692.656855]  kmem_cache_alloc+0x5b/0x350
[ 1692.657734]  create_object.isra.0+0x3a/0xa20
[ 1692.658683]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1692.659760]  __kmalloc_track_caller+0x177/0x3c0
[ 1692.660736]  ? kasprintf+0xbb/0xf0
[ 1692.661492]  kvasprintf+0xb5/0x150
[ 1692.662238]  ? bust_spinlocks+0xe0/0xe0
[ 1692.663089]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1692.664195]  ? irqentry_enter+0x26/0x50
[ 1692.665052]  kasprintf+0xbb/0xf0
[ 1692.665764]  ? kvasprintf_const+0x190/0x190
[ 1692.666684]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1692.667838]  ? alloc_bprm+0x62/0x8e0
[ 1692.668640]  alloc_bprm+0x10f/0x8e0
[ 1692.669407]  ? alloc_bprm+0x1/0x8e0
[ 1692.670186]  do_execveat_common+0x270/0x8c0
[ 1692.671119]  ? strncpy_from_user+0x9e/0x460
[ 1692.672038]  ? bprm_execve+0x1b00/0x1b00
[ 1692.673004]  __x64_sys_execveat+0xed/0x130
[ 1692.674000]  do_syscall_64+0x33/0x40
[ 1692.674811]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1692.675896] RIP: 0033:0x7f843b55cb19
[ 1692.676692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1692.680599] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1692.682220] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1692.683754] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1692.685276] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1692.686813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1692.688341] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:51:46 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 8)

17:51:46 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000002, 0x12, r0, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r5}}, 0x5)
ftruncate(0xffffffffffffffff, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r8, 0x4)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r8, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r6, r10, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index=0x5, 0x0, 0x0, 0x7f, 0x1, 0x1, {0x0, r5, r3}}, 0xf40a)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:46 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x50, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000000)=@IORING_OP_NOP={0x0, 0x1}, 0x21)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:46 executing program 3:
r0 = syz_io_uring_setup(0x3f1c, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x269}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x3, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f00000001c0)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r0, 0x7, 0x0, 0x101, 0x0, 0x1}, 0x7f)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xa, 0x11, r3, 0x0)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xb, 0x10, r0, 0x10000000)
r10 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0xa, 0x0, r11)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r11}}, 0xff)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:46 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
r7 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r6, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = accept(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r8, &(0x7f0000000500)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r9, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=@xdp, 0x80, &(0x7f0000000400)=[{&(0x7f00000003c0)}], 0x1, &(0x7f0000000440)=""/75, 0x4b}, 0x0, 0x100, 0x0, {0x2, r10}}, 0x7)
r11 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r12)
r13 = syz_mount_image$nfs4(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0x9, 0x3, &(0x7f0000000780)=[{&(0x7f0000000640)="3d3848e2f49d48bd61831d2b93a83137b865810c0b367ce590af", 0x1a, 0x9236}, {&(0x7f0000000680)="1ca8ce855b1d", 0x6, 0xffffffff00000001}, {&(0x7f00000006c0)="ccdbf111a1628d7d38e2211c49db78bae6d1a664ce8ff2092d5b4c85f5a1cf4f940b90b459780fa4bcf4a6ca78d8881542dae83ca2b4870a78f268d57ecf369a9ef42680f74a528da72160bc504bcaf652b1a909251676242d1aa35895e9214d91783a7bfd4a44ef81599f343fb7cf95fda49800e4f8671d3c90634372d07d0b8d61fff75fc5324e32b1df59dac819add4171d5cec9f0740282ecfd6ce82ea85884e8a14", 0xa4, 0x10000}], 0x1478, &(0x7f0000000800)={[{'/+'}], [{@subj_role={'subj_role', 0x3d, ')\xcf\xbd%*)^@-'}}]})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x7f, &(0x7f0000000880)=[r11, r13, 0xffffffffffffffff, r7, 0xffffffffffffffff, r7, 0xffffffffffffffff], 0x7}, 0x3)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:46 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x7400000000000000)

17:51:46 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 7)

17:51:46 executing program 6:
shmctl$IPC_INFO(0xffffffffffffffff, 0x3, &(0x7f0000000240)=""/156)
r0 = syz_io_uring_setup(0x6c2a, &(0x7f0000000080)={0x0, 0x800, 0x8, 0x0, 0x23c}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
shmctl$IPC_RMID(0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000001640)=@IORING_OP_WRITE_FIXED={0x5, 0x6, 0x2000, @fd_index=0x8, 0x1000, 0x800000, 0x81, 0x9, 0x0, {0x2}}, 0x9)
recvmsg(r5, &(0x7f0000001540)={&(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/209, 0xd1}, {&(0x7f0000000000)=""/17, 0x11}, {&(0x7f0000000480)=""/81, 0x51}], 0x4, &(0x7f0000000540)=""/4096, 0x1000}, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000001580)={{0x1, 0x1, 0x18, <r6=>r3, {0x7}}, './file0\x00'})
io_uring_enter(r6, 0x40d3, 0x97fb, 0x3, &(0x7f00000015c0)={[0x8]}, 0x8)

[ 1705.265553] FAULT_INJECTION: forcing a failure.
[ 1705.265553] name failslab, interval 1, probability 0, space 0, times 0
[ 1705.266963] CPU: 1 PID: 16043 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1705.267828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1705.269109] Call Trace:
[ 1705.269443]  dump_stack+0x107/0x163
[ 1705.269896]  should_fail.cold+0x5/0xa
[ 1705.270364]  ? mm_alloc+0x19/0xc0
[ 1705.270797]  should_failslab+0x5/0x10
[ 1705.271266]  kmem_cache_alloc+0x5b/0x350
[ 1705.271763]  mm_alloc+0x19/0xc0
[ 1705.272170]  alloc_bprm+0x1cb/0x8e0
[ 1705.272611]  ? alloc_bprm+0x1/0x8e0
[ 1705.273058]  do_execveat_common+0x270/0x8c0
[ 1705.273582]  ? strncpy_from_user+0x9e/0x460
[ 1705.274107]  ? bprm_execve+0x1b00/0x1b00
[ 1705.274612]  __x64_sys_execveat+0xed/0x130
[ 1705.275146]  do_syscall_64+0x33/0x40
[ 1705.275595]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1705.276224] RIP: 0033:0x7f843b55cb19
[ 1705.276680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1705.278952] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1705.279880] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1705.280751] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1705.281630] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1705.282498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1705.283378] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1705.290657] FAULT_INJECTION: forcing a failure.
[ 1705.290657] name failslab, interval 1, probability 0, space 0, times 0
[ 1705.292417] CPU: 1 PID: 16048 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1705.293258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1705.294644] Call Trace:
[ 1705.294976]  dump_stack+0x107/0x163
[ 1705.295426]  should_fail.cold+0x5/0xa
[ 1705.295894]  should_failslab+0x5/0x10
[ 1705.296359]  __kmalloc_track_caller+0x79/0x3c0
[ 1705.296918]  ? kasprintf+0xbb/0xf0
[ 1705.297351]  kvasprintf+0xb5/0x150
[ 1705.297778]  ? bust_spinlocks+0xe0/0xe0
[ 1705.298266]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1705.298923]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1705.299584]  ? trace_hardirqs_on+0x5b/0x180
[ 1705.300109]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1705.300771]  kasprintf+0xbb/0xf0
[ 1705.301181]  ? kvasprintf_const+0x190/0x190
[ 1705.301712]  alloc_bprm+0x10f/0x8e0
[ 1705.302149]  ? do_execveat_common+0xf0/0x8c0
[ 1705.302697]  do_execveat_common+0x270/0x8c0
[ 1705.303237]  ? strncpy_from_user+0x9e/0x460
[ 1705.303757]  ? bprm_execve+0x1b00/0x1b00
[ 1705.304263]  __x64_sys_execveat+0xed/0x130
[ 1705.304782]  do_syscall_64+0x33/0x40
[ 1705.305237]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1705.305861] RIP: 0033:0x7f48cbaccb19
[ 1705.306317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1705.308599] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1705.309521] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1705.310393] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1705.311274] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1705.312149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1705.313017] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:51:46 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x100010, r0, 0x9d84000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1705.345153] ======================================================
[ 1705.345153] WARNING: the mand mount option is being deprecated and
[ 1705.345153]          will be removed in v5.15!
[ 1705.345153] ======================================================
17:51:47 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 9)

17:51:47 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 8)

17:51:47 executing program 1:
r0 = syz_io_uring_setup(0x4368, &(0x7f0000000080)={0x0, 0x9f37}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:47 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x7a00000000000000)

17:51:47 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5641, &(0x7f0000000180)={0x0, 0x8c55, 0x2, 0x1, 0x115, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r3=>0x0)
syz_io_uring_submit(r1, r3, &(0x7f00000002c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index=0x1, 0x0, 0x0, 0x9, 0x1, 0x0, {0x0, 0x0, r2}}, 0x4)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000340)="1c265ab87d4b491aac79d44e93854f24a0362bf8b5621b03e8a450fd24bdbfd7cd2ff0688abce579ec494dcd72fab7f8025c83697931d9541851673f771d6515c3e6e541f25faaab67b818f3d8c4b6ffafded5c465072e20208e1f2b065bbf1e81ad92ef62b0dba1ed2b4973462cefb74a35905f85c8dfc33cfc22fbedff569a7657dc15a2be8def2bd538c03cef37fccd7c9a00533663b0dc99453fa03ceeaaa23bfe85a4883ccbe2338013b544be155b9c65dd0f7f871e260f2542f25640435b64ff1adbaa4a3a2d6bade4f2e2fd708ffbd1ca0adb479593453f3e3b525c29bcb9e3d15a60ab63967ef7652ea5ebcfb57734418c58", 0xf6}], 0x1, 0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000300)='fdinfo/3\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r6, 0x40286608, &(0x7f0000000100)={0x8000, 0x4, 0x8b, 0x3f, 0x1, 0x91})

17:51:47 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x18}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:51:47 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x75fc, 0x5578, 0x0, &(0x7f0000000240)={[0x80]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)={0x400, 0x21, 0xc}, 0x18)
syz_io_uring_submit(r4, r8, &(0x7f00000001c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x4004, @fd=r9, 0x1f, 0x0, 0x0, 0x10, 0x0, {0x6}}, 0x3)

[ 1705.632539] FAULT_INJECTION: forcing a failure.
[ 1705.632539] name failslab, interval 1, probability 0, space 0, times 0
[ 1705.635230] CPU: 0 PID: 16134 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1705.636813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1705.639431] Call Trace:
[ 1705.640035]  dump_stack+0x107/0x163
[ 1705.640867]  should_fail.cold+0x5/0xa
[ 1705.641735]  ? mm_alloc+0x19/0xc0
[ 1705.642528]  should_failslab+0x5/0x10
[ 1705.643401]  kmem_cache_alloc+0x5b/0x350
[ 1705.644332]  mm_alloc+0x19/0xc0
17:51:47 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xf225529cbc0be458, 0x0, 0xffffffffffffff9c, &(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x4, 0x800, 0x1}, 0x3)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1705.645085]  alloc_bprm+0x1cb/0x8e0
[ 1705.646106]  do_execveat_common+0x270/0x8c0
[ 1705.647108]  ? strncpy_from_user+0x9e/0x460
[ 1705.648089]  ? bprm_execve+0x1b00/0x1b00
[ 1705.649026]  __x64_sys_execveat+0xed/0x130
[ 1705.649997]  do_syscall_64+0x33/0x40
[ 1705.650862]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1705.652032] RIP: 0033:0x7f48cbaccb19
[ 1705.652890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1705.657121] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1705.658903] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1705.660536] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1705.662170] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1705.663807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1705.665441] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:51:47 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
getsockopt$bt_hci(r3, 0x0, 0x3, &(0x7f0000000000)=""/17, &(0x7f0000000180)=0x11)

[ 1705.873531] FAULT_INJECTION: forcing a failure.
[ 1705.873531] name failslab, interval 1, probability 0, space 0, times 0
[ 1705.876847] CPU: 0 PID: 16110 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1705.878426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1705.881096] Call Trace:
[ 1705.881703]  dump_stack+0x107/0x163
[ 1705.882536]  should_fail.cold+0x5/0xa
[ 1705.883414]  ? create_object.isra.0+0x3a/0xa20
[ 1705.884457]  should_failslab+0x5/0x10
[ 1705.885326]  kmem_cache_alloc+0x5b/0x350
[ 1705.886256]  create_object.isra.0+0x3a/0xa20
[ 1705.887280]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1705.888441]  kmem_cache_alloc+0x159/0x350
[ 1705.889387]  mm_alloc+0x19/0xc0
[ 1705.890132]  alloc_bprm+0x1cb/0x8e0
[ 1705.890988]  ? irqentry_enter+0x26/0x50
[ 1705.891965]  do_execveat_common+0x270/0x8c0
[ 1705.892948]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1705.894276]  ? bprm_execve+0x1b00/0x1b00
[ 1705.895216]  __x64_sys_execveat+0xed/0x130
[ 1705.896196]  do_syscall_64+0x33/0x40
[ 1705.897047]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1705.898219] RIP: 0033:0x7f843b55cb19
[ 1705.899076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1705.903289] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1705.905022] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1705.906660] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1705.908303] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1705.909924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1705.911557] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:52:00 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 9)

17:52:00 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0xffffff7f00000000)

17:52:00 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 10)

17:52:00 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r4, r1, &(0x7f0000001700)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x4004, @fd_index, 0x4, &(0x7f0000001640)=[{&(0x7f0000000180)=""/92, 0x5c}, {&(0x7f0000000240)=""/100, 0x64}, {&(0x7f00000002c0)=""/80, 0x50}, {&(0x7f0000000000)=""/42, 0x2a}, {&(0x7f0000000340)=""/210, 0xd2}, {&(0x7f0000000440)=""/82, 0x52}, {&(0x7f00000004c0)=""/105, 0x69}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/112, 0x70}, {&(0x7f00000015c0)=""/99, 0x63}], 0xa, 0x2, 0x1, {0x0, r7}}, 0x1ff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:00 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r3, 0x26e8, 0xa3c3, 0x3, &(0x7f0000000000)={[0x1000]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:00 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
dup2(r0, 0xffffffffffffffff)

17:52:00 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_setup(0xf07, &(0x7f00000002c0)={0x0, 0x977c, 0x0, 0x2, 0x5b}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r6=>0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/126, 0x7e}, {&(0x7f0000000440)=""/131, 0x83}, {&(0x7f0000000500)=""/163, 0xa3}], 0x3, &(0x7f0000000600)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
r8 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r9)
syz_io_uring_submit(r4, r6, &(0x7f0000000680)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, r7, 0x0, r2, 0x2, 0x0, 0x1, {0x0, r9}}, 0x1)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r11 = accept$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000000)=0x6e)
copy_file_range(r11, &(0x7f0000000240)=0x4, r2, &(0x7f0000000280)=0x400, 0x0, 0x0)

17:52:00 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4f58, &(0x7f0000000180)={0x0, 0xbf5e, 0x7, 0x0, 0x15b, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1, r4}}, 0x8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:00 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x4, 0x4000010, r0, 0x10000000)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x7000)=nil, 0x7000, 0x3, 0x10010, r0, 0x8000000)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:00 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000240)={{0x0, 0x80000000, 0xffff, 0x2b39, 0x100000001, 0x8, 0x1000, 0x6, 0x2, 0x8001, 0x8, 0x2, 0x4, 0x80, 0x8}, 0x18, [0x0, 0x0, 0x0]})

17:52:00 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0xffffffff00000000)

17:52:00 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1718.664623] FAULT_INJECTION: forcing a failure.
[ 1718.664623] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1718.667420] CPU: 0 PID: 16199 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1718.668901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1718.671382] Call Trace:
[ 1718.671953]  dump_stack+0x107/0x163
[ 1718.672737]  should_fail.cold+0x5/0xa
[ 1718.673561]  __alloc_pages_nodemask+0x182/0x680
[ 1718.674559]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1718.675705]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1718.677001]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1718.678196]  alloc_pages_current+0x187/0x280
[ 1718.679165]  __get_free_pages+0xc/0xa0
[ 1718.680027]  pgd_alloc+0x84/0x4e0
[ 1718.680778]  ? pgd_page_get_mm+0x40/0x40
[ 1718.681667]  mm_init+0x670/0xab0
[ 1718.682397]  mm_alloc+0x99/0xc0
[ 1718.683122]  alloc_bprm+0x1cb/0x8e0
[ 1718.683906]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1718.685068]  do_execveat_common+0x270/0x8c0
[ 1718.685988]  ? bprm_execve+0x1b00/0x1b00
[ 1718.686886]  __x64_sys_execveat+0xed/0x130
[ 1718.687808]  do_syscall_64+0x33/0x40
[ 1718.688611]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1718.689715] RIP: 0033:0x7f843b55cb19
[ 1718.690531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1718.694486] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1718.696128] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1718.697331] FAULT_INJECTION: forcing a failure.
[ 1718.697331] name failslab, interval 1, probability 0, space 0, times 0
[ 1718.697658] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1718.697668] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1718.697677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1718.697687] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1718.710398] CPU: 1 PID: 16215 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1718.711898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1718.714328] Call Trace:
[ 1718.714894]  dump_stack+0x107/0x163
[ 1718.715684]  should_fail.cold+0x5/0xa
[ 1718.716485]  ? create_object.isra.0+0x3a/0xa20
[ 1718.717477]  should_failslab+0x5/0x10
[ 1718.718292]  kmem_cache_alloc+0x5b/0x350
[ 1718.719197]  create_object.isra.0+0x3a/0xa20
[ 1718.720139]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1718.721223]  kmem_cache_alloc+0x159/0x350
[ 1718.722114]  mm_alloc+0x19/0xc0
[ 1718.722817]  alloc_bprm+0x1cb/0x8e0
[ 1718.723614]  do_execveat_common+0x270/0x8c0
[ 1718.724542]  ? strncpy_from_user+0x9e/0x460
[ 1718.725465]  ? bprm_execve+0x1b00/0x1b00
[ 1718.726355]  __x64_sys_execveat+0xed/0x130
[ 1718.727289]  do_syscall_64+0x33/0x40
[ 1718.728089]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1718.729193] RIP: 0033:0x7f48cbaccb19
[ 1718.729995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1718.733990] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1718.735644] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1718.737189] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1718.738735] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1718.740289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1718.741832] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:52:12 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 10)

17:52:12 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000000)=0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x5e11, &(0x7f0000000180)={0x0, 0x99cf, 0x10, 0x2, 0x91, 0x0, r2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x3, &(0x7f00000002c0)={0x0, 0x3938700}, 0x1, 0x1, 0x0, {0x0, r4}}, 0x5)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r6 = syz_open_dev$mouse(&(0x7f0000000000), 0x10000, 0x101800)
mmap$IORING_OFF_SQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x200000a, 0x2010, r6, 0x0)

17:52:13 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r2, 0x1e36, 0xaba0, 0x3, &(0x7f00000001c0)={[0x3fd4]}, 0x8)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x4000010, r0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000180)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2007, @fd_index=0x5, 0x10000, &(0x7f0000000000)=""/53, 0x35, 0x4, 0x0, {0x0, r5}}, 0x5)

17:52:13 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0x2001)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r0}, './file1\x00'})
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000001c0)=[r2, r3, r4, r0], 0x4)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 11)

17:52:13 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0xffffffffffffffff)

17:52:13 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = socket$inet6_icmp(0xa, 0x2, 0x3a)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r3}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x4f3c, &(0x7f0000000180)={0x0, 0x6f73, 0x4, 0x3, 0x26d, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000002980)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r5, 0x0, &(0x7f0000002940)={0x0, 0x0, &(0x7f00000023c0)=[{&(0x7f0000000280)="6b1ef15ba18e29d972c6a1918cbe410345f870e42a88c421c3edb86371b58140150ef6a1ea908cb97e7ec57accf118e4f2468cc4595bf49b98c1b3f9711d258ebe5839b5b93d3418f8f91777bf99ad8911a1f3db4cd198678af9dc1f10376c21ffe6aeab0ab38adbc7939fe7de30f4b49d3d97892a64664dea1eee162736c3a761509afe", 0x84}, {&(0x7f0000000340)="7b80c194217e427cd4af3dd957122aaac57b4a47821cc785ddce9eff5c4ce7a3a705e4659de5cb02112a59a5e3ee005eb9a2ae3d5c04c93f6a45f10bff1bc0a23a00fa8974f01dbbd32a3f6f77", 0x4d}, {&(0x7f00000003c0)="f9903753b39bac57cfd20578a3395b35529360c2e768500a1fed258bdc0c42c9098d034bdbcb6fac08527737ab3cf1037930bb81f9f6efcbf1c1e9fa38ca0adf1e608026035762a97356e65c1215eab3b3db21470f0e57711da9fd9757370398ba968b1d40fbc77ce26570a9289a98e5f7abc15d21d7d59c15f9c8be9f8da6bd35670a7d8ffd91f0e847e333a37ce99529041d7dd5678b744fd10213b7fa8be7a37bc4c587330e87ac1921fbcf752065f2669f75dc8b423187ebace68b8a4eebfac7909fcbe1d69c1fac86e124cd14ddee1316e8ea5742bb13a4ef339f4d9bf5b2e7a067f42e901a71c2f3651c4c6b1f228ba7b9a0a08bfc3547e140a7ba2fc6b3fd7fcfa5392b5c07bdab5ec90787371fe1958e288ea9be98c9f2c7e028a20e3e31c0dd349db7ff12c63e6b73e6f1069638f298a0213911830442f5909aed4c0986ec4de426d7d3f7c5f0814f126570175f8f35d9f7c92039d896c7cc2b063923c11399bcac8914aca8178378f0b9eabe162df14e11ce529156b9ea3991e5240b0a71bde9f6f6590734ea245f2db67f30fc089c0a4d3e9536e0b8c85e2b410a5816bc80ef8be9cc8a5ec8a3fd4886456622413f92784bf27af2a6e5542a6abcfeb41998e6fab0d1efe024629fc9be66e4f4df085f658f5fadc1a0622df5657c67e8ef35f821c364bafa539b3e53d776bd46878746252245b8ae597d9081b2b80a4179bde0d764335d85e2df593007aa477591a14de7b6ff0b44960271f4b24cb2692918aaf014868c37c94e13c7cc491423965ec200a0c82a6b6b22597344aba845764e9c6961a457750f4111503d284c040f613e01e2abfe3635680d1bb05e014eb242d0864f99f23f513a00286159cc8484fb020cb7a802d133f38fbbbac378c16109bcbebed7a4098e64272a955e55c78b6ab3d9c1e81bf02f23ee690dd5e0b1230bf36cf6b2eb1c3dcbde48dff4e67a5dcb8f46fc067588f520db01e041dcf140823b59f52e57eb9cce80ec106167bf123a6fbc96c6cab79ec4ef4687f4cdef716e05f05577a790f543de168a8e818565c59c84961336bd0d0b95ca3a7bf2820b0eba54accf5ed9a928f3b1e6a51faab656482208ec1e0a6b6e6aa71c0271d7145d822483d6ab9226bbcf86d1a060c952136fedab282b7c6b699baebd7f31b48a8a8d531a118a1dd0886ec59367364ffe16ef286596ec38b5b7fc4017f025ccd3b59a695ee968a995fe6f9552cf4096dddbd17a44e863e5073163a2369f8a8c61b998b90cc96e413ca6d981c250fb6a5a012af6cf42dbe7ff1eff14779fe5411570918aadb8ad0b727e3554da253470e6fc03bd8d308b82e40af6e48202b6f9131a78185aa8ae8d0b6e1094ec9f570ae28e9309ac878511d5d56065111c6bd87cfc3066169efbb5dcfdf2a6c6b7f1d58b7cbb44858c585f59536f2021e3a53e05545085512071fe610b531c10a09d33c29e87064627c204befe535e6de55a39429c51f9f3f7cc436c0b37280e01f650df73c3128330974bf453b1350239894ffe4b34335166227f17a9bc73257bc6b93cd0afaf99d2bfe49b6109217e9ea8b00ddeee535bc31bce180fe703ea5e66b76e219c50696a2dffab06f322e205396aaf87cce601d11f2c341af92fec4bc221eb24b939823634d963961a1e2c6b9672b9f66a8b9b27b7ea28106f3c3dc4a3f5a254727335abefe3747f9ae6b3dc74e7b3b78252567f6fdcbde432583d4e873af5152730c05d7ae2819b29cb576461b9139f4c52e051901376fd00f5c467e3f74330d5f24e318f2ad8ca67ff7ba66814e17ee9b2f671a8962a379c4e14075d020a959b4d8cc6a8661e3d0d345dec92ddb5fdf87c349e125ed33feb63c0d5a56c74b259e8c0beaf6a085b52be1ddbf068bfe564188a2ac18c8fd36a3bc484beee159bcfca468724308aad74f6ee17fed2c7f7245c7ff7ac690c8e12f0c79d485e075600f63f79cd873c82b604065c367b15f045202615fd53ba7b8cc4c242ce8b7e1e74780e2c4d8b96d0c9b7af1d004dab7878d34a0c540562d25bae8563bb9489a81fd022875f6da12451872d629077aa3dbed05c9e5484e2e315edb6f47351c38431c73aba65760d208769f7c8dbe9f48ece33f92f9eb7885a1ceb1b53cfbbba3e961c94bc38903275117795aaa8f868d4ba83aafc3d01a90e1e4124b0164f11e43c76e381f38ca0211c1e51ca01711c82adf6f53a54b4d42fd2f9d3b5f6746c4906a404b9afe83333a4fd7f2cad2168a5186f86bc738c67fa0218760fb17be57b29e9a5e28a1be0fff38c1f69c2c443662120ebb886853cddc984978b4ac0704ffd6b8341fc6b675fed7fd521d78afb584ff4ee0bbd3a9374abc405fdad15efd803c951be61f2a76bb08efe4b91cdd6b252c6de30ab65355243ef3275d73c1d5b2811a609f1ef666bf3d94c2e13c87277fb7a933d56777c89283ce6931aff99478e273b8a9e008ad506f7f2ef5e22d88f6a33995ae79991075073b4bae9c60dadc750692e09024da3784857b1c588b225ca31434ca761a0a2b14e3c389f4b4dda47f02f99dfb18144f4d11e9997ca06943792f6525eb071d379596cd805f68643b26e53701cd54ffefa295e346e0914b99be7f594cd26e5342969646324f1513e9767a015e74c56cffa7dbede2393face2d205a4e79b4527d4e08937d6ccc59dfb3ade7941fa4c349112770296800bd68cc3209959fcfaa52c3ad557a8d4b3d544110b29d76c596e533c8a0f6666cfb53f18df4134bf1c612a77413bc3aa768a67d994e02613612a949310630479e3342b7a7095273fd7e785bba77948d1b1e736d3bf461c593fa338e2f981c0e2fefdf67b43c38de587b169ac839c17bdc414d07795fe7e67d6a5bbeff91b408953f8681115dbd336bd4a851feac12464f30d1f5ecb9a3ba4886f22adeb1cdb049890baba48f831dc1959631aac591ea5a4e385b724d5bc96cd1f83c712248c1f9845576ac9df227a5306bea167d2def2947aad52fa32e24009bf7acbe130d5b8cc50cc14263dd16915a75111f2dd52d3577364410a24edb1ad66e9ca0d294ee894e07d5a9e83b48f3d49543e5dc679ed449c30cd0ecb97dd3034f5042d9029cf6f156c4c7cc2629debf98fea9d752714be7253d966f7e2e2cf0ba9ec7ddd5817e0d89c66951d4889d13dc2de1bd51f0b7ee31ad3ae905bdda5d6bf831dc4e1f89736e685b46b19b5908a5f8942c4532fd08f2a8b9739e2a86c42ba59814cb8e518f9313e6a90b4c1bd0ad4bf07468f125f06798281b4eac9ad6c7829d2dbfdab9c62c4b88290f1b36d2ae2e1072cbcc4a911732e62e2d84a8979b8d249924b3c2e9b96bf5cc34f55b73216cf02c0b0ecfa64ba6e0dba7f47548a8b441c843b6a14e11db197c4b8fc5a24d46e8f7b358a8670cfdf1dc438e97d54e472fb8c49f34c9aec93a6300ff4ced4fc80978d78b75cc01752819051198f2cebfa1194b70b38ee4ab0265bae063082cb8b4a5fdf3ee3488bd64ddb37280adba15bc87fbe56c19154697e4e93381a93ec2324449a1db5dc036aefe70794ce625039e0b2651ad1fba64b7d089d5682d21184dac6a9a5cddb57e1bf9bc77323e3b6e988a92b22e51f9809cccbe8ff0996c9fb8554f72f7f80d2d61e90a415fc41adf5121bc072468a70fa17b8e4c2a133282f931badaf92c34673fe9efa3156a60ddc62d81fbbc29f9cc6f1f0d86ffbe3164c6e51501f50ff132cbdcb2b15fb73121fea534a14d56285d049d0f12c81e9aa760530e92e77343fd94bd369315b7cc2cf7b6a8fde1b413b18c74fa05232e06f90dc0a21fee6c252116962d6dd04529c1eb513ad10fca43ae131b41aa4104dce53ccf0974b85d64144f308aba7b5ab4ebccc1018ab9faf6cb2141f344cdf6bed94392b5305da25d26e8e6bf0309f045de95c733d2f0e2326a1eea46644ee12a0be005a9fb9b712c8a50714e5dd8b77e63f25048608bb3a27c4a41239b37ca3ce446eafcdd99538e90f01afbeb7faa37337d8dd6ce8080bf767f3672a8553bf2fb9ca31173f55615e2f8a73869aa960c635e4751434e679590aef18548abbb62f50a0c607f03afd1b23f0d49934b2b64ca78917467908923d7dcd628ce820d02219666965a91b5ef5079534aa9e990a037d4202ec75913becc27a4d96d66c4e5dd9ec382f28ef8e6fadfbaf9a29dbebb2a9332746509a8d81aed4a8b89e0f2b11aedf7600a775b71248aba0fb7f3eab81ead8085abc2ca397d909abf4f5cc8a09de27f1aaaf1c6f8e7a765d08b191b3eed920832e9f90c6c9889e9e50cf059b94f576c52a89ff2575b8424fbdf561ca0cc242b765d897f1c2eef0a51b165046f3209ef44369514710659feb4a448f1e0f96c41d068f7ae9a2674d94e7c94be6c6a78c62fb12b41b76d74efb0be8e7b3f9006c3f5bf93afbacdb2817ca197cbaf5a0fc8e2ad2103e5b08a6b68b787e629fa7f9cbe8ed0fd2f6e7ffe9c3a2cb7ca1c1fc8046b5f9db684c0e71888939cec5442526ebbc238c490cb08a075bd1b1399698ffb27f48e7bfeb61747eed7c7a2ac0b20bf3e1b87c55519ec40f861ce228110a8336975fadaa3f6a0fceb401114afc02198ae609fb975c199ccd8d58d921971bc136c1e05c8ce3bc72ed40729f598538a7cfc5e0477845ca16bf4b920154bad352721561f2d832eb757b6511a1aa4a0923e6172e3a16a77c5ce3de33301dd9b2e9f2fbaed946b5e79c5cd0b1aef3cf40b79fd318cdf93484d43819b06cb238c22722d0b54d4820c34dc576dda9d0131ab9920935eabd657bb54fe9fb9861f96b0be9030bf3a0b3f00de5458152fa1ab58296d60c38030f1ae069f82c4cb6fe57c7a58e25e8d1f897ae91ce464eb47aaf59684eb1e1435bb328f6dc4859889f754c56311d81bbd3804724a0bca7e72e1bad2498e8a1e29f03b5ff3aa39bcacb86b9fc3eeed3a046363808b23c5989b13840fc3f298d1b6791f6f7ef84333aa16567c29634ff032c80b43b66975c56739a0836d80ddd2f07214349499ed07945cd67d0af545fe573e554408b2754ba87e219a30c92e391bcdba4037a90235079b009cb5bde3072b25867dc2279b51af5e21d961faf36a25051ec92196acb7d2bb0eb66bc32a7387f818d95d9dd9f35d2bbe0b6c3978ed5e6cf140cdb0262af56e83533912ebba2ffa539bab1a4085ab4a0d0d47104ced291690b24459c8483991ef8fbe82d1c9d92fa6524e9162bd37b1b5e471077c8501f8d7f77eda51ce640edaa7c2c6a28b89256bf01ee903169e4cec135813cca5ce3eb4a50916ba248e3ac368f34d743aa99559f3e7d9d3343c4977f96fc01d5bb903ff9dac42eee2b76418ef6e61a81d929e91a7021be59776fc84123e6228e0bb3a688000d17d0f2ef634c778fbfbdc8808ba030b5c3b9a12b41b159892ba9b18447f4ea5d7d5f75c50b18b0f2ba3d230bbcaa58148bdb2f52934aefd557659c9c4f25f524fb9b5c36b718df867c2c2a6ec33f2d14b8b440b5d380b156f3bafd029630c937db225a19253df628b66fb1c16c3a891e8cacbca87ace5c61cb45631f5c9907ede1c1e20dae93cc834a4b74ca3db5ebd5e49043c450aedc04a616412277227ee555c864a5923e3f0c6dcff9135d52e65597853ff0fa8fa3b207179e345796990d76f22ad4f0b7d44184dd7e5cf1d09fd1f455ccfe66331c8b7cea42c579cf875aba44219b8c3cfdbce4d3ce434ec1b82102e368dadfa9ddb8d75ddd8c42dff6b87b36f8fcac2e824167de518c0acb38cca50eff1e8c87e", 0x1000}, {&(0x7f00000013c0)="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", 0x1000}], 0x4, &(0x7f0000002400)=[{0xd0, 0x103, 0x10000, "f5cc6b9b6c74a20e56dfe5a951aec4b0fc77a0e281a34449c84c3e03629d0f152d41d351d3bbcfc43401199ee5c9657163a8b2bbe579e71057837bcd027d9108cde3cd4039ad6dbfe71d859caeb5a50856538cf83b97b985a2b04727b1d6b64d1582932149f798d1f4c18163db42d8b817c4003ceab203492d7d7db3368ad97eba8c3c3f1f58255e6ba61f5b014138bc1c2d705fb9ad8b6b8494ca52ef653eedbe4662dbfe7a3562ee811258d8c669a96f28a9652f8dd7cf9e10"}, {0x108, 0x108, 0x19, "01e8c507e872309c75e0ca6bc68dd7b4a456ba7e152561cdc60b237d5799f27b74ca87bf010e18ca744922f23368b808525b7715735e8bb4f48e3eb547d62d7f35ae3556f3d08e836215a18e2477fba1aa5a6b28bd1347de3ee9e1567ada8ea03230ae5a8a4504193b8d6eeb5eb898a66519c6a8b3a622d91128727a4619b75b83a48488d1b76ab018ea0553c8b3f51e2bf04890186f76d873f9a1057b6d8c3c8b1d34130cdeca540202804dda1e605471fceab3ece0c3f92566fecfc4d2e878521096df31b6440ee56c6816c65119b38f4eb2df6c17a0ad88057087624fba6ff7a4c521bf648935ab0f561d13aa05a000"}, {0xc8, 0x115, 0x9, "51852c7bfa97b3936ba6769e5b6c5e136c0e1e5fe30f1e40fb28c5d763ccb05a536d4e87496e104c9ee3a5aefa863e001119a24c765aa20eecee5991314922aaa19fed760e6c868cb31419ce1959f2597cf799dc352f57359e34a2e575d3970a0898d7462231ce15eaff482529147fece1335589c94281003b16a35e95882d4914d5c7ccc8f1bdaed554e4c7ba5b6eb36ae20ce07b27fac107fa1801de6a0db771ee3528982d81d02d396a1d3b88707042e8fd11d086546a"}, {0xb0, 0x88, 0x2, "aed92f18a6fe0452d2aa286a890fb18aa94bcf89a99411ac3433d516b250365700fe8673766b387c1bcd46b6df58fd809ee773f49a550c48713b3f82c092e93e5ca29e71f4b45d924e6dd6f09700b98e6fde7f44c531101edd0178d927ea50ab2d7684417ac5605629070f20e9decab326fc13b4f3a416f0d20aece7448462ec181d82d848242144c620fadbb84b5407cf7b4edd0b97a805a7f5bb5f066a5a"}, {0x70, 0x117, 0x40, "569e03d195708ceb79ec4c2b0f6115ec3437fc437b26d1fd94ca41014a2f6ed3deaa207d7c8ecf1f2369d32133e099bc489924fb41108b152a5d50b4d7899c64f30b9bdbe9ead6d2f298aa8e4081485b246ac7eb1d779d440034"}, {0xb8, 0x104, 0x8, "0c37543e48de4fb1ab74acbb50dd0455ca4204cf740e3265c817e44bc01c0618ea4c1f2a77bb0784a7f3f4414057e4d36b0cdb729029ad62eb13c53d42020d6c089fb0139a5ca7a13e5647923dee67c48b76e83190daa462c663ebe6e4423eb1a2c4e105d3f45a3178f7d78f149171401a6d96f4b77a15637b7908b5fc3e62970cf2b81d76b577974b42fda036940ad08082ca120270763d1ea403621973737879a9"}, {0xc0, 0x115, 0x5d, "f170201db9fafbc58a2fd0bd5b9b2a344816e6c89c2ba0a2b6305bdb61b7f5894bbf6af39c3ca5b01ce83a02f9f2aea2151b951d45bb6c60fc8456bcfe6ffbfe1434b32f0c07a00882a9d666aa5cdb114cfb40a640e0c6006fc49917b011e5b1edf169d80046fcf7b4a496732f072a0448e762aabe2cc935152c7ecaf54f59788df44e13e54dab48e840efc52e7cb2b09acdd17cdc61c6fb9cc4d167ec2f6d8656ac1ae1cec9ba9861f974e87eb21c4c"}], 0x538}, 0x0, 0x4000000, 0x1, {0x0, r6}}, 0x80000000)
syz_io_uring_complete(r3)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0xfff, 0x0, &(0x7f0000000180)="9a568e6f65135532576211336e1f8365193c7d9035ddcda958af1e16f78cc060afdbd99be08778a00f00f1900c0496cc024b7b81a4220688dbdf3a2369574ffbed7ee6fa0698d55703cce5a0944e1893ae82c84bdd96e570b338e59abf71fe1f516849c84998c9ffddf9cd8647012ab76a3d2ddc95", 0x1, 0x0, 0x1, {0x1}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000001, 0x10, r0, 0x8000000)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x40010, r0, 0x10000000)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r1, &(0x7f0000000400)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000003c0)=@IORING_OP_SEND={0x1a, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)="7bfc17a9a305f0d71bfe93c0e7b0f3e784335aae423c522bd635", 0x1a, 0x20008080, 0x1}, 0x101)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000340)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6000, @fd_index, 0x10001, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/34, 0x22}, {&(0x7f0000000180)=""/50, 0x32}, {&(0x7f0000000240)=""/93, 0x5d}, {&(0x7f00000002c0)=""/71, 0x47}], 0x4, 0x0, 0x1, {0x0, r10}}, 0x1f)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:13 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = accept(0xffffffffffffffff, &(0x7f0000000180)=@in={0x2, 0x0, @broadcast}, &(0x7f0000000200)=0x80)
close(r3)
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x1000)

17:52:13 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x4, 0x0, r4, &(0x7f0000000000)={0x240000, 0x1, 0x3}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r5}}, 0xe18e)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff0000/0xe000)=nil, 0xe000, 0x0, 0x10, r2, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x6, &(0x7f0000000240)=[{0xf000, 0xfa, 0xfe, 0x18c2}, {0x5f0, 0x5, 0x1, 0x8}, {0x9, 0x47, 0x6, 0x1ff}, {0x8, 0xff, 0x40, 0x8000}, {0x8, 0xd8, 0x5c, 0x10001}, {0x5, 0x3, 0xf6, 0x91}]})
syz_io_uring_submit(r6, r1, &(0x7f00000002c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x4000, @fd=r7, 0x29, 0x0, 0x0, 0x2, 0x1, {0x3}}, 0x44a)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1731.678264] FAULT_INJECTION: forcing a failure.
[ 1731.678264] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1731.681068] CPU: 0 PID: 16318 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1731.682620] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1731.685147] Call Trace:
[ 1731.685736]  dump_stack+0x107/0x163
[ 1731.686546]  should_fail.cold+0x5/0xa
[ 1731.687406]  __alloc_pages_nodemask+0x182/0x680
[ 1731.688416]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1731.689560]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1731.690886]  alloc_pages_current+0x187/0x280
[ 1731.691849]  __get_free_pages+0xc/0xa0
[ 1731.692695]  pgd_alloc+0x84/0x4e0
[ 1731.693452]  ? pgd_page_get_mm+0x40/0x40
[ 1731.694334]  ? lockdep_init_map_type+0x2c3/0x770
[ 1731.695380]  ? lockdep_init_map_type+0x2c3/0x770
[ 1731.696416]  mm_init+0x670/0xab0
[ 1731.697154]  mm_alloc+0x99/0xc0
[ 1731.697872]  alloc_bprm+0x1cb/0x8e0
[ 1731.698682]  ? alloc_bprm+0x1/0x8e0
[ 1731.699502]  do_execveat_common+0x270/0x8c0
[ 1731.700444]  ? strncpy_from_user+0x9e/0x460
[ 1731.701385]  ? bprm_execve+0x1b00/0x1b00
[ 1731.702300]  __x64_sys_execveat+0xed/0x130
[ 1731.703236]  do_syscall_64+0x33/0x40
[ 1731.704049]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1731.705182] RIP: 0033:0x7f48cbaccb19
[ 1731.706011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1731.710046] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1731.711713] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1731.713273] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1731.714859] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1731.716423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1731.717976] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:52:13 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r6, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(0x0, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@pppol2tp={0x18, 0x1, {0x0, r6, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4, 0x4, 0x3, 0x4}}, 0x0, 0x0, 0x1, {0x0, r8}}, 0x3)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1731.757096] FAULT_INJECTION: forcing a failure.
[ 1731.757096] name failslab, interval 1, probability 0, space 0, times 0
[ 1731.763169] CPU: 1 PID: 16334 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1731.764671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1731.767119] Call Trace:
[ 1731.767714]  dump_stack+0x107/0x163
[ 1731.768504]  should_fail.cold+0x5/0xa
[ 1731.769327]  ? vm_area_alloc+0x1c/0x110
[ 1731.770185]  should_failslab+0x5/0x10
[ 1731.771004]  kmem_cache_alloc+0x5b/0x350
[ 1731.771889]  vm_area_alloc+0x1c/0x110
[ 1731.772714]  alloc_bprm+0x337/0x8e0
[ 1731.773508]  do_execveat_common+0x270/0x8c0
[ 1731.774444]  ? strncpy_from_user+0x9e/0x460
[ 1731.775394]  ? bprm_execve+0x1b00/0x1b00
[ 1731.776307]  __x64_sys_execveat+0xed/0x130
[ 1731.777226]  do_syscall_64+0x33/0x40
[ 1731.778025]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1731.779129] RIP: 0033:0x7f843b55cb19
[ 1731.779957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1731.783938] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1731.785574] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1731.787109] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1731.788649] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1731.790179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1731.791749] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:52:13 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@empty, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast2}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000180)='./file0\x00', 0x200, 0x1, &(0x7f0000000240)=[{&(0x7f00000001c0)="5f020fd83381951a1f1cdd8904c41fa5ef2e0615c1be47b0eaf9e9f5e87ba4971c306eeea0dc7a02dbaa42e0ae97352e034a7573c4c3faf67bd63c7040de528f", 0x40, 0x9}], 0x2081030, &(0x7f00000003c0)={[{@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@resuid={'resuid', 0x3d, r3}}, {@grpid}], [{@obj_user={'obj_user', 0x3d, ')'}}, {@dont_hash}, {@fowner_eq={'fowner', 0x3d, r4}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@audit}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@context={'context', 0x3d, 'root'}}, {@euid_gt={'euid>', 0xee00}}]})
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000480)=[r5, r7, r0], 0x3)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_READY(r8, 0xc0189376, &(0x7f00000014c0)={{0x1, 0x1, 0x18, r2, {0x3ff}}, './file0\x00'})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:27 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x11, r3, 0x10000000)
syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index}, 0x800)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
close(r0)

17:52:27 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0xb3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x7)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x2edd)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, 0xffffffffffffffff, 0x0)
r11 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000380)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r11, 0x0, &(0x7f00000002c0)="ad517af0282c01a55ea4f2535e49f065927458e266bbc4a09e97f525e0574c7364051ed59c741fc7914efa55c092ffa94d6a5df3210b3f22009cd740a05a50f690d26a0eaae83983f4d5856a73585e5cbe7d1b9b12348ffb6d83045ad33cfae58cc0ee92079c9ae9678430e85a2fdd6ad92aac25a517477a5ac0b39dc0daad9b51a04ea92f7d", 0x86, 0x8041, 0x0, {0x0, r8}}, 0x9a15)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:27 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000084c0), 0x107800)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r2, r1, &(0x7f0000008540)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0xdcb, &(0x7f0000008500)=[r0, r3], 0x2, 0x0, 0x0, {0x0, r5}}, 0x7)

17:52:27 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x8, 0x810, r2, 0x10000000)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001540)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000001500), 0x1, 0x1}, 0x8001)
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r7, &(0x7f0000000500)=@IORING_OP_WRITEV={0x2, 0x2, 0x6000, @fd=r8, 0x7, &(0x7f0000000480)=[{&(0x7f0000000180)="711b70227e9d35c98d2737e7290ea5ff21cffdd06b491b97750155e79a0c506fe1582d88fdcf59b1bc8c203b57cb08aa9cc1673929c1a5a38bfc59ca0b42e9a0e813713694ec9d3c", 0x48}, {&(0x7f0000000240)="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", 0xfb}, {&(0x7f0000000340)="02468bc82678c9898ff73d50b5ec697c86e8c456032b10d4cb91653268999dbf2c6cb8bd9358b2c4e6f15e713d5746dd1c6e1049c437d7345b02a14deb7d094e885cc7cf299dd20e79d6b571dd52313d977c1e0f1304ae23d551f1c1264631644d4a319030fa91eee36ce031dea2d315e0c493f4fafe98389b2b0081ae033f4da0d5ec9a1ed311f849ff7857112736030993a89be75b7e833c68faf0193ba607b3", 0xa1}, {&(0x7f0000000000)="1b", 0x1}, {&(0x7f0000000400)="996aae6aa66422bd805e8e7e200d7a5ddfdebbb017911b51d5845697ef9c46ed530f858bbd810eb18c83dcb98a6cd19d57fbc1f5475269996245ac787475998691d6e54379de299e6fad48739752652d8428e89415f40091650828fc72f11d26ff359b45a226d2a05c7ab0f1ff6fe9e4fab175db867e7990b36d12d3", 0x7c}], 0x5, 0x2, 0x1, {0x2, r9}}, 0x4cb)

17:52:27 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 11)

17:52:27 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 12)

17:52:27 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r3, 0x3c5c, 0xdfb2, 0x4, &(0x7f0000000000)={[0x2]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:27 executing program 6:
r0 = syz_io_uring_setup(0x6f20, &(0x7f0000000200)={0x0, 0xffffffff, 0x1, 0x1, 0x118}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x1000)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f00000000c0)={'dummy0\x00'})
io_uring_enter(r3, 0x3bc6, 0x2ba4, 0x0, &(0x7f0000000080)={[0xbe]}, 0x8)

17:52:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r1, &(0x7f0000001600), 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x729924eb]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r2)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000180)={{r3}, 0x8, 0x2, 0x1})
r5 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000009, 0x110, r3, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:27 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0xfffffffffffffffd, 0x0, 0x3}, 0x0)
syz_io_uring_setup(0x3d23, &(0x7f0000000180)={0x0, 0x109d, 0x2, 0x0, 0x105, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r5=>0x0)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440)=[@timestamp, @sack_perm, @timestamp, @sack_perm], 0x4)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r3, r5, &(0x7f00000003c0)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000380)='./file0/file0\x00', 0x40, 0x2000, 0x1, {0x0, r7}}, 0x12000)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000000400))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:27 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = syz_io_uring_setup(0x84a, &(0x7f0000000180)={0x0, 0x8c94, 0x0, 0x1, 0x251, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000002600)=<r5=>0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x10010, r3, 0x8000000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r7=>0xffffffffffffffff, @out_args}, './file0\x00'})
syz_io_uring_submit(r6, r5, &(0x7f0000002500)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r7, 0x0, &(0x7f0000001500)="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", 0x1000, 0x10000}, 0x31339be7)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r5, &(0x7f00000014c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x4004, @fd=r8, 0x5, &(0x7f0000001440)=[{&(0x7f0000000280)=""/23, 0x17}, {&(0x7f00000002c0)=""/213, 0xd5}, {&(0x7f00000003c0)=""/10, 0xa}, {&(0x7f0000000400)}, {&(0x7f0000000440)=""/4096, 0x1000}], 0x5, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r12 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8, 0x110, r7, 0x10000000)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r12, &(0x7f00000025c0)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, r13, 0x80, &(0x7f0000002540)=@isdn={0x22, 0x5, 0xa1, 0x7c, 0x4}, 0x0, 0x0, 0x1, {0x0, r14}}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:28 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x10, 0xfffffffe}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:28 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x4010, r2, 0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r3, r1, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r2, &(0x7f0000000180)={0x2008}, r0, 0x1, 0x0, 0x0, {0x0, r5}}, 0x1)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x80010, r4, 0x8000000)
syz_io_uring_setup(0x3c67, &(0x7f0000000240)={0x0, 0xd42d, 0x1, 0x2, 0x104, 0x0, r4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000003c0)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000340)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x78e, @ipv4={'\x00', '\xff\xff', @remote}, 0x5}}, 0x0, 0x0, 0x1}, 0x7fff)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000000), 0x81, 0x501200)
syz_io_uring_submit(r8, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x7, 0x0, {}, 0x0, 0x8}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1746.477813] FAULT_INJECTION: forcing a failure.
[ 1746.477813] name failslab, interval 1, probability 0, space 0, times 0
[ 1746.480651] CPU: 0 PID: 16456 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1746.482251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1746.484866] Call Trace:
[ 1746.485484]  dump_stack+0x107/0x163
[ 1746.486386]  should_fail.cold+0x5/0xa
[ 1746.487275]  ? vm_area_alloc+0x1c/0x110
[ 1746.488201]  should_failslab+0x5/0x10
[ 1746.489072]  kmem_cache_alloc+0x5b/0x350
[ 1746.489997]  vm_area_alloc+0x1c/0x110
[ 1746.490828]  alloc_bprm+0x337/0x8e0
[ 1746.491681]  do_execveat_common+0x270/0x8c0
[ 1746.492650]  ? strncpy_from_user+0x9e/0x460
[ 1746.493628]  ? bprm_execve+0x1b00/0x1b00
[ 1746.494560]  __x64_sys_execveat+0xed/0x130
[ 1746.495586]  do_syscall_64+0x33/0x40
[ 1746.496441]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1746.497764] RIP: 0033:0x7f48cbaccb19
[ 1746.498617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1746.503420] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1746.505145] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1746.506990] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1746.508782] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1746.510390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1746.512018] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:52:28 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:28 executing program 0:
r0 = syz_io_uring_setup(0x1736, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4662, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x104010, r0, 0x10000000)
syz_io_uring_submit(r3, r5, &(0x7f0000000080)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r0, 0x0, 0x0, 0x9, 0x9, 0x1, {0x0, 0x0, r0}}, 0x6)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

17:52:28 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x40000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:28 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x688280, 0x1)

17:52:28 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_io_uring_setup(0x1763, &(0x7f0000000180)={0x0, 0x4f7c, 0x1, 0x0, 0x2ea}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000240))
r4 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r4, 0x9362, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r4, 0x400c6615, &(0x7f0000000380)={0x0, @aes256, 0x0, @desc4})
syz_io_uring_setup(0x5fd4, &(0x7f0000000280)={0x0, 0x89a8, 0x0, 0x1, 0x2e5, 0x0, r3}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000340))
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1746.749819] FAULT_INJECTION: forcing a failure.
[ 1746.749819] name failslab, interval 1, probability 0, space 0, times 0
[ 1746.754325] CPU: 1 PID: 16444 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1746.755805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1746.758197] Call Trace:
[ 1746.758773]  dump_stack+0x107/0x163
[ 1746.759745]  should_fail.cold+0x5/0xa
[ 1746.760728]  ? create_object.isra.0+0x3a/0xa20
[ 1746.761898]  should_failslab+0x5/0x10
[ 1746.762987]  kmem_cache_alloc+0x5b/0x350
[ 1746.764060]  create_object.isra.0+0x3a/0xa20
[ 1746.765191]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1746.766560]  kmem_cache_alloc+0x159/0x350
[ 1746.767585]  vm_area_alloc+0x1c/0x110
[ 1746.768385]  alloc_bprm+0x337/0x8e0
[ 1746.769155]  do_execveat_common+0x270/0x8c0
[ 1746.770063]  ? strncpy_from_user+0x9e/0x460
[ 1746.770972]  ? bprm_execve+0x1b00/0x1b00
[ 1746.771851]  __x64_sys_execveat+0xed/0x130
[ 1746.772748]  do_syscall_64+0x33/0x40
[ 1746.773528]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1746.774606] RIP: 0033:0x7f843b55cb19
[ 1746.775411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1746.779279] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1746.780909] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1746.782406] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1746.783928] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1746.785426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1746.786920] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:52:42 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 13)

17:52:42 executing program 4:
syz_io_uring_setup(0x6364, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r0=>0x0)
r1 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000000), 0x5, 0x10083)
r3 = syz_io_uring_setup(0x7f, &(0x7f0000000300)={0x0, 0xea5e, 0x2, 0x0, 0x309, 0x0, r2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f00000015c0)=<r4=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r5, 0x42d5, 0x3470, 0x0, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
get_mempolicy(&(0x7f0000001740), &(0x7f0000001780), 0x204000000000, &(0x7f0000ffa000/0x4000)=nil, 0x4)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
syz_io_uring_submit(r7, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd=r3}, 0x2)
syz_io_uring_submit(r7, r4, &(0x7f0000000480)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd_index=0x5, 0x1f, &(0x7f00000016c0)=[{&(0x7f0000000180)=""/66, 0x42}, {&(0x7f0000000380)=""/96, 0x60}, {&(0x7f0000000400)=""/77, 0x4d}, {&(0x7f00000014c0)=""/255, 0xff}, {&(0x7f0000001640)=""/100, 0x64}], 0x5, 0x28, 0x1}, 0xe08)
io_uring_enter(r1, 0x6d1e, 0x9ce9, 0x2, &(0x7f00000002c0)={[0x7]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000280)={0x10001, 0x7, 0x8, 0x1b, 0x1})

17:52:42 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$FIOCLEX(r1, 0x5451)
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_STATION(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x64, r2, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_FLAGS={0x14, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x6}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x2}, @NL80211_ATTR_STA_WME={0x24, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x7}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x2d}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x2}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x86}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x24008080}, 0x800)
r3 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000003, 0x4010, r0, 0x8000000)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd=r0}, 0x4)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 12)

17:52:42 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x24a}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000001, 0x2010, r0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in6=@private1, @in6=@ipv4={""/10, ""/2, @loopback}}}, {{@in=@dev}, 0x0, @in6=@empty}}, &(0x7f0000000000)=0xe8)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r3=>r0}, './file0\x00'})
bind$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, '\x00', 0x2a}, 0x2fd}, 0x1c)
r4 = syz_open_dev$vcsa(&(0x7f0000000340), 0x5, 0x200000)
connect$inet6(r4, &(0x7f0000000380)={0xa, 0x4e20, 0x5, @mcast2, 0x5}, 0x1c)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)='.\x00', 0x2, 0x2)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xcb}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {<r5=>r3}}, '\x00'})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_submit(r1, r8, &(0x7f0000000300), 0x80000001)
io_uring_enter(r5, 0x48f8, 0xaa6c, 0x0, &(0x7f00000002c0)={[0x9]}, 0x8)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r4, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x62001, 0x26, 0x6}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x72dc}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1760.516710] FAULT_INJECTION: forcing a failure.
[ 1760.516710] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1760.518396] CPU: 0 PID: 16619 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1760.519166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1760.520451] Call Trace:
[ 1760.520760]  dump_stack+0x107/0x163
[ 1760.521181]  should_fail.cold+0x5/0xa
[ 1760.521625]  __alloc_pages_nodemask+0x182/0x680
[ 1760.522146]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1760.522824]  ? fault_dirty_shared_page+0x3e0/0x3e0
[ 1760.523377]  ? count_memcg_event_mm.part.0+0x110/0x2a0
[ 1760.523975]  alloc_pages_current+0x187/0x280
[ 1760.524475]  get_zeroed_page+0x14/0xa0
[ 1760.524912]  __pud_alloc+0x33/0x270
[ 1760.525325]  handle_mm_fault+0x1a8b/0x3520
[ 1760.525799]  ? __switch_to_asm+0x36/0x70
[ 1760.526280]  ? __schedule+0x850/0x1e80
[ 1760.526736]  ? __pmd_alloc+0x5e0/0x5e0
[ 1760.527197]  __get_user_pages+0x61b/0x1390
[ 1760.527714]  ? follow_page_mask+0x1860/0x1860
[ 1760.528251]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1760.528797]  ? irqentry_enter+0x26/0x50
[ 1760.529252]  __get_user_pages_remote+0x1d1/0x860
[ 1760.529810]  get_user_pages_remote+0x63/0x90
[ 1760.530333]  get_arg_page+0xba/0x200
[ 1760.530769]  ? acct_arg_size+0xe0/0xe0
[ 1760.531221]  ? downgrade_write+0x3a0/0x3a0
[ 1760.531697]  ? count.constprop.0+0x1b3/0x280
[ 1760.532209]  copy_string_kernel+0x1b4/0x450
[ 1760.532713]  do_execveat_common+0x518/0x8c0
[ 1760.533217]  ? bprm_execve+0x1b00/0x1b00
[ 1760.533700]  __x64_sys_execveat+0xed/0x130
[ 1760.534197]  do_syscall_64+0x33/0x40
[ 1760.534639]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1760.535242] RIP: 0033:0x7f843b55cb19
[ 1760.535696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1760.537849] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1760.538718] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1760.539569] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1760.540409] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1760.541250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1760.542091] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1760.553971] audit: type=1400 audit(1656006762.221:10): avc:  denied  { map } for  pid=16621 comm="syz-executor.6" path="/proc/16621/mounts" dev="proc" ino=37244 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1
17:52:42 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 14)

17:52:42 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x7fffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x200, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r6, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r6, 0x0, &(0x7f00000001c0)="669006f6272c7b1ff612ed3cc3a49edc6899a145346cb6a4e490f4b5a6aa10b62d5989", 0x23, 0x10002, 0x1}, 0x4)
r7 = socket$inet(0x2, 0x1, 0xfff)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x50, r2, 0x8000000)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r7, &(0x7f0000000000)={0x1})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x8000, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xc, 0x10, r8, 0x0)
io_uring_register$IORING_REGISTER_PROBE(r2, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="0000000000000000000000000000e4ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001f00"/280], 0x21)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1760.634680] FAULT_INJECTION: forcing a failure.
[ 1760.634680] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1760.636176] CPU: 0 PID: 16676 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1760.636951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1760.638212] Call Trace:
[ 1760.638517]  dump_stack+0x107/0x163
[ 1760.638928]  should_fail.cold+0x5/0xa
[ 1760.639383]  __alloc_pages_nodemask+0x182/0x680
[ 1760.639927]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1760.640602]  ? lock_downgrade+0x6d0/0x6d0
[ 1760.641063]  ? do_raw_spin_lock+0x121/0x260
[ 1760.641566]  alloc_pages_current+0x187/0x280
[ 1760.642057]  __pmd_alloc+0x37/0x5e0
[ 1760.642466]  handle_mm_fault+0x1adc/0x3520
[ 1760.642956]  ? irqentry_enter+0x26/0x50
[ 1760.643406]  ? __pmd_alloc+0x5e0/0x5e0
[ 1760.643847]  ? trace_hardirqs_on+0x5b/0x180
[ 1760.644355]  __get_user_pages+0x61b/0x1390
[ 1760.644860]  ? follow_page_mask+0x1860/0x1860
[ 1760.645390]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1760.645942]  __get_user_pages_remote+0x1d1/0x860
[ 1760.646495]  ? lock_downgrade+0x6d0/0x6d0
[ 1760.646983]  get_user_pages_remote+0x63/0x90
[ 1760.647508]  get_arg_page+0xba/0x200
[ 1760.647934]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1760.648539]  ? acct_arg_size+0xe0/0xe0
[ 1760.648987]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1760.649616]  copy_string_kernel+0x1b4/0x450
[ 1760.650120]  do_execveat_common+0x518/0x8c0
[ 1760.650627]  ? bprm_execve+0x1b00/0x1b00
[ 1760.651107]  __x64_sys_execveat+0xed/0x130
[ 1760.651619]  do_syscall_64+0x33/0x40
[ 1760.652042]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1760.652645] RIP: 0033:0x7f843b55cb19
[ 1760.653083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1760.655156] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1760.656058] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1760.656867] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1760.657709] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1760.658512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1760.659350] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:52:42 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(0x0, r6, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x1, 0x0, r7, &(0x7f0000000240), &(0x7f0000000340)='./file0\x00', 0x2, 0x1000, 0x1}, 0x1)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@nfc={0x27, 0x1, 0x1, 0x5}, 0x0, 0x0, 0x1, {0x0, r8}}, 0x200)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 1:
r0 = syz_io_uring_setup(0x4a24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:42 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r3, r8, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd_index=0x1}, 0x40)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r4, 0x118, &(0x7f00000001c0), 0x0, 0x4)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x2}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

17:52:42 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 15)

[ 1760.743124] FAULT_INJECTION: forcing a failure.
[ 1760.743124] name failslab, interval 1, probability 0, space 0, times 0
[ 1760.744801] CPU: 0 PID: 16627 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1760.745601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1760.746888] Call Trace:
[ 1760.747187]  dump_stack+0x107/0x163
[ 1760.747615]  should_fail.cold+0x5/0xa
[ 1760.748040]  ? create_object.isra.0+0x3a/0xa20
[ 1760.748558]  should_failslab+0x5/0x10
[ 1760.748986]  kmem_cache_alloc+0x5b/0x350
[ 1760.749459]  create_object.isra.0+0x3a/0xa20
[ 1760.749961]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1760.750529]  kmem_cache_alloc+0x159/0x350
[ 1760.750998]  vm_area_alloc+0x1c/0x110
[ 1760.751426]  alloc_bprm+0x337/0x8e0
[ 1760.751862]  do_execveat_common+0x270/0x8c0
[ 1760.752347]  ? strncpy_from_user+0x9e/0x460
[ 1760.752832]  ? bprm_execve+0x1b00/0x1b00
[ 1760.753316]  __x64_sys_execveat+0xed/0x130
[ 1760.753816]  do_syscall_64+0x33/0x40
[ 1760.754254]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1760.754858] RIP: 0033:0x7f48cbaccb19
[ 1760.755292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1760.757397] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1760.758298] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1760.759136] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1760.760020] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1760.760857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1760.761693] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:52:42 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x6, 0x0, {}, 0x0, 0x0, 0x0, {0x0, 0x0, r1}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1760.794181] FAULT_INJECTION: forcing a failure.
[ 1760.794181] name failslab, interval 1, probability 0, space 0, times 0
[ 1760.795949] CPU: 0 PID: 16715 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1760.796755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1760.798063] Call Trace:
[ 1760.798377]  dump_stack+0x107/0x163
[ 1760.798799]  should_fail.cold+0x5/0xa
[ 1760.799223]  ? __pmd_alloc+0x94/0x5e0
[ 1760.799656]  should_failslab+0x5/0x10
[ 1760.800091]  kmem_cache_alloc+0x5b/0x350
[ 1760.800546]  __pmd_alloc+0x94/0x5e0
[ 1760.800957]  handle_mm_fault+0x1adc/0x3520
[ 1760.801433]  ? irqentry_enter+0x26/0x50
[ 1760.801890]  ? __pmd_alloc+0x5e0/0x5e0
[ 1760.802333]  ? trace_hardirqs_on+0x5b/0x180
[ 1760.802817]  ? __get_user_pages+0x5f5/0x1390
[ 1760.803330]  __get_user_pages+0x61b/0x1390
[ 1760.803856]  ? follow_page_mask+0x1860/0x1860
[ 1760.804383]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1760.804988]  ? trace_hardirqs_on+0x5b/0x180
[ 1760.805496]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1760.806151]  __get_user_pages_remote+0x1d1/0x860
[ 1760.806700]  ? __get_user_pages_remote+0x2/0x860
[ 1760.807263]  get_user_pages_remote+0x63/0x90
[ 1760.807797]  get_arg_page+0xba/0x200
[ 1760.808232]  ? acct_arg_size+0xe0/0xe0
[ 1760.808697]  ? downgrade_write+0x3a0/0x3a0
[ 1760.809191]  ? count.constprop.0+0x1b3/0x280
[ 1760.809735]  copy_string_kernel+0x1b4/0x450
[ 1760.810252]  do_execveat_common+0x518/0x8c0
[ 1760.810781]  ? bprm_execve+0x1b00/0x1b00
[ 1760.811273]  __x64_sys_execveat+0xed/0x130
[ 1760.811805]  do_syscall_64+0x33/0x40
[ 1760.812260]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1760.812879] RIP: 0033:0x7f843b55cb19
[ 1760.813329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1760.815591] RSP: 002b:00007f8438ab1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1760.816537] RAX: ffffffffffffffda RBX: 00007f843b670020 RCX: 00007f843b55cb19
[ 1760.817410] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1760.818288] RBP: 00007f8438ab11d0 R08: 0000000000000000 R09: 0000000000000000
[ 1760.819172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1760.820081] R13: 00007ffdc8e4b2ef R14: 00007f8438ab1300 R15: 0000000000022000
17:52:42 executing program 4:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x2)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000008, 0x100010, r1, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x1, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3)

17:52:55 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 16)

17:52:55 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x7ff)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 7:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r1, &(0x7f0000001600), 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000180)=[r2]}, 0x1)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
io_uring_enter(r4, 0x58ab, 0x7fa, 0x2, 0x0, 0x0)
dup2(r3, r3)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 13)

17:52:55 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
io_uring_enter(r2, 0x889, 0x4742, 0x0, &(0x7f0000000000)={[0x7]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = dup3(r2, r2, 0x80000)
r5 = socket(0x1, 0xa, 0xffffffff)
r6 = getpgid(0xffffffffffffffff)
sendmsg$nl_generic(r4, &(0x7f0000003b40)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000003b00)={&(0x7f0000000300)={0x37d4, 0x18, 0x200, 0x70bd2b, 0x25dfdbfc, {0x1d}, [@nested={0x221b, 0x47, 0x0, 0x1, [@generic="b5cfeb7fbf4b6ae0c63020b31cca888692bcba270e256b0e5c59d0f96f3769847d0634a7f114d004d6200d0cb90da165467fe6e3758cd69d1e0ac0cf6c0461a486327c2b2da30395b480fd8f24b604171596c035462b1ff5ae", @typed={0x8, 0x2a, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x4, 0x3b}, @typed={0xc, 0x4d, 0x0, 0x0, @u64=0x596a3d9}, @generic="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", @typed={0x8, 0x3c, 0x0, 0x0, @fd=r5}, @generic="c57a69a2c49b6046561590f825c38a7912dc367395662d91991c339b04009875ffea283422fd85da8a7dcffa4e89f1246b1b3f80ce157922027e73a8b0347dd4186192e789ee900da90c0c810c0feff4fcc1c4bdc30e902e275b19494c689adf8debc35c4e68bb16233bdcd9f40f9f880c855a8715950826e300d2bc05e3843d13bebe240d32f68f1e7ae20a4e72ecc134f97df42c0f50857594a011b22aa9de8fdd7414fb4011a2918f5f2116ef616d6de574a4384b76886063491b69d76b347aa0f81297d160e0837b1c54ceeff3cee4bc5f909eb544b4debfe133807a5dbbf61f08ea6c4e75cd13aef0dc", @generic="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", @generic="479f262f9c8db63b0a21c9abee486570f344118f0efd2d46535a9c22e3831d0288871fddc7ddef49d59df1dc59f798379554d8b57a92be0e8807a26949dd3cad45bab00fde0d877833e9f797cc33dbfa0ff929861db5bb81b9bb6281a3fef788259d65cbcf4be14ed68b8faa6407c40662e62c99d7913d60ba5ab3844ae4338a0ec7356c366b622db5f6ece2075551d9b09b67f612520dae336eb4aa113c9474603c08192d8f", @typed={0xc, 0x3, 0x0, 0x0, @u64=0xfe6b}]}, @nested={0x10b3, 0x69, 0x0, 0x1, [@generic="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", @generic="a3d486628f235a9e5471c1ec5d154e0957a64b466cd8682149071a38b561e6a2526b6c1f5916f1874962255925d89c1e536e7b084bb09e3f0ab4e3a83414818a85d886c2406d80550c7296cc974608e9a9d68fda223ce76f506c0508e3828e835024f5994c48897cadb785bef0f3822a5bde4a", @generic="520fa02c2a1dbc46ff24baae65a3eadf898ca91580a7fcc17d509fe83a8a9c16cd6499c4ee4263a52bfd6dd5218ce40389e9cda1d3b8f9697b0f6d82"]}, @generic="2b5e6bce6f8a0b4f0eae5ab58db0ca33a1552c67e6a40cce3e2462a29204e48c034c9d3c11efa36b1f3526d179138a88c7758b77230529f4e081fda4e81b2149036317649f50ee96e29606a44d77de164a970798bd556192def0802504b5852bfcc9c710e2913d279d6a076d00cdad045b2444542041c58eacf28bd4a42f0dc0b76077b7108e3a86649aed1f79529e", @nested={0x45f, 0x57, 0x0, 0x1, [@typed={0x4, 0x94}, @generic="56d4064a3acbcb999bdf7a75d4350cdb1927871c61e256dfda0da204534cfed29658c46f32103651b26daf95bb66d9b566fb7a1ac10dd8b196ce74c4aeb92557cd95050179a4566c425e26ca8e2d5881a6f4a62e98cd810480ab3426492f3a60290a8d35ab2ae2a555ff16c9ed2b68d5c3cf3c85fdae690685652255a924bd525ae3e62108b4d17ebcdf5a80a67284f3a537c50d2e618d718689fdcd", @typed={0x14, 0x33, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @typed={0x8, 0x43, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x69, 0x0, 0x0, @pid=r6}, @generic="b911b93303eeaa5c677472e85de1ea236bb5b2644f0cc77ad2450c218cff2dc075924a06072c85f932c9aa836a15087c90a599556b538305781e0d6472812c7f3e32e5e2f38e23cca071e941ba072e7bf861107f5c97ae71d6627853da444bd33cf3871b7da64636bb07edb08ea51eba80784b5388db613e3de672068187d9fac5af4ac0287aa00a22a25db357bd7486ab061370aeb576b338abb960c8e728a57abac42e9016475e50795106a5aa2b83d5040b8f34c0d320bf7caa104b1777a9ba4c2fa23357887d8f0566e0e75af7ed95f77f2df0708c1cbc1a35", @generic="5a5c71621cc793417802a6e814e71939194f2bc0c692814c8dbf8f26888fae9fb53e36294509dae159888650097811933eb0d09a92b7d7eb09cba56ad7894dfd32d8ba4e4bb9089c84a6911ddc13b94a548e535482cb2b0be20b242e9372934ca645a32e10a0c36c203109d34351b992c2f20eeb2470b697be308c58d161f9cb9669015dfbfe9ed5ea4d55b89358ddbd463a49bc98257d1c39bb6f7d84a6a3bb2c6cad8a9d32fe2532364487203dd21a23b9753b8380cc0393c8923e03400936988229af5a5f6e814cce77a8ddca971a9996540f752a08467c43d96a3b5fde", @generic="f899b3c4b58b8e6925c0f54f67b75ad5d085db5dfab4fd7c23be9e3461ebdaa221bb41ae68519997aaf2c6607e0f355a723a50482f6805483e2be6c25020be7e728069ea4fd4a771a6b02f3d612c5c9498b6cfb88dce87904d937f6a058219c8ad9d8360baca18f9a2d50547599e1f8646272b0081400ecb664bcf2f88fda6d62f82323d54070e064716a021372e17b056853879e5c16aaac5f66db28a406e7c03c71e285f60f325a4ff412f42e3ee021eb4c24a0a6650bc9261d91f570a7ebccc94c3a05203156b851a00efbbab37bd1246e00885822aaa5551ec92befe9a62eb5a1d770eefd033397c7fbd4838b290e33a2fb6f71df22231", @generic="0ee2eed68adc2bf2d14e7c374ac71ac905fd11c17143ed3ba017cacb4f97c777d741b21f851b4504d79abf1f1e8172f5f2d67286a9352cef64df04d24264538f47a7b5af143669e05f77c755c190318b6d7ca493837d109eab23f466ed51c07b55d8d617e1c858030f154b1795b47466c4fd70aebf2ccb74d047e6d514d8726f27b4fa90e962eebe41f943b5b47a33e968a24cd196f615b489e2c79d2dd0a64fc1ed6d4dda9c8e135a3f49f0face6e7e45c8f03e16967ff5", @generic="99907c898e2c74bca8506a6ecbe78e0de1d96f759369ab98d1104f5fefac340e3a9a188c943b61f1dbeb23e7"]}]}, 0x37d4}}, 0x40000)
syz_io_uring_setup(0x7ccf, &(0x7f0000000180)={0x0, 0x4235, 0x0, 0x0, 0x14e}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xb)

17:52:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_PROBE(r2, 0x8, &(0x7f00000002c0)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x21)
r3 = syz_io_uring_setup(0xdc1, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
io_uring_enter(r3, 0xf2d, 0x8208, 0x2, &(0x7f00000001c0)={[0x81]}, 0x8)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0x40)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000014c0)=ANY=[@ANYBLOB="070000000000000000000004a6ffbd7f2a621a1848844cac880beeaecb494aea82b3c7ca4b711eb807e5922ff95d4e74140a7b99c2a864b7240df15e7f3a2540a550cdf1c4185a596daac10fb780a5a80a86e3445cdda03bda2e0ea32ae884243060c8302556c8b551cbeded582b21654e1a6688efbe6045193a29f9d3ff09b71a857050841d31fa9ee3073aba5d61cf6a217d87ab506d9cf2256705e5987eff914d3315ff2b523957e215a6c875954367bb32988ea171c40a4b0e7fc9f49dbf", @ANYRES32=<r7=>r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
io_uring_enter(r7, 0x1a40, 0x254e, 0x3, &(0x7f0000000180)={[0x7]}, 0x8)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000027c0)=[{&(0x7f0000001640)=""/214, 0xd6}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000000400)=""/58, 0x3a}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f0000002740)=""/84, 0x54}], 0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$FIGETBSZ(r8, 0x2, &(0x7f0000000240))

17:52:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r3, r7, 0x0, 0xffffffff)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000001c0))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, &(0x7f0000000000)=0x1, 0x3, 0x0)

17:52:55 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x1681, &(0x7f0000000240)={0x0, 0x348b, 0x2, 0x1, 0x1be}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0)=<r3=>0x0, &(0x7f00000002c0))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000380)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000300)={0x10000008}, r4}, 0xffffffff)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x10000000)
syz_io_uring_submit(r1, r6, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x2c8dab9d, 0x1, &(0x7f0000000000)="9b3ae84aa27146f1e6a7f3c1f483896f7490b0d81da75155808ed61f5a1f213ed17a54", 0xfffffffc}, 0x3)

17:52:55 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x1, 0x1}, 0x2)
syz_io_uring_submit(0x0, r2, &(0x7f0000000100)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x13}, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000c, 0x10, r3, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r0, {0x44}}, './file0\x00'})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x4008010, r4, 0x10000000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8, 0x2010, r2, 0x0)
syz_io_uring_setup(0x58fb, &(0x7f0000000180)={0x0, 0xd94d, 0x10, 0x1, 0x153, 0x0, r2}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x83a93571a7b2935e, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x0, 0x1, {0x0, r5}}, 0xfff)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000001640), 0x800)
syz_io_uring_submit(r1, r2, &(0x7f0000001680)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd=r0, 0x6, {0x0, r3}, 0x5, 0x1, 0x0, {0x0, 0x0, r0}}, 0x1)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4, {0xa0}}, './file0\x00'})
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1774.036792] audit: type=1400 audit(1656006775.704:11): avc:  denied  { execute } for  pid=16836 comm="syz-executor.7" path="/proc/16836/mounts" dev="proc" ino=36616 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1
17:52:55 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = socket$inet(0x2, 0x80000, 0x101)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r4, r1, &(0x7f0000000240)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, r6, &(0x7f0000000000)=0x80, &(0x7f0000000180)=@ax25={{}, [@rose, @bcast, @null, @rose, @rose, @netrom, @default, @default]}, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:52:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000e, 0x30, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1774.141513] FAULT_INJECTION: forcing a failure.
[ 1774.141513] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1774.145158] CPU: 1 PID: 16771 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1774.145452] FAULT_INJECTION: forcing a failure.
[ 1774.145452] name failslab, interval 1, probability 0, space 0, times 0
[ 1774.146849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1774.146856] Call Trace:
[ 1774.146882]  dump_stack+0x107/0x163
[ 1774.146902]  should_fail.cold+0x5/0xa
[ 1774.146929]  __alloc_pages_nodemask+0x182/0x680
[ 1774.155430]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1774.156884]  ? irqentry_enter+0x26/0x50
[ 1774.157848]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1774.159112]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.160434]  ? trace_hardirqs_on+0x5b/0x180
[ 1774.161475]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.162779]  alloc_pages_current+0x187/0x280
[ 1774.163846]  get_zeroed_page+0x14/0xa0
[ 1774.164780]  __pud_alloc+0x33/0x270
[ 1774.165655]  handle_mm_fault+0x1a8b/0x3520
[ 1774.166677]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1774.167979]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.169291]  ? trace_hardirqs_on+0x5b/0x180
[ 1774.170340]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.171649]  ? __pmd_alloc+0x5e0/0x5e0
[ 1774.172618]  __get_user_pages+0x61b/0x1390
[ 1774.173650]  ? follow_page_mask+0x1860/0x1860
[ 1774.174738]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1774.176020]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.177325]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.178629]  __get_user_pages_remote+0x1d1/0x860
[ 1774.179780]  get_user_pages_remote+0x63/0x90
[ 1774.180831]  get_arg_page+0xba/0x200
[ 1774.181715]  ? acct_arg_size+0xe0/0xe0
[ 1774.182640]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.183954]  ? trace_hardirqs_on+0x5b/0x180
[ 1774.184982]  ? count.constprop.0+0x1b3/0x280
[ 1774.186038]  copy_string_kernel+0x1b4/0x450
[ 1774.187062]  ? do_execveat_common+0x34a/0x8c0
[ 1774.188135]  do_execveat_common+0x518/0x8c0
[ 1774.189171]  ? bprm_execve+0x1b00/0x1b00
[ 1774.190152]  __x64_sys_execveat+0xed/0x130
[ 1774.191166]  do_syscall_64+0x33/0x40
[ 1774.192058]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1774.193285] RIP: 0033:0x7f48cbaccb19
[ 1774.194172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1774.198604] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1774.200438] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1774.202133] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1774.203833] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1774.205528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1774.207220] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1774.208962] CPU: 0 PID: 16783 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1774.210366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1774.212671] Call Trace:
[ 1774.213203]  dump_stack+0x107/0x163
[ 1774.213937]  should_fail.cold+0x5/0xa
[ 1774.214698]  ? create_object.isra.0+0x3a/0xa20
[ 1774.215610]  ? create_object.isra.0+0x3a/0xa20
[ 1774.216539]  should_failslab+0x5/0x10
[ 1774.217305]  kmem_cache_alloc+0x5b/0x350
[ 1774.218119]  create_object.isra.0+0x3a/0xa20
[ 1774.219000]  kmem_cache_alloc+0x159/0x350
[ 1774.219843]  __pmd_alloc+0x94/0x5e0
[ 1774.220570]  handle_mm_fault+0x1adc/0x3520
[ 1774.221416]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.222495]  ? __pmd_alloc+0x5e0/0x5e0
[ 1774.223284]  __get_user_pages+0x61b/0x1390
[ 1774.224136]  ? follow_page_mask+0x1860/0x1860
[ 1774.225025]  ? irqentry_enter+0x26/0x50
[ 1774.225820]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.226895]  ? trace_hardirqs_on+0x5b/0x180
[ 1774.227762]  __get_user_pages_remote+0x1d1/0x860
[ 1774.228708]  get_user_pages_remote+0x63/0x90
[ 1774.229581]  get_arg_page+0xba/0x200
[ 1774.230324]  ? acct_arg_size+0xe0/0xe0
[ 1774.231092]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.232182]  ? trace_hardirqs_on+0x5b/0x180
[ 1774.233037]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1774.234116]  copy_string_kernel+0x1b4/0x450
[ 1774.234977]  do_execveat_common+0x518/0x8c0
[ 1774.235839]  ? bprm_execve+0x1b00/0x1b00
[ 1774.236659]  __x64_sys_execveat+0xed/0x130
[ 1774.237501]  do_syscall_64+0x33/0x40
[ 1774.238241]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1774.239264] RIP: 0033:0x7f843b55cb19
[ 1774.240010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1774.243669] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1774.245166] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1774.246564] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1774.247979] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1774.249392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1774.250798] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:53:07 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 17)

17:53:07 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 14)

17:53:07 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x14)

17:53:07 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r3, &(0x7f0000000000)=0x80, &(0x7f0000000180)=@un=@abs, 0x0, 0x800, 0x1}, 0x7)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000e, 0x810, r0, 0x8000000)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r3, &(0x7f0000000000)={0x1, 0x4}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
shmat(0x0, &(0x7f0000fff000/0x1000)=nil, 0x3000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x943, &(0x7f0000000180)={0x0, 0xc4a6, 0x10, 0xffffffff, 0x115}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_setup(0x50e4, &(0x7f0000000280)={0x0, 0xc763, 0x20, 0x3, 0x8d}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000340)=<r4=>0x0)
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0x9, 0x440, 0x0, 0x1000, 0x0, 0x1, {0x0, r6}}, 0x0)

17:53:07 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x4010, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0}, 0x87a3)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, r3, &(0x7f0000000180)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x1)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x157f, 0x8a2f, 0x1, &(0x7f0000000140)={[0x8]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000fee000/0x12000)=nil, 0x12000, 0x100000c, 0x80010, r2, 0x10000000)
syz_io_uring_submit(0x0, r3, 0x0, 0xfffffffc)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f00000001c0)={[0xfffffffffffffff7]}, 0x8, 0x800)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x50, r5, 0x0)
syz_io_uring_submit(r6, r3, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x1)

17:53:07 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000009, 0x30, r2, 0x8000000)
r5 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)={0x410e80, 0x8, 0x1}, 0x18)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000240)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, r5, 0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x30000, 0x12345, {0x0, r6}}, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_setup(0x6, &(0x7f0000000000)=<r4=>0x0)
r5 = accept$packet(0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300)=0x14)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r6, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = dup(r2)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r9, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r10=>r0, {0xff, 0xcdf}}, './file0\x00'})
io_submit(r4, 0x8, &(0x7f0000001800)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x8000, r2, &(0x7f0000000180)="52b1a7f03cfe733a4704a23cb9", 0xd, 0x100000001, 0x0, 0x1}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x2, 0x0, r2, &(0x7f0000000240)="44edf7ea7826e71914b061a1831757d60831cb9c20533a426d23dd699ed421065587c70063409b0dac5c30fc6cefa6", 0x2f, 0x7, 0x0, 0x2}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x5, 0x100, r5, &(0x7f0000000340)="157b7de45382932bcfdb6dd2", 0xc, 0x4, 0x0, 0x9f1ad6ba4a1c4226, r6}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x5, 0x8001, r2, &(0x7f00000003c0)="f9bfa0a91dff19f3acf5c20ee1aa65ca9da11e38aaf6c8fefeaadac7317dab363318ca4a9f13807c10ea21c5dc03dc804df0a80047c89aa5ba78ad2af399c6b5c1758e8165917e85689d37f42f6434b71a810aabde28d89341d571be201e58114e27aa996287fdaf46e8005d77e1595c1632730ab157f0e3caa28718108f3ae216349c18f27a49afa2143e3d45459481e706e1b825a0a922cf7cb8759902c5d36b0cd8fc12c4d591ed4d5d40e78cb65af2c6895ed4943bcaf7e195614d2f9f1ef71b4d253023abeedfdca177b84a29511ccdb6c5c5533a60eae7619774", 0xdd, 0x6, 0x0, 0x2}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7, 0x5, r7, &(0x7f0000000500)="dd999e2ea8d8596b2902a1d8cf8c30420eebab2c39", 0x15, 0x6, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x5, 0x3ff, r8, &(0x7f0000000580)="ca39c6ee14ffc390bcef0d8b20730795c976591cfce26b4af6e1fcae22806718c2a78199109f054b02b288faca5b9d4e105ffc825067219f0241daf8aa98ef6fe6b3ef77aaa2d5de38776429b4e61c09e8adceb8165998e10bd514a20dd12171e0c75ba44120af2e047f469084a42a3326cba957f09fd7962299f7f2768546ecc7d279f49a56a444", 0x88, 0x8, 0x0, 0x2, r9}, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x3, 0x7ff, r10, &(0x7f00000006c0)="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", 0x1000, 0xaec, 0x0, 0x3}, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x3, 0x3ff, r0, &(0x7f0000001700)="5de01a460749b49f1c4e139a5d0b5c06d33892b49a35c7ca1e6327a7df6761c29741c86829b8665b26a2b3364372b8b0ef5da8f438e5cdd2d96da4b9922afda4546adbec9f26fa81ba1d910f618eec08e5d5fd5bb1f90d0f970fd44609a230ca996928c8f502fc8bde905476d374affb8346aa8a87c3cfbb781edc96659e3f5fce30189ff95134474aae631c33b60b6f5b501ed37b", 0x95, 0x7, 0x0, 0x1}])
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x2, 0x0, {}, 0x0, 0x0, 0x1}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:07 executing program 3:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000180)={[0x8]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000934c45a93b5dfceb46590596c48f4b4f637565dc41a242ea8feda2005ea9a7ba4d9cf67aff11ee5593f778d189c3656b1b2f21161565ee0015b7", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r1 = syz_io_uring_setup(0x6c1f, &(0x7f0000000080)={0x0, 0x48, 0x8, 0xffffffff, 0x175}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r6, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
sendfile(r4, r6, &(0x7f0000000140)=0x4, 0xf5)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1786.327458] FAULT_INJECTION: forcing a failure.
[ 1786.327458] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1786.334327] CPU: 1 PID: 16918 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1786.335826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1786.338268] Call Trace:
[ 1786.338834]  dump_stack+0x107/0x163
[ 1786.339609]  should_fail.cold+0x5/0xa
[ 1786.340435]  __alloc_pages_nodemask+0x182/0x680
[ 1786.341426]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1786.342713]  ? lock_downgrade+0x6d0/0x6d0
[ 1786.343611]  ? do_raw_spin_lock+0x121/0x260
[ 1786.344566]  alloc_pages_current+0x187/0x280
[ 1786.345525]  __pmd_alloc+0x37/0x5e0
[ 1786.346308]  handle_mm_fault+0x1adc/0x3520
[ 1786.346436] FAULT_INJECTION: forcing a failure.
[ 1786.346436] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1786.347209]  ? __schedule+0x850/0x1e80
[ 1786.347224]  ? __pmd_alloc+0x5e0/0x5e0
[ 1786.347260]  __get_user_pages+0x61b/0x1390
[ 1786.352342]  ? follow_page_mask+0x1860/0x1860
[ 1786.353325]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1786.354347]  __get_user_pages_remote+0x1d1/0x860
[ 1786.355358]  ? lock_downgrade+0x6d0/0x6d0
[ 1786.356260]  get_user_pages_remote+0x63/0x90
[ 1786.357204]  get_arg_page+0xba/0x200
[ 1786.357999]  ? acct_arg_size+0xe0/0xe0
[ 1786.358832]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1786.360004]  ? trace_hardirqs_on+0x5b/0x180
[ 1786.360925]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1786.362087]  copy_string_kernel+0x1b4/0x450
[ 1786.363005]  ? do_execveat_common+0x3a4/0x8c0
[ 1786.363997]  do_execveat_common+0x518/0x8c0
[ 1786.364940]  ? bprm_execve+0x1b00/0x1b00
[ 1786.365835]  __x64_sys_execveat+0xed/0x130
[ 1786.366764]  do_syscall_64+0x33/0x40
[ 1786.367578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1786.368716] RIP: 0033:0x7f48cbaccb19
[ 1786.369534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1786.373578] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1786.375235] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1786.376807] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1786.378372] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1786.379946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1786.381508] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1786.383144] CPU: 0 PID: 16921 Comm: syz-executor.5 Not tainted 5.10.123 #1
17:53:07 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x5e20, &(0x7f0000000280)={0x0, 0x48cb, 0x1, 0x0, 0xeb, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000340))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000380)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x4004, @fd_index=0x7, 0x20, 0x40, 0x8001, 0x2, 0x0, {0x1}}, 0x1000)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x100000001, {0x0, r2}, 0x0, 0x0, 0x0, {0x0, 0x0, r2}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x63ff, &(0x7f0000000180)={0x0, 0xed6e, 0x10, 0x1, 0x31d, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000240))
syz_io_uring_complete(r8)

[ 1786.384671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1786.387273] Call Trace:
[ 1786.387837]  dump_stack+0x107/0x163
[ 1786.388632]  should_fail.cold+0x5/0xa
[ 1786.389458]  __alloc_pages_nodemask+0x182/0x680
[ 1786.390461]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1786.391754]  ? lock_downgrade+0x6d0/0x6d0
[ 1786.392653]  ? do_raw_spin_lock+0x121/0x260
[ 1786.393586]  alloc_pages_current+0x187/0x280
[ 1786.394530]  __pmd_alloc+0x37/0x5e0
[ 1786.395312]  handle_mm_fault+0x1adc/0x3520
[ 1786.396239]  ? irqentry_enter+0x26/0x50
[ 1786.397094]  ? __pmd_alloc+0x5e0/0x5e0
[ 1786.397930]  ? trace_hardirqs_on+0x5b/0x180
[ 1786.398870]  __get_user_pages+0x61b/0x1390
[ 1786.399785]  ? follow_page_mask+0x1860/0x1860
[ 1786.400757]  ? irqentry_enter+0x26/0x50
[ 1786.401617]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1786.402787]  ? trace_hardirqs_on+0x5b/0x180
[ 1786.403715]  __get_user_pages_remote+0x1d1/0x860
[ 1786.404753]  get_user_pages_remote+0x63/0x90
[ 1786.405704]  get_arg_page+0xba/0x200
[ 1786.406501]  ? acct_arg_size+0xe0/0xe0
[ 1786.407330]  ? downgrade_write+0x3a0/0x3a0
[ 1786.408233]  ? count.constprop.0+0x1b3/0x280
[ 1786.409176]  copy_string_kernel+0x1b4/0x450
[ 1786.410110]  do_execveat_common+0x518/0x8c0
[ 1786.411029]  ? bprm_execve+0x1b00/0x1b00
[ 1786.411922]  __x64_sys_execveat+0xed/0x130
[ 1786.412825]  do_syscall_64+0x33/0x40
[ 1786.413619]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1786.414721] RIP: 0033:0x7f843b55cb19
[ 1786.415520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1786.419477] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1786.421122] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1786.422661] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1786.424220] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1786.425763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1786.427297] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:53:08 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@vsock={0x28, 0x0, 0x0, @host}, 0x0, 0x0, 0x1}, 0x200)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4000002, 0x40010, r2, 0x8000000)
syz_io_uring_submit(r4, r1, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x12345}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x276a, 0xe6c9, 0x2, &(0x7f0000000180)={[0x7ff]}, 0x8)

17:53:20 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x152480, 0x0)
syz_io_uring_setup(0x228d, &(0x7f0000000280)={0x0, 0x9fb3, 0x0, 0x1, 0xa3, 0x0, r3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000340))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r7)
syz_io_uring_submit(r4, r6, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x7, 0x0, {}, 0x0, 0x4, 0x0, {0x0, r7}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0xfd, 0x3, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x201002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r8, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x6, 0x80010, r2, 0x10000000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r9, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)="02c62b8f9652", 0x6, 0x2000c000, 0x1, {0x0, r10}}, 0x1)
fcntl$F_GET_RW_HINT(r8, 0x40b, &(0x7f0000000000))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
syz_io_uring_submit(r1, r2, &(0x7f0000003500)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000034c0)={&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003340)=[{&(0x7f0000000000)=""/8, 0x8}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)=""/75, 0x4b}, {&(0x7f00000022c0)=""/4096, 0x1000}, {&(0x7f00000032c0)=""/111, 0x6f}], 0x6, &(0x7f00000033c0)=""/245, 0xf5}, 0x0, 0x42, 0x0, {0x3, r4}}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000004, 0x50, r2, 0x10000000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x6000, @fd_index=0x9, 0x9ada, &(0x7f00000001c0)=[{&(0x7f0000000240)="ab0451d6a7f05c30dd93624aa3da5cd91155949ddfc05e667a03aebc366707c544e58285f2edeea82fb6f532c32d77ba63927c0ff257d48fba9fc2401c5750eb1f5ca98669dc20c419900dacaa19f6ae97063f29c32ba562cd4b644b325336c27168a1082122fba3c4761dc59c9410ad3d65d9e8cea0afb31d320fbaf7db699c3e7d02cf0f01189ae539158b7ce122079484bacc6275fbbb54bd6e345b0ad1b6f64e29e88705468acfb6e800fcd11263fa50aa84231dee134aa70465e485c09339b937579a6a5b131d3f359da818e42c42", 0xd1}, {&(0x7f0000000340)="76a5a07a382b1c4b780212a8ba78238632102191ea8ecfa3e87d62d0d033f53aa63a031cac52d912e799c2c8303cab33cc3b5bb92a625be417344e9107ab136147a545c13b35071b5df530351b7b919e3edd82e3e8e07c6d7a43093c44558493f35ba3b7517e86422b61d890e5d40a0cfcdc490411aa92f849a517d59e5e53ba7dd4087a1492a6da362d7134ce78baf289bf297b7513ddda9f551d0f9161218fef4f2f66f9b7703e7d1a53", 0xab}], 0x2, 0x4, 0x0, {0x0, r6}}, 0x9)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
execveat(r3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000180)='\x00', &(0x7f00000001c0)='\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='+*\x00', &(0x7f0000000300)='\':{,^[\\&@}:\\@**\x00'], 0x1000)

17:53:20 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 18)

17:53:20 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 15)

17:53:20 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r2, 0x1f62, 0x67c1, 0x3, &(0x7f0000000000)={[0x100000001]}, 0x8)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 7:
r0 = syz_io_uring_setup(0x2620, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x40010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x4000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x12392f6e990b9e, 0x0, {0x0, r5}}, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, 0x13, r3, 0x0)
r8 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000340))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000400)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x6000, @fd=r8, 0x5, &(0x7f0000000380)=""/68, 0x44, 0x2, 0x0, {0x0, r9}}, 0x81)
r10 = syz_io_uring_setup(0x4b75, &(0x7f0000000180)={0x0, 0x2ee9, 0x20, 0x1, 0x97}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r11=>0x0)
syz_io_uring_submit(r7, r11, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x6, 0x0, @fd=r0, 0x9, 0x0, 0x5, 0x0, 0x1, {0x0, r5}}, 0x1)
io_uring_enter(r10, 0x58f, 0x9801, 0x2, &(0x7f0000000300)={[0x6]}, 0x8)

17:53:20 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x5)
io_uring_enter(r3, 0x5f8c, 0xdff5, 0x1, &(0x7f0000000180)={[0x205]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@nfc={0x27, 0x1, 0x2, 0x3}, 0x0, 0x0, 0x1}, 0x800)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x2]}, 0x8)
ftruncate(r3, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
openat(r2, &(0x7f0000000180)='./file0\x00', 0x502c0, 0x102)
signalfd4(r2, &(0x7f00000001c0)={[0x7]}, 0x8, 0x80800)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x28c2, 0xd46f, 0x1, &(0x7f0000000000)={[0x4]}, 0x8)

17:53:20 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000009, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000000)={<r4=>r0, 0x0, 0x73, 0x1})
syz_io_uring_setup(0x54b9, &(0x7f0000000180)={0x0, 0xf6cf, 0x22, 0x3, 0x354, 0x0, r4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:20 executing program 1:
perf_event_open(&(0x7f0000001580)={0x7, 0x80, 0x1, 0x40, 0x7, 0xee, 0x0, 0x0, 0x80000, 0x5, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, @perf_config_ext={0x0, 0x1ff}, 0x8000, 0x100000001, 0x25, 0x2, 0x5, 0x0, 0x89, 0x0, 0x4, 0x0, 0x4}, 0x0, 0x5, 0xffffffffffffffff, 0x2)
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
sendmsg$sock(r2, &(0x7f0000001540)={&(0x7f0000000180)=@nfc={0x27, 0x1, 0x1, 0x2}, 0x80, &(0x7f0000001440)=[{&(0x7f0000000240)="619e10377ab4e32e844336bc0afda8d7e240719c27606a39756ef505fc67db6c24a85a6e929017c13850bfea8cc06d744314b2e487075a81d9ba8dc903c8ad0b3da449eba6697ceeb3ec46a6ddf6dab8dad0bd2cb347686b2064ad7d1d1181c8bb33ec9222accb84539e", 0x6a}, {}, {&(0x7f00000002c0)="c741a69774e50b070b91f83b1830078f3e95c1a9909017021c8a2408fee14ee555e80844676be01e75054a4eb18286c0dcbf9b90080f6a62bd191e7819381299878f95483c4dfb5279c5d2957ecad4866343c25b957eea64c463b7e1dd4e449f8c6941d9d16dd67690cafa7f32c50235b5d910d456b866a03ae4d6471d0f447489bf9c3afc3848de9434bf520174b4eb6e5668232c9e99c213f45d5b623f2f7d471a4c2ed20133642044c6e1787d38413a26605e48592c7ff9414aeca000fb3bcc00ec0abf6da28fa868fc5c60a769b8", 0xd0}, {&(0x7f00000003c0)="6bfbe4026c65e6f8ef044d942d81ed0e7f1cb49447f13e9c2a0ce7ca20df0bdc622a389edfd7e3b9bba3b72fb64bfceb710cf981698729776da4", 0x3a}, {&(0x7f0000000400)="5196040dc85a9c92a3814041728bf92948105cd9eba270ca78c7eb9042b5de658a45f905a035fcb545031323ef726486a9816028600035afdf25b1bb8898b99086e77adc1dc7f0d02332fe762fe1be75aab546780ced73b2f9fdd231cfefae0449482773cf1a3a17bf09983e950c99e865823e01d9e6461d901b83f1a1d7f726a78d5dc354bb9ebd3b2d495602b55fc08a5fca9445a46a194f93afb179a538990951abc42962162da84c21d92b07a74deb58329dc29ea2b3608663660e3025903e180d1a87f62b14b0e71451a11c1b8a5a3ced273f0b9a9c6c80d36ca72db8f5cb9124893400e2188a28faa727b5bfac6150a704c39471134dcce8b6237f23535fa56b7d0123bbbaba4614042d11519699037b8b1522dc754d314b4409209736ce92fb0343679124b6be6dc9871c6eb9364871ac4c09a01d19f3803134703b20b9961383d52b85894d7a4ce9d7bd6981d12d7eeec129cefc621c6d16a73670fc0b6b5ed60824f08f3d1d06d1121ed403ec518d8fdfaf39b01d0a5749c01bcc75a70113461143490336ae949d29b4707eb63dd59a104f0d18820ec3c821d73cc2034cbb5f122f082f7c07758d00be45c5034a2b7c3200d8a6f7a3cb539f2e3c5c26fb2c8855283fdd9836ce807652a4ae50db530a53cfd4c0486f3a16c555088ae1c25f1ac6d9ceae91cadc35acd6aa000f18c0f68a6765035d5009732560f6fad3c1aeef5def146b5598b988b61fbaf0534bb02aeba4b26422b6a374ab97c9a2b7d36e7770188f415c45204f919e4e1823dc1118b7d7af826353e879b1513d4dc413aa9be5eae97800d2af24e96427861ca507207c56940cb2c5e7f0c62a42bb17d53b46495dbb727ea25ee0a2a160b90c68454a7979ef685629ae4886f1845f49e6562dc4db647fb3312d46bc25a276f6082a734646f22828e76a1c36e344f6663019f3610020314b8084f3a9df4de77749c5c84d86e2022d4f38457caec38f0e2abdfa966c1798af8fe1605f3817a2df64fd066f9b45cff81c286f576d794c3cae9ea8c5f28d10ed92c63dcb241592e9ab57a5be31f21e41417c56dbe570b351baddea58a0940d4f7e2a357accade252065f718effa375f2b8ffc7b8dbb0f9096166372116b8634c36074591c62224dea5fbae830ab5fcc22fb2c77c4a9319aa486645199aef39ab5efa102f70fe9f9e6c176d3056fe3645e888d3a30db7862b8823094338114e53c7c9150218c0dbbf9361506925d208a3c9e7680039d72f4c086b88b10a9ea626c3f23665f5aabaa7ba93a33764f87e73346262b7f7455c0c0a8bff9ecbcf40a375d042daa0641624e41fdb1c2ffd824eb9962b291adb5953d620cdec3d15202033204b6351b2b0e19bb99ca9d01d34a206d9a27c2caebfa3f2aa0e49b89f7b7e8db95224c8ec2f891148aef8d30a0f1eb05be71408e719dfa40b6ad5c6616f25b7ce7c1521ab73fe7c370fea31478cb01bd1c963b729d3de7f8fb599cddc3bacc039751a5d8a00d45d6bba07f5d601d3864ccc9a995003e63ebfc18751b846c69f655f9d274aa3326a3ff0ad7e9d4c8ab5d12070256bd2604d5c745d45c254cffe703ff25efd0bd2dcb20eadf69c3305f73b74accbbb78af2e0ad168f8672f4ec31979064e51fb0b5d212360618d01f90f3da488a2436fce5156788e20dcf95122584bc6de7e6201132a085633d882068a65976c1c5b7cec5f2a6838d8a27b25ad9938cc8ad4e7c198209a47dba56c4acf7ca73ce7b0fb9638c97e780e4fd065d04d96c71fa2a5c7cd65f1553ce1c763e9aaef3569bf525fa305a9af1804558fa2a305c762f05e63a46c58f0b7c98ebe5efc4b2bd8b0b99ebb76cd7c01c9f61c927c31027a5a0838db85fe50df9cd557d43091e294a9c6af720531ac9406c49399c318f1b02c39af3de37df37a6ffa8743f641440edb9b5e10549791418cedcbb5ea4cec1d08bdd8bfbfea7400bab40dcec6291ba357076c3814d3256659e8690d3ccc3bcff0991daadc8ddc1ef42a5e008b96c39a68fb4472a23abd509b385ff4206c158641e2dbe5bf87cf8d5721e1d9f5fc587e65a9ea251c6e4067822b49cfa067b02cf81a0f4db0938e0be145450d169a72a4b920f02d21d2a4e581cc303d05e19ce6a258b52adb00e2718cc205c832058e0d7baeaf52cd04bc247d843c342b84909a7fe3367f7e21d9ac9b530e26cecd1fa2bb43348472599605d8eac2dea9609cdd8992555858209e99366bfdf634f85db139fefbe3eacfb7f05b1a6311265459cec333d8f721fd04b7a42475ef81d821d8ca0bdebba7b94454ea95b155c00b62f081d918951f3fc8d8ce3c089c7f4d0316f1e63d677459b7513b67744643e186a5a42c64d8f31bc9fb672d6fb6d9d7668bd3d6d8dc6c64de9564bbcac45f29bd0e3e9b6683634fb95a9d25ed301490928058a22f385a1ccc91e127205119e85b568937859d33ca64dd9a882385444d336ba5a848191f198cf63a2f095e861ce8c3a0c57d1150813331e67bdc6de18d84df5670a90ba36a21bf6adde55e14f9e30c707dc1da5b243894a7830fa2cc97a1eb166b4261e7b7fa7b28c100a85f9b58f48a7ddc551eb9343b7122b93e86e5484dd820ca1ed6d02fee6a9c3b4a8cfc18ff5600cc61d43f0c98b7bf030d015cbd182123d6dda1d016080d34c719f4483a11362db04b1497710de3a8f3aea1ebe413a91f958f639b4092cfeace84ce81c85e1f29c1c366c5385426933ba4d82575306c539e6a09a0b0d0c0fbc633cecb8793c58314bc595fdf4e90ebfec006a43798a99cabbb1bf491454768dbd87d01ae9a3e3162ef22ce1d8746eef5e67b348bb25ef67099715831bec604955f527f1c2305c25325a7fc378120993094f54ab751bfe537204c0dd1ce6a466ffcdaf614c5c13156699272f779e14bb7db5a6c7749b55aa3de489b8bbac0f052af0a7cc4990626b9f3f576c2dbc16dce1742d23f12147aaafe27c29eb508a15fbe1f22cceaa58e4aa61fb942bcb06f646e4f1a0994ae065399659163891df4f32f9191f63cfc57a354ff7b7db15c1c5b95e713ebf6556bb122a4aa9d49f7a5879c0e3dc86da6fe77edaf013577fdcce0037d2b33025c1a0cab921db6946f8aa462f931f43964444ac0670d5754f435eb480befa3519fa43ebb759eb4c9e34141bfcc6994b872c232cafae4cd5f8250055a2681189f817b98d748da1f58eebb3539c701da30dfc2ce63b53b5499ec36ba6f36b80bf0fadd9fbf8a86919b3cea5e8fbeb258f5ed26689a7005676ef45877848c6d766d68f16ab0865f04d8a0019dd1c3b5c301803bf8d6a9ad792642e37697fd3de869414f40d90c826cfd0bcacc55342b96e0d8928cfb805af48530e40f414ca302225b4f99ed104078ac9a96cd78683327791270e0aebd9d250b0c2c97bfc6327d0da83eb98a0bf9f6a5735dc4ba313f08757432c1d0dbd8e60f6cb0e40d81568aa08e701d4ebedfef9f1339166dff952b8903287be1eb9fb56d537397a6bfb64a155d3a22ec907d166589bb4edf904601da7f4fef5353e6ab9772d6f0e2aab17d3ed8075196663b769c4a51d4d3dceedf37c9423eff9d812e46ec2a600d5f3d3246837e2cd804660b1595b269893abe4cd1730e99f91f69d421873bab6434f54b029298e2848f024bafd7cf30f4863a08b49ecbe18c7fa3e64bc795e818054f6821f7f1d5692fda6c402ad743c8171961ed2c9474e7d543038c973b5fc19feb7d55c50fb3d80852295ecba0e1ea376069c454b2b82c6007ba5af8527128e5e07cdcd4b54e294a4958e6fc5fdca13c8bcc83346132af01ced5b8134274078c71511df01e30e893798eefb1cc6f04304d412f2fd8173c07009ba00e78a76688092ad98f56c1e1724f28d36247a22837b5f2466d008f21670d2f7281e45135f27b3d5646317193fdf12fa33dfa73fe20721e233d4ff501979bb273682a5552ff0ff13b52d5eed11c53159ed0918c593f5377968bce3e94e65cbbff4a80fa7579dd0feb76b1ca0f97d433b863c8fa77cdc8aebec4c563dd685d61ceffdc2956759eda893037a229679ffcd406fcceb01adf7f48e4c6548ba484735876e546798122095bcbcc54ff6e66de3f77f5cb1d74f7e16a7c2eaa24de70c11db742256e57adced2b6be633e8c65e05a5b952334dea8e1fd18cc8cf7d7c46f9aca72f6dadf24f40dd2743a3e316dcce083df97a83222512ab07c1ab04387ffbfd4c10dbca833709c7fc9c6277d80ad3536dcf1109aaf823c496f057f7e985a3400fa06695ab4c39b85278b9b1b5eb2a2d0469e8375fbf1b18807014c6ce4009b542108f555ab13ad945a9db4e0873bc6ac7f9854e82a98f463ceb6d970d1c1681168374b0f8969d4d1adbace11fdc144bb995f8bbc7ab78e3a65041df5436ba58f53aba4284a0686c5155bca19defaac20d4b0064554d6a3cc6e3640aa95e6e8ff660a2ded4c2603c6119f59f1b099080be06e8137cdf47d6965c574694388657a2259ff13c0f974035fb23a26292098ede736aba960626d9d974ae2e172b0a7ef44ae288446cad8eeee36bbd1440499720d3a0df3401221a2475c0f8134f9641ce2a13694b078173a635522036ce6ca60b5ab441d11f7c44f37f5272f37daa587a804d6f0178c57f1989950c8d67e5694dc9b43f42638f7fdb7d68c6af116c6e4444d2bf4c718e2d0b9ef94c6fad3b268c325384396db4285ab97a5b47b28493e54e5205d1204284b25b0282899a424afb3906e0102d0d6d560cf21dc417042280dcf5206fad1fec0acf9020e25e6a89f0252cb17476d43d6bb17f366cc5262d67526af1537902979ba405293bf33b6798bc0498164e3b1d104a585b5acafe4880656e75e47b96a2e33745d489cfbeb2e759927c8c17ebd3a673d1a9887f81f75163eac4a83e992a440c0b182de47b7a4bef4c808038eae9f4379db40449d7b7eb987bc30fd9bdeedf747ca7660737159e800152d751af545e4873393c48a9d0c852403f2ebe4ae82b276828c1092363aaadce27fd114a4247d907014377149c98ab67a67e9340b6c37f507f937d299a57ced804e46f1c85fea6a331cc5baa873757fcd6cb3335a0c4cd3152561b15f262f6480cfe04e4e9850a42fc083cea51eb61ceb23c59d55fd60fcea7f8fe44088c790454df8ab5905c1f966e70fc13acaa7f7a7762bf4019e736ff77ba192ffe26fca0fdaae2bf3f83094b1245428451eb0d7d0d3ea39b45e8bd3b78276f06b7ee791126116d6f4d033516aa0b4428a3fd91ac271cf4743d3953156f9923318f4251d84012026b501db806b4768c6461eaeece1152e0755bf3e9c6a8bda4ca85bed3abf8a257a0543b36cb00dfec5ee93b3e714d527ea1d55f81fad5db35d77854331cd6354588146cd9558f53db7827ae8d3612949aa03935a3961b519d1e4560498aabb7a0ad753c847773cf39bee7c47b28130c75d2b2cb40d6da003901a5d1eb99ddf647782910273024d000638072a0655975b383fe631a16c063fd96281baf911125bbd9b0cd4ec66dc9655c985d6f3850c65da7c13f556bf61bbc129feefe03b3d516e7aad35192373a3ebd153c88f2821dfd67618a859bc4ac979d8f8af1fd9d2a3c10e152eadaff8f2b919794e39980c321596a0ca365f8f865de28d91a53209df121dfeeb8997224bf50a8e1bd532bb914a9f70422e132a7b1f3fd2def86d46f8e0d85964c352173bbfd5afb1d499064390a939b810b54c09e9f4642ddbb0d553e424849212b73555d3d28ec4ef7b504ce7fdc206", 0x1000}, {&(0x7f0000001400)="3cf45c406eb1dc65b8f849460c3579a65294509ddec0c9a85758f8cf9a93bdd7b064f5d67d5ce0f74abca310b3e7a1322ba09c9f8122", 0x36}], 0x6, &(0x7f00000014c0)=[@timestamping={{0x14, 0x1, 0x25, 0x1ff}}, @txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @mark={{0x14, 0x1, 0x24, 0x3}}], 0x48}, 0x4000014)

[ 1798.932726] FAULT_INJECTION: forcing a failure.
[ 1798.932726] name failslab, interval 1, probability 0, space 0, times 0
[ 1798.935622] CPU: 1 PID: 17081 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1798.937125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1798.939528] Call Trace:
[ 1798.940106]  dump_stack+0x107/0x163
[ 1798.940877]  should_fail.cold+0x5/0xa
[ 1798.941695]  ? ptlock_alloc+0x1d/0x70
[ 1798.942515]  should_failslab+0x5/0x10
[ 1798.943152] FAULT_INJECTION: forcing a failure.
[ 1798.943152] name failslab, interval 1, probability 0, space 0, times 0
[ 1798.943340]  kmem_cache_alloc+0x5b/0x350
[ 1798.943362]  ptlock_alloc+0x1d/0x70
[ 1798.943378]  pte_alloc_one+0x68/0x190
[ 1798.943394]  __pte_alloc+0x1d/0x320
[ 1798.943412]  handle_mm_fault+0x289a/0x3520
[ 1798.943438]  ? __pmd_alloc+0x5e0/0x5e0
[ 1798.950845]  ? trace_hardirqs_on+0x5b/0x180
[ 1798.951809]  __get_user_pages+0x61b/0x1390
[ 1798.952741]  ? follow_page_mask+0x1860/0x1860
[ 1798.953738]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1798.954866]  ? trace_hardirqs_on+0x5b/0x180
[ 1798.955803]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1798.956999]  __get_user_pages_remote+0x1d1/0x860
[ 1798.958023]  ? __get_user_pages_remote+0x2/0x860
[ 1798.959042]  get_user_pages_remote+0x63/0x90
[ 1798.959993]  get_arg_page+0xba/0x200
[ 1798.960804]  ? acct_arg_size+0xe0/0xe0
[ 1798.961650]  copy_string_kernel+0x1b4/0x450
[ 1798.962589]  do_execveat_common+0x518/0x8c0
[ 1798.963521]  ? bprm_execve+0x1b00/0x1b00
[ 1798.964417]  __x64_sys_execveat+0xed/0x130
[ 1798.965338]  do_syscall_64+0x33/0x40
[ 1798.966137]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1798.967245] RIP: 0033:0x7f843b55cb19
[ 1798.968071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1798.972035] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1798.973681] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1798.975224] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1798.976771] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1798.978308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1798.979847] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1798.981476] CPU: 0 PID: 17084 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1798.982962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1798.985336] Call Trace:
[ 1798.985889]  dump_stack+0x107/0x163
[ 1798.986639]  should_fail.cold+0x5/0xa
[ 1798.987426]  ? __pmd_alloc+0x94/0x5e0
[ 1798.988232]  should_failslab+0x5/0x10
[ 1798.989013]  kmem_cache_alloc+0x5b/0x350
[ 1798.989851]  __pmd_alloc+0x94/0x5e0
[ 1798.990627]  handle_mm_fault+0x1adc/0x3520
[ 1798.991516]  ? __schedule+0x850/0x1e80
[ 1798.992319]  ? __pmd_alloc+0x5e0/0x5e0
[ 1798.993125]  __get_user_pages+0x61b/0x1390
[ 1798.993997]  ? follow_page_mask+0x1860/0x1860
[ 1798.994912]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1798.995876]  __get_user_pages_remote+0x1d1/0x860
[ 1798.996855]  ? lock_downgrade+0x6d0/0x6d0
[ 1798.997718]  get_user_pages_remote+0x63/0x90
[ 1798.998621]  get_arg_page+0xba/0x200
[ 1798.999410]  ? acct_arg_size+0xe0/0xe0
[ 1799.000226]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1799.001341]  ? trace_hardirqs_on+0x5b/0x180
[ 1799.002234]  ? count.constprop.0+0x1b3/0x280
[ 1799.003149]  copy_string_kernel+0x1b4/0x450
[ 1799.004041]  ? do_execveat_common+0x34a/0x8c0
[ 1799.004985]  do_execveat_common+0x518/0x8c0
[ 1799.005887]  ? bprm_execve+0x1b00/0x1b00
[ 1799.006738]  __x64_sys_execveat+0xed/0x130
[ 1799.007615]  do_syscall_64+0x33/0x40
[ 1799.008398]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1799.009467] RIP: 0033:0x7f48cbaccb19
[ 1799.010231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1799.014052] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1799.015628] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1799.017114] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1799.018567] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1799.020036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1799.021553] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:53:31 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 16)

17:53:31 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x25ea, 0x38c9, 0x0, &(0x7f0000000000)={[0x2]}, 0x8)

17:53:31 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 19)

17:53:31 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x2d93, 0x0, 0xfffffffc, 0x30c}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x22000, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000a40)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000a00)={&(0x7f00000001c0)=@ll={0x11, 0x8, 0x0, 0x1, 0x6, 0x6, @local}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000440)="7132fb59ba354a56063c2800fbedaf3a520edf9bf5fa5b7f62042e2d89296a1fa247ea7c2a3785ea00a40161ed9b4cde0f7828c5e35e5a39ca3b79befff5c971b66e16a38bb0d9a632a591f745d1a5d5bed96c29ffd6085afc5304b7ca08de9e4f80c6a05858ecb1aeac2f3258a1dea7ba1e095ea817a337217f97807d47d562eac408d542b1ee649b65dd8d8e5f3e8457e5c24eed90ed6cbd3ebe7bf0550e727ca0985cb61c312d9285e764f6440d70284f54d704d5bf806ad109273e23127b76ad0af3f66a615d2910ab7e705bb02e62c444a76a705dd5dd772ce46d22bed061b8f12d3fe77474091b153a7c855e", 0xef}, {&(0x7f0000000540)="d56596cdf5ecf2ef44f19bd20d74440b", 0x10}, {&(0x7f0000000580)="5450a2dbda9bbcaa6fac423911219e3f6795be88d1c6a43b9d7609142f664f11978d4577b090647c156dcfa38622d610bbb19751cd9975413e159348cd90be8244a5b77883caff1e01d0bf1b68f3c1cf7940f4ba50", 0x55}, {&(0x7f0000000600)="7b7ed48971429156436f86693eb02af1059fe322f70b50f5d13562ad14eaebb9b766ea5c6ece4dba209ce729df9e66b3d4e166fb76cc13", 0x37}, {&(0x7f0000000640)="e588c2940f58e3778054dc0840912c32a283257df17b7ae1d322f6f7403e419b246d4f981922e318d730f5e3efd97949443e0b759071da180ff53155e99819626a585a38049d0e363d0e8a5d833cfec1f430c080e5608e2c1f594589e6a1a50072615f958d2cec214f770b3b659765ae6d8356a20521782d6685d929654a759446e0a118c4eebe2718b1a89337505042190f4b86c5289d0b35c4bed6e1ad42c7c2074def21abc0945705f44b2981de6f2b998b969e6987e5a783553c9c373222fff1953525ede3f042f216c1aef719d04631e2516fa4e7b6d1e3690d378bb2c3d28b976c", 0xe4}, {&(0x7f0000000740)="25412b0d7436887bbc3607ae75d786059575638533b1ab145a6723a29d9e5b7c4698d5111a57c3a150168a19b9dae0feb93559c10508179a862ff687dc47f959193054e99750992af349d19c81f0bb018ad3f639538c067db16ac3", 0x5b}, {&(0x7f00000007c0)="d7473d02d4fe07979a877dfdd035e8c764db928d22d0d84a132a6b7f32ef3b703a6f01a8c0f1a24002d3d393f748c38cd2395c4a9ecbe3403a56e5183e8c7de02934f4a3148fcc20d0acd2bd578b1f881f9fed89dcf550fea7ae2620903b30f3e8e76e6cedb5ec16c921b7d1dd1c876ba7091cd267db59e2f676ca621ade7c317077fc2ab21be891f188d4feda8d51e09499252a5313b500158cd85817f7878c0c1af0cb0149b91fcf19f73b821cfbe84fc12bc9c74de384f13a120d03a023b7169c98dd43f344b6f651ccd3eaeda2bb9f2c3c6100c8d3e9d104950a67fed0f1555fd243a79b525c4c8721ef6da7b1cd4d98", 0xf2}, {&(0x7f00000008c0)="5f398c22ce8da05dbb883aa722ece741c5870dada265da49623c3fc7b9ad3979a011ce417f6c06c0", 0x28}], 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="58000000000000000701000002000000cdefa4b0e0b6eb1b42249fb731e0819df840e28f62e66fea118c3f82babcb9849a2324b41cefbb4244e9d5697964392a172b189090bc9755dcfc133a788cfd69a257055158a6e7a49de010219100006297dbfe88723da6a8e41931bd137664636165ac98993f8d3ffb441b337f907ce81950be681f13909e906e2f78c276ca03a14ac6edb86e74d80b30b5adb5d3de0e0f59ac87d9e1052972da68499c95c207de04944ed33c974f6d7577322207e8877de70098bc0d51824b93f8d56f9196f6207a3e253f6511b5a86f332804fd75c37780f8da10054c970d3708cb0a75e6c9dd637f1de7fabd"], 0x58}, 0x0, 0x4044804, 0x0, {0x0, r7}}, 0x80000001)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f0000000180)=[{&(0x7f0000000240)=""/145, 0x91}], 0x1)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r4, 0xc0189372, &(0x7f0000000340)=ANY=[@ANYBLOB="011f0000010000000800f100ea678f89a177701468eb274143339dd4b1212fc36941c7f2bd53d0cd24bbbe6a207b9c74e1699eab3d31d3c4f49274432e2969e49ee7abd48928e4d5ba9475d9247f197d69ee2278926cbc5627bbff9ca68f914c0b7fb4f4c96576a32849f5360487a99221a5db6d7e730bb850d0bbcf1d89e6a77839d59a89c2852b424dd3dcaf647f537f9033ad47bc27aeb77f55991295b63164fbfb379b58f2bae6130c503e81b5fa80f289f8a9cf5b33824d4d72d6911868bf738b000000000000", @ANYRES32=<r9=>r3, @ANYBLOB="f50900e7ffffff002e2f66696c653000"])
r10 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0xa, 0x0, r11)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0xa, 0x0, r11)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r11)

17:53:31 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00')
sendmsg(r3, &(0x7f0000002900)={&(0x7f00000002c0)=@l2tp={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000001600)=[{&(0x7f0000000340)="17722a07569c429e3c56f0029b96beeb44661d4b358efc13c8aaa21271a48d7fcc9554bbf097aaa6910325846f6786ec05eca4aee7979a286131eacf4b9fd2e8de075f45e197b63227a220db93a9efc81bf5a0ec707faa64c6f9be674f8b4833fdee5485d850c73e2e732a9ed7ead1c5cc3a0dd6151df417b2d5437605a460c35f2746013a967876cd41ed498d348bbb9d6c8b431ecd55e2bc682987ea20f40586de086e4215a3f48fea2a6f155a9e1aa59b1d3923deac3c65183ed4b7afe71a473e0e32ea177ba9358757e8688abbbc26255ac34301578c79bacf885223f267d8fcd2863f1b", 0xe6}, {&(0x7f0000000440)="022a1f7c6a89f5dfcc715b315902f8eefba7f38f0ef70d43cd04864786c0a217ee550d7cbfec0728e7761e5abef003dd2c009fcef3166b2ba9933992fe96a35184eb67482181c5e0aa20776c5a263ecf5f8114d1ee841ea5bfa28cba310108f058dd33c0e717d5d1b74ad10c6093394432cf70a29f16fc80a3d817adc472a55403d15cb13eafa4cfa8299e2694ed6636d732bcd1decb39d768696f1b6aac973e92a692fb0684a51b26f1a67a7861da28f8f832805d063a4f5363639bed43b1c263ee0c78c6", 0xc5}, {&(0x7f0000000540)="78f981861c4e40a1d1e21df61e83c874941009029af4e2fdb97059706815da57c47992cb29a3d9b3718f65c823cb6bd1c78d84a19c1ad37ccb43f536f07ffe6c6c574a7b03af9725ddd6b9c068d6be95ef7bcbed0a8a7cb80666686afedb6f9c2b7896ddefaa4740b7f8d7590b7749a51410375d78a01bbcca3c85203c0da32d98bb6f4ecb80b7c3dd7ac538b2e6f49d0bbe0a29a321976089d2320dfe80c0b44902f09811707505d325bc3842ce2e47fcbea06e4effd08f35356b07618b5a", 0xbf}, {&(0x7f0000000600)="0ea6a9d83b4ff71643003fbd7b3a24641a36d03b7e6a5b5ca12357cbd1267c165106b5930dc82961f232ceee63ad7b6cd33d30aa887c48d48cdc70252130ef40d4e2455109ab80cb3e98c0fa230113fdd1d24e5a7db3cb70ba08c7e44f02816a2626f6b2a6b7412f76fdd12b75029ec5b42844a0711aa0bb1c9a54df68d85c0aab52f77fd73ba6532d162bf605dc75da9a601ff73f824f4deb135e827c5ab3289fa99a46f095f6da1d17511822aeab5d62ad5899e0cf97a0616114c89e6f00d75338b50419d68b538ea812a3e6a0001ffb8b3f3845b9eefcf62fc2a7c6c10f67ef642c9b1093077c6241040bc48db9d04a7758b388645be1a27b244af615be1b195e5e51ddfd90d4035f1dcdb604f6d6800c3c4d29c03b5e5f6481059d265b9bd0755c0f0adeeb702d90a8767090c908d18308be8366a65d22da49a3c01af74d7834d16aefba4cb9762bf26ca5c40907ed9955eaa60d7cdc7c7c4765c9cb2bb22466c0b59054e6884199d401bcb76cf18690d38df0395ed32b7c8277479cf4443f2c891ec86a12d23c79a08f2ebc3bc0a59995a9413b2ab3cbf43c3eb67ed6f661b6af5f9810656d430a9627f6106bbc2b399e7c44a906504b852c2c70e6273d298c51324c525efd69852d809965fc8579f0538881e519818a7f28101052f84a9bfe3bd75d238fa7bd5e06813db63dda54faeea85317f970e7601c74a8ef064fad3921a0f43f5c323aaef36ef00b26f67891ff7a0ea83915f53f6dc1fa4fbf66244c8df411063a0097114b76a3a9e465c47397f46f93b11e7e2b11682ab993b9a1e2f37dc4578c629564a877ebbcd897bbc733a2f924efb7c0d8b64dcf43b317ad9771913a9d23c0ddbc3ac3a0ee3046e8f5a13e1fecb188ac9964a52738cebdf83b23e056199a5005f96be624c208c78270d7119a103e9fafac9fc2c01efc0fa2ebea9e54c206694b8cee5f40c97ca7c9af102c1364811f760befe529787b91e321eb453485d97c4e1cb1a22f0eabdc656d2dc34ced0e7b97be649658f670a8d7706f2bc427384798b5762eed852d92aabaf57a5aac707bba1be182dbf1dfdc84ee41de3d49f1168738793e22534d69fd06d2026f8cdfbe944f7691ddf0e27a2f2d9618519afbc8be08e35361fa6ebaf26484d2aeff03313059b81237b210d3c9f10fa7877710135f8337d6f6e389dd30f9967ce21f382edebaaf9f8da9d8f2f61a18109f8af9f216dea56d51c61a3423eae49b5175fc82245ec1d8e9fb8901bb4504ab1c0b5cde185410d436f1419f4000faa747fc76bc2a4f9d2b001c1081fb54dac7cce7c9b5caa1194587c925eaa8f8d590abd19f83e593f2b72b6b7ca00e8964a181f9edc3b84a0cac9d96690121b6aedb7e925904f8d193f83e2352eb09ef8bf52d5fc04af5374d935393b616416c1ab166efdb043bd5f32cacc37c8f485a1a8e8bbf1ab4865143d79347ad0a15226b8588449a3d9cb465e9244a9176f54f381e54ce894943c1cf10f7da755b6a82b517fe6b1b8548e719f4a659450ab82d3ce1f63ea6c09036daf6c8748d65ceb89a62be80e8f7747bf7dfc5fc33371652998abb3e5273dcd1299faab49f5084f59526b8d9a0ee32839fa0bc102d3f81b0def5a18c76949370d56481ce614e745239743fce29db0a2abd3a8ec9abe282347ebefed45f0c21d2c689e8d9b4cb482ff6d4ebbb9e8a8d81eee9893be0d2811a89102ecf917c3f205792a65cb26495b0c8838e3282995d1cef34e46c54613d459705f519e35ffe63b7b8bb46ebd55be00126066cfe6ff795f90eb14fa359012c0a6e746c582691293534f6286b453e59862df30cde90bf75376c4f0fd8912b0168a00b61c0e85a4d5694f7d026f6e42213840b62492007a758280668824cccdaae7a3f37b3b43bbe15077ad4ebf0c5aea8968e67b961dc71b9b6e7a85111530f97d8acb0966f30edba1a331365313de95509179bfce7c25363068f8d2ece7e1b0ee6c0b4a15ff716d7019a2bcb1fa405838df5a5bda6ee4c820d1792a22b3f83fac0ec50e1895e4100b31e17a7dcdc18b160de37023dc6d0725432c0cbaae66040955ee5aeb56833ee40afa36f03bd66b5da862b52b6db01f8408e2f5d6da99a5ce58feb109aee6df12525260b946237ecde016bd60dae9c8fb7d4cbc8e72936a7cd0dcf21c91011da81d7d63a4c51d7bcb64014ef3dba83e161a072c97acfa3fa0727e0d097dacc21d402b911fa47dadce6326466b8b9ee4694b74abc2fe66f1841e4cbad3f57553babbcbc7ec4b8e68c14691a3cee8a2eebc2caf763344adf3d3356a91b40b21f494dfd95b26634bf95201c46ee322495d7df64c48a5b807607a9d7a0e440a992635be105e9985134320c52dc3aea46100b7e5bdf35844ce0e77acb9b664ddcc9434b82a4f770e3d9e6b840d44856055521c5af524ebe2e76a36c9f30aadf0ff0701c08d21150a07c87f96effd4e13808d3ab50dce2f1b49b5b5767fcbfe526b1667a0fef7ed2bfe30e9bb3b8c61bc4aba87fefd0098ec9e0f6eab26177f7e074257890889710161f0a9389ab5aaf4bfffa63bcb7a9bb66dbe8eb86d1912f5e111687bd52d75e2a97278939a9792db3ca000641561b4e3fdedfd1ff16c3641c70a701dba31f1810e7951eade23aa5d45163ecfb5f1680f0c3550180c141cd18bf62e1ea363da28dd00d3040343adbb5e98c985cd626de679c5fa081dc2f48807a29ceaf8abb6e7d93fb130c21c0ece701bb6ac36452b573ffae7244059175a85b17865247cffb33f47776e185fc42bf96802bf3d3b64a7f7bb19269d7447844bf6f55d915838ca7847fba089c176d3273f6ffa937a18f6bae6248ae105ecbf710096ed61cfc86f6372950fc24a2ae32a9be7d0cb11abd55b9a3fbec9442245dc55fc69796ace6a67b40d422b59e3ec852c958385c337e7157b569783761c2e3393faa072cbb67211cb66e16d8886c305652a4b71abf81f9877cb6744a44679aa5f0262d4deb7d862bbde13dd5237101ab287bcda38a494eb8b4a3eecfab4bb6afd33bc335ac6858ad7a951570fffc50fa200353b3b10c4587d7341010cb15a7d7be8f526ed06eb944829205e894e837c60fe1196bbaa1de96d5dfdfba61184223ac772742280b9c0014178d80f31ba4941ee27db67b19da7028cd20fdc5af6208e37dc1a63aeb09149bcdd9580a680d1b9ed41963700402af2d575beddcc10096ced80593d0f3c39ebbb425e8faa4db038e644d0ca04867deb1f4ec62727f7775f440220321fe973c72e4cf34eb477a7e8b0f19e555db5c4ae7e005cd94ae2e386fd22a4aacd3faf95124684c1899cab7e59086e91d6f027d731d6bd6beaf1d97d0619435ec7f6408232f6f3b6509134224dff736dbb55e7d167042b5cd04e62624b80465b4a168584b3d4e487ff64bb0138ff26df1134340980167a69f5d0d6682de552b12dca36c1111de8a3e7fdfa8ddffe66dbc0f4c991682a8c94db159dec8ea843883ca8874b482c11a5f356aa50fa7d73dc219cef10195d8cf4d0cdb07750919ba5808eae7a068015ad87b98efa14054e884a28769b51daa08a18ae237ea4e5ed5d2ed98fdc23a781bd9c4c2bb00923c574843f37211ffb9b65ea300f389e1ab1d07d33dde559379e9a53215f7a1e814d94ea17948cfdcbc13ac2f06ead364249c72fc5fdb05f07c1d3ac72225381909ccd918825c41ff34c71810aad325bbac837014a72cce6f420d84f058dc14dd12aff3423807030fc4b15fc2ce7209bb76a41c82309f513825e1f39557b07e5d1538e325f81ec1c475af0a63308a5a1abbaed4132ffaafafd9ef13d0b45f0b39f914ac0c632023855b22f2d824d0ce0a4cd1eb433b0a7a5357cc3a4e5d815a958e0e82d2823d17a3526d6616e53de0d2dd83a51bc649871605d7cb9e07fb0ac9bdcac79d90c11cb179cd708052567ef3ae24563ee60afbba053ef1d851f21803ba1976b0846ddda2f4d9341ce76f3328d46562e54307899e80add203371fd507972637e24465ab75903f98083af975628e4ec458b51516a834c67cba4ba4beedc794a074ab8d3260dd58de3b5ef1fd3eacd9bf9db63d1167e82f6bf313393873c84dcbd7f35920bad2b48dfb664d1c37e034ad8a7eabecd343aff8da41598123a1cc7f79cc187f5706ba9022cec682a9a7c10bdd1e49422a118d49d51a151be103d91dd790a2171a86979e306785c19f6fe5941014864f92c0c12b061b49b0c541278749c0517abd0824d02174813a5ffa42b0ea2ace7b66ebd264b1c7f8cdd340ce97e95b5f4aeebda435d80489da5ff4cfa76a0aa1d2fa3cb74d5028305564616b33a3d7fd8da38352ef4ab719dc9c3c3ee3ff2438f09ebc540f9ec1f6160a66977e31d7459c626ecdbaad0aac28eec1f02e21cae5ceadd069ba30f7dc39c94a13f04cc16a32c0b1d5515ef135f31cc2998138726ec8ab7cb71ca0f75e833a95f41db20fc73dcb1d46d26ce69d1be490cf2109b548ec9aa477e7a3f3073530112fd527d34e87a8e7efdfffc415bda5bf13c8df55d208fb754182b24707df8c7581da8d3a604977f1299ef4a940d1c76474edc5035f125a280a88f70d7c62d44e6228cc18189513432083fa782504276a5ea9b8e8128aa09efcba27d2f3de4f97dd67a809ec93f016f635943c2212898114e1c6e30a0f24ded075e9380fc3d374a0dc0a8b2e272e1c2e907220f73aa2364cae6ead5250e46fbea04dcc11af6aabbe10663d3cdc420c226af4dca2c9f48e0cb2457b5e5ca13a396bc1a91576e5b9898ebfe2e697477a40ea0d8775d0e8eda151d757bc2538ffa2aea3510a39ad36394a06a65011bc85b0d3030f2a87589ff8da61b99966bd79f04a0a8bbca4b20bc7b2656f60be7dd93c7f219c686ac47fd5878b3deaf6bc6f63aa2ba4820285396088746d8833e653537ce0a345458b66341e90cb4cc731a65d1db22de1b39914304be11e241ae40eb506ee442ab44308fceca77804ebd9c33cfac553fa48a5f3e9d776d1686a905a2e1e89ee549c8511a3bb86f24b16a57d60cb50aa570416629fec7268fb2495bc7d01dc6efaae33b908b1f091dac0e7ef4834abbbd0bd7cc9be966fc0270f59093fe015ce0671a9ac5ba93b35b8a2c71570d431eca97609c225f50ea5c64d19466f12704b83746bb560f49860b5e1d3ffc890123ddcd93153214429d4e45fa88aefed65bc2da775eb19386f3e96eecd10944f95fa2635edef1e29b1a655fbd48b339e54b7b4aa66a33ae97c4a3d0e8ee6946d76fed631b5d86f2249f56faaa891c1c29b61979fc51fbb99fbe33533af9e70f4743f277fdb8083e62e580817e57879ca044f48c64469363a01290bbebe5bf659f9f67a5ac572dd23bff500add2c8a33bbfda11a008b9bbc92c49da63dfd1dde16691cde11107eb30f5e63bc208ce1c5474907c1e698a5065efd17a554ca044740e58d1cefd95e1d5c90827ee04087342add1bff727da73767f824ac8ae56c467b208ac5608871404b227c8a8b8be4a051054ff33f71ea4ecd919b5ea2ce9bb594b800f57e90c916b7fc687e4fd028f3ab00a777e107e0190f27b25c8cf672b3cba776c985333fb8076ab1bd9fbf07b892c38c41ac4f9a264a51002f7350ef7f547692d9964ef31f9cc63e28589ced1a1f4eccebe1f562a4679051ba7aa4b406513a69a44d5fe69c13f4bf4f2b8607274049fc67f1fd35ae5a0c7bec691d5c28356c0f4fbd10c1b9ba962e78898fbdb18f562603fda9afa6860aaecbc1d3573cfdf41dd97da68413037", 0x1000}], 0x4, &(0x7f0000001640)=[{0x1010, 0x10f, 0x73, "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"}, {0xd0, 0x0, 0x7ff, "c9c30c50993e1e35537070ddb5731f8e2415fc8fe082a74752cea0f7825c1d8b22928cd0c8b79fe981b733a024b060150da064b8c691c1d619d7acbe38594ccce14fbe66cdb85c868193f5634b129cba926c1292f20a67f38b1d10b748fd8ee1298fd17fc88b7245b9b66bb071d0da97b424498176af70cc9bacd0d79aec66a9812c06456ef0d680ee4e86e86b3fe100d999b886680e194a60bb033dd6c41519264ffb39d7c2c6817b633c4dc8ccea7f1ada5bc87d49a01feb6501c2a1618e"}, {0xc8, 0x105, 0x2, "c593064dd3dfbb916abf1f661a651be7c7459ee623de92ef3489cb57450f658abcbf5f59e866e639bce03f439cdfa1888a407acd0d6e95374c479448f0d9b13c6d9627655fb5045a66453ae66a31707e05a4af0212f7230bd383bc49d101d970766f5de0e2b39813a0f864a63576aab7a3a3d250a7771bf27694c7c46d74efa10880f0a6bf3e41ade447e344de0eb67446ed4bfe34fff8ed266ca8bd240383aca0645ffca277737e03d9895ae3c4cfdd446a01"}, {0xf0, 0x114, 0x3ff, "11e89f35e092ad763423e2d439b8d88e93fd05ae70727bcee718b17ed6cd0dbf2d3e265d0ed3b79b6da04eac51c12a77305e5fb0cf9fa415089fd2a5bf7ebe42c24b332822043aa2cecce4edcb345763ba0aafaceb6242770299bf68a35b6b1f13fb5bdde4f45a429ddf914bc99196db50fb871547d96b545b66e9f10e4c07d53a322ecafb56a731b1c24421c0c88f641ea132d299df354bda2acb35be0863b96569fe14a3296e0ad13688f58db579b364d7cddac3656ed80df972ce394cb3391867cdb6565792b9b3fd2abec02259d567b8ea7dfde47e0804"}], 0x1298}, 0x4000)
syz_io_uring_setup(0x7937, &(0x7f0000000180)={0x0, 0x3c54, 0x1, 0x3, 0x65, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000280))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x3)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_io_uring_setup(0x6606, &(0x7f0000000180)={0x0, 0xdb80, 0x2, 0x2, 0x7}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
syz_io_uring_setup(0x6863, &(0x7f0000000380)={0x0, 0x571b, 0x1, 0x4, 0x14a, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000400), &(0x7f0000000480))
r5 = mq_open(&(0x7f0000000280)='\x00', 0x800, 0xb2, &(0x7f00000002c0)={0x2, 0xd697, 0x18, 0x1})
r6 = syz_io_uring_setup(0x21, &(0x7f00000004c0)={0x0, 0x0, 0x20, 0x80}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r2, r4, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x5, 0x0, @fd=r5, 0x80000000, &(0x7f0000000300)='J', 0x1, 0x0, 0x1, {0x0, r7}}, 0x7ab)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x1010, r0, 0x10000000)
clock_gettime(0x0, &(0x7f0000000580)={<r9=>0x0, <r10=>0x0})
r11 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x40000, 0x0, 0x0, 0x131}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r11, 0xa, 0x0, r12)
syz_io_uring_submit(0x0, r8, &(0x7f0000000600)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f00000005c0)={r9, r10+60000000}, 0x1, 0x0, 0x0, {0x0, r12}}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000180)={0x0, 0x0, 0x10, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
accept(0xffffffffffffffff, 0x0, &(0x7f0000000000))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x4000010, r0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x78, 0xb9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
fcntl$setstatus(r2, 0x4, 0x4000)
r5 = getpid()
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x1f, 0x0, 0x6, 0x1f, 0x0, 0xffff, 0x224, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x251f, 0x4, @perf_config_ext={0x2, 0x1e0}, 0x90, 0xe278, 0x1, 0x4, 0x3, 0x7ff, 0x9, 0x0, 0x2, 0x0, 0x7fff}, r5, 0x4, r4, 0x8)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x4ffb, &(0x7f0000000180)={0x0, 0x7bc5, 0x1, 0x2, 0x24c, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000240))
syz_io_uring_setup(0x127e, &(0x7f0000000280)={0x0, 0x88f9, 0x10, 0x2, 0x374}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000340)=<r3=>0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000440)=ANY=[@ANYBLOB="88b9e449084a0c2551c70b9c7581328b", @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r5, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r4, &(0x7f00000003c0)={0x40000004}, r5}, 0x40000000)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 3:
r0 = dup(0xffffffffffffffff)
r1 = syz_io_uring_setup(0x18db, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xfffffffa)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index, 0x0, 0x0, 0x1002, 0x7, 0x0, {0x0, 0x0, r1}}, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
fcntl$setstatus(r3, 0x4, 0x40800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:31 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x5f16, &(0x7f0000001440)={0x0, 0xf902, 0x10, 0x1, 0x34e, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000014c0)=<r2=>0x0, &(0x7f0000001500))
syz_io_uring_submit(r2, r1, &(0x7f00000015c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000001540)={0x2000, 0x4, 0x12}, &(0x7f0000001580)='./file0\x00', 0x18, 0x0, 0x23456}, 0x9)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x6}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = getegid()
setgroups(0x2, &(0x7f0000000040)=[0x0, r3])
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x1, 0x3, &(0x7f0000001280)=[{&(0x7f0000000240)="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", 0x1000, 0x8}, {&(0x7f00000001c0)="f802227e14d234c602fd0d988c5df1ae1f1781d9aba1c8b9a960698a62", 0x1d, 0x1}, {&(0x7f0000001240)="a64ee9e028e6d64d6f73df21dc099d694445edc9e08e2158c51eace7ab37c44b817ecb", 0x23, 0xde39}], 0x1030005, &(0x7f0000001300)={[{@mpol={'mpol', 0x3d, {'local', '=static', @void}}}, {@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x39, 0x31]}}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x35, 0x37, 0x38]}}, {@gid={'gid', 0x3d, r3}}, {@nr_inodes={'nr_inodes', 0x3d, [0x65, 0x74, 0x65]}}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@fsuuid={'fsuuid', 0x3d, {[0x36, 0x31, 0x37, 0x34, 0x65, 0x62, 0x61, 0x37], 0x2d, [0x38, 0x38, 0x63, 0x61], 0x2d, [0x35, 0x65, 0x33, 0x61], 0x2d, [0x35, 0x63, 0x31, 0x35], 0x2d, [0x63, 0x35, 0x48, 0x36, 0x0, 0x62, 0x35, 0x33]}}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@obj_role}, {@context={'context', 0x3d, 'user_u'}}, {@appraise_type}, {@hash}, {@smackfshat}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '}]'}}]})

17:53:31 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r2, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0xb01, &(0x7f0000000180)={0x0, 0xf6f5, 0x2, 0x2, 0x208, 0x0, r4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000280))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = syz_open_dev$vcsa(&(0x7f00000002c0), 0x1ff, 0x408001)
sendmsg$NL80211_CMD_DEL_TX_TS(r5, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4007}, 0x40)

[ 1810.314429] FAULT_INJECTION: forcing a failure.
[ 1810.314429] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.316947] CPU: 1 PID: 17204 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1810.318404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1810.320785] Call Trace:
[ 1810.321342]  dump_stack+0x107/0x163
[ 1810.322107]  should_fail.cold+0x5/0xa
[ 1810.322909]  ? create_object.isra.0+0x3a/0xa20
[ 1810.323869]  should_failslab+0x5/0x10
[ 1810.324718]  kmem_cache_alloc+0x5b/0x350
[ 1810.325580]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1810.326846]  create_object.isra.0+0x3a/0xa20
[ 1810.327773]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1810.328863]  kmem_cache_alloc+0x159/0x350
[ 1810.329742]  ptlock_alloc+0x1d/0x70
[ 1810.330507]  pte_alloc_one+0x68/0x190
[ 1810.331301]  __pte_alloc+0x1d/0x320
[ 1810.332069]  handle_mm_fault+0x289a/0x3520
[ 1810.332973]  ? __pmd_alloc+0x5e0/0x5e0
[ 1810.333787]  ? trace_hardirqs_on+0x5b/0x180
[ 1810.334707]  __get_user_pages+0x61b/0x1390
[ 1810.335599]  ? follow_page_mask+0x1860/0x1860
[ 1810.336556]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1810.337535]  ? irqentry_enter+0x26/0x50
[ 1810.338372]  __get_user_pages_remote+0x1d1/0x860
[ 1810.339371]  get_user_pages_remote+0x63/0x90
[ 1810.340301]  get_arg_page+0xba/0x200
[ 1810.341079]  ? acct_arg_size+0xe0/0xe0
[ 1810.341895]  ? copy_string_kernel+0x110/0x450
[ 1810.342830]  ? copy_string_kernel+0x15e/0x450
[ 1810.343773]  copy_string_kernel+0x1b4/0x450
[ 1810.344690]  do_execveat_common+0x518/0x8c0
[ 1810.345593]  ? bprm_execve+0x1b00/0x1b00
[ 1810.346457]  __x64_sys_execveat+0xed/0x130
[ 1810.347348]  do_syscall_64+0x33/0x40
[ 1810.348127]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1810.349215] RIP: 0033:0x7f843b55cb19
17:53:32 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
[ 1810.349996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1810.354245] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1810.355849] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1810.357370] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1810.358890] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1810.360408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1810.361944] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
sendmsg(r3, &(0x7f0000002a00)={0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000240)="5cc728264b2f0e9f497dd8b5f2ada2bc1d2b09f9eb285a5bc5f44df4e89f99094edc45d8f1ded6a666f4df452d0e562313b9091a7ab02c615497a3fe177869c1ad5e7c81d5f7b16343a217995e227fb09da383c90ec5c23fd29cdf46d1dd70e29cb9e07a18392563b837cc72e8d2bff41d606034510d372f68a1f74b1738b38db361d5fd652846", 0x87}, {&(0x7f0000000180)="1398c1ca8aeb7a475563bbd05dc723bd1b8c0de532c773c4fdc8a36b2bc3bcc1059289fb7aaaabd1c1d19050052aa1ac13786e5b1d02abb021c7033174e13821eb995adfbfbe75ed5d8c1c12d4e80bbeaaa146296aeb4107772ab5a67a19f2ca9e45c22dd0cfacf2d0897563fb67e3", 0x6f}, {&(0x7f0000000300)="f56bf7129326eaf3584bf2843b9d40ecc4f9150aad9e76ce7d9be03b85ed436f8ff52b843caf75060242651e96f9663ce19e09f779b392fdb8da5aa2df8d3dd6fa2221627fd171b662c5d96012203088f871795d57e1dd7cfa7084bc74f31d9e7012e801c9fcd42ea72238b9ce4d1e44c08105f7948e97c744d9a3357e970f2328e28cc5cd40e5d5877787be09a82de46ab50a1b5f0675e0a2cf7d0b27520e0540d220ef45584a1e3b231b9bd8176ffdec7857b5c96ca59f", 0xb8}, {&(0x7f00000003c0)="06172bdd6bf8f85a6fcdb614b5514c24aced0b15a41d8af6cb6ce0859c06d4198a0325b641a59b83e7139726c1dad84a3912be2729df45ff27cca1ff986e9afb7a63fe3928c752de5ddba3b0b755bb3e9a758d3f942ea08214a7a9c6a527661c29bc6331441c47b1e5cbdb0b95f43cdc281571489b7769fa355788346d4474c840c45a6896a896b3639df5832e1150f9a33965008ac50b13ecb970021bbcc525a5ea187fb001ecf8d525800729ac0910cd39", 0xb2}, {&(0x7f0000000000)="4c13cf052dd3f5c057027dfead1c4106", 0x10}, {&(0x7f0000000480)="54d3d96688a51a7f092a5edd3d327e05a07ed75b5f86b4d8dc56ada6455cd477b87adc874bd75332c1ad3eeb6d28c082bd93c82159e3fe62ee37b75d40da5d5bf46eaae7bdd8eb5e6a3de39ec53db8ec77cf2eeb65c2887b8d4ee4572dddd118aa2d41deeac54de4c4fa17be770c3086fe2f69fbe19238a06ef62e4b340e120d73ecc969a3049a5eb83c", 0x8a}, {&(0x7f0000000540)="2442fc8a2e9c7541075be6e0478905aef04ba32dc5c970cad69c48544ba8fc8b24dc0627d3286827a7c825e8e7c0138fc5e2543c3cceb2ea13bf8eba0b62a02ac478665f556e7ff9920db7dd963e1df5f5bc1da712a4645b66ae4a61422a0544a917f7a5739c4e85c48d4496bb7dbc380678970bb5a3daf702bd2114f7145822a4ed51040865d71f6300bd5f966734d86053e18572f08dbe255f14ebfd86359eb7d631ce99575982bc5c0fa7b5cbdd5c8010c24cb968f7c97b1cb7313b55fb1dc1e0", 0xc2}, {&(0x7f0000000640)="06722b977c21dc024d07c6a8ca7dbab8b50372dd4a4785357cc9c1e2e8ed78b0a32180ba42580b16081cff4a2c1fcb5679873705aed37985652b37ac65c7d6e091692f9eb6a075e319d389bb7fb1c9404351c68d2c07d3eb5d2e2339e6170f0e4b65779ef0264c7902e9a126a8c41abefaea4300f20137a70ee9f3d4c40a20dd3c67", 0x82}, {&(0x7f0000000700)="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", 0x1000}], 0x9, &(0x7f00000017c0)=[{0x50, 0x29, 0x484, "f6426b5cb1f2c11e40a0076dd7a38959c94d5844bf24c19753aab1451332795d408afb9a37fed9a4075f88a6427b7ce66f38f04fd9a9d91f742e40b2"}, {0x48, 0x84, 0x15e7fb21, "f2cbccb92f26d411950cc243261eb6837c8ad09b3bfe4cda8100e0b8d84b722b3441c54b5b4aadbf6e53e12ed75295174faec4"}, {0x1010, 0x113, 0x9, "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"}, {0x10, 0x105, 0x6}, {0xe0, 0x107, 0x200, "d8250903274898859467bdabb742c5f926dc1d4288d759445cce37c7e849c59c25ade63d389616fc337670f1b6d1afe9c154b356416c5d19a0787aa4325a140e09cc1a455d7d19998ea331d28dbd72c5909979865dfa832229992e8aaf669129f70283458d94aba11e2682cfddb366124fcc20eaed0425d58cf0298d78a02c10e72e021bfd39c796b00dd9b10194a1d493929db7be7f89bb82737d14066dbf6507437e40bb809dceebed405475224c97b7478a5cddf18c4e3305cb604cb74409b80bbaf54752d28c3e"}, {0x88, 0x10b, 0x7, "1d6cb1dcc6cbd5980397fded1ff96957820384a955410bb070d16f837bff2298a4a32ce2bbb7e19c6307588267f6cc4faf826d60c7fa8b6f93f8346ed4d4d25c9781da102d9af62f70ae9127eb2a2fba78f57a44d201a003130a37058c4c39d4ec8ce4999980c77c7a7d1a37ef2fd1ff00d4675abb9da6"}], 0x1220}, 0x4004)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1810.399311] FAULT_INJECTION: forcing a failure.
[ 1810.399311] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.402438] CPU: 0 PID: 17207 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1810.403911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1810.406314] Call Trace:
[ 1810.406880]  dump_stack+0x107/0x163
[ 1810.407650]  should_fail.cold+0x5/0xa
[ 1810.408476]  ? create_object.isra.0+0x3a/0xa20
[ 1810.409452]  should_failslab+0x5/0x10
[ 1810.410256]  kmem_cache_alloc+0x5b/0x350
[ 1810.411124]  create_object.isra.0+0x3a/0xa20
[ 1810.412062]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1810.413167]  kmem_cache_alloc+0x159/0x350
[ 1810.414057]  __pmd_alloc+0x94/0x5e0
[ 1810.414839]  handle_mm_fault+0x1adc/0x3520
[ 1810.415744]  ? __schedule+0x850/0x1e80
[ 1810.416580]  ? __pmd_alloc+0x5e0/0x5e0
[ 1810.417431]  __get_user_pages+0x61b/0x1390
[ 1810.418343]  ? follow_page_mask+0x1860/0x1860
[ 1810.419297]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1810.420320]  __get_user_pages_remote+0x1d1/0x860
[ 1810.421333]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1810.422483]  get_user_pages_remote+0x63/0x90
[ 1810.423414]  get_arg_page+0xba/0x200
[ 1810.424206]  ? acct_arg_size+0xe0/0xe0
[ 1810.425038]  ? kcov_remote_stop+0x310/0x310
[ 1810.425959]  ? count.constprop.0+0x1b3/0x280
[ 1810.426894]  copy_string_kernel+0x1b4/0x450
[ 1810.427819]  do_execveat_common+0x518/0x8c0
[ 1810.428758]  ? bprm_execve+0x1b00/0x1b00
[ 1810.429621]  __x64_sys_execveat+0xed/0x130
[ 1810.430523]  do_syscall_64+0x33/0x40
[ 1810.431320]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1810.432414] RIP: 0033:0x7f48cbaccb19
[ 1810.433204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1810.437115] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1810.438714] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1810.440233] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1810.441738] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1810.443250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1810.444796] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:53:44 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x1, 0x0, r7, &(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x200, 0x2000, 0x0, {0x0, r8}}, 0xff)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x4, 0x80, 0xd787, 0x8})
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000008, 0x13, r2, 0x10000000)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r4, r6, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x6000, @fd_index=0x9, 0x1, 0x0, 0x0, 0x10, 0x1, {0x0, r8}}, 0x7d)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 20)

17:53:44 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x1010, r0, 0x10000000)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r4, 0x0, &(0x7f0000000240)="04343af4b508c0fbc0f69e10431877470cc738909e7b6b6362bb2bb28de2c839e2da27a846106eac7b7e04e0f5d038910e5fd2d3b506a504e1acffe0f0458bec80a4552050a10b4998029098def116e15b62a1621b979eec49503c7e658fe24c6b7a1566ebcf3c755b08e2dd94ee3d2a88289bed884b9bc4e4fbd65a7d66296fd5b28cfbfd48e8b75dbc2733259e0bc087ae3af932c84550362c095bb01a7d0c988adb613114d6007a2e27f54218ab2f5e4e74e6892ad6", 0xb7, 0x10000, 0x0, {0x0, r6}}, 0x3)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 17)

17:53:44 executing program 3:
prctl$PR_SET_DUMPABLE(0x4, 0x3)
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x4e3b, 0xfa8a, 0x1, &(0x7f0000000240)={[0xea]}, 0x8)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
perf_event_open(&(0x7f0000000180)={0x6, 0x80, 0x0, 0xff, 0x7, 0x4, 0x0, 0xfffffffffffffffc, 0x800, 0xc, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x8ea2d2cd7b2bba6d, @perf_bp={&(0x7f0000000000), 0x3}, 0x2000, 0xfffffffffffffffd, 0x7fff, 0x7, 0xa924, 0xbd, 0x3, 0x0, 0xffff, 0x0, 0xad}, 0x0, 0xb, 0xffffffffffffffff, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1822.577898] FAULT_INJECTION: forcing a failure.
[ 1822.577898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1822.579606] CPU: 0 PID: 17356 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1822.580389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1822.581658] Call Trace:
[ 1822.581966]  dump_stack+0x107/0x163
[ 1822.582375]  should_fail.cold+0x5/0xa
[ 1822.582816]  __alloc_pages_nodemask+0x182/0x680
[ 1822.583348]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1822.584022]  ? find_held_lock+0x2c/0x110
[ 1822.584485]  ? __pmd_alloc+0x2db/0x5e0
[ 1822.584919]  ? lock_downgrade+0x6d0/0x6d0
[ 1822.585389]  ? do_raw_spin_lock+0x121/0x260
[ 1822.585877]  alloc_pages_current+0x187/0x280
[ 1822.586402]  pte_alloc_one+0x16/0x190
[ 1822.586834]  __pte_alloc+0x1d/0x320
[ 1822.587241]  handle_mm_fault+0x289a/0x3520
[ 1822.587729]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1822.588326]  ? __pmd_alloc+0x5e0/0x5e0
[ 1822.588791]  __get_user_pages+0x61b/0x1390
[ 1822.589262]  ? follow_page_mask+0x1860/0x1860
[ 1822.589758]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1822.590275]  __get_user_pages_remote+0x1d1/0x860
[ 1822.590818]  ? lock_downgrade+0x6d0/0x6d0
[ 1822.591295]  get_user_pages_remote+0x63/0x90
[ 1822.591788]  get_arg_page+0xba/0x200
[ 1822.592219]  ? acct_arg_size+0xe0/0xe0
[ 1822.592665]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1822.593280]  ? trace_hardirqs_on+0x5b/0x180
[ 1822.593769]  ? count.constprop.0+0x1b3/0x280
[ 1822.594276]  copy_string_kernel+0x1b4/0x450
[ 1822.594772]  do_execveat_common+0x518/0x8c0
[ 1822.595260]  ? bprm_execve+0x1b00/0x1b00
[ 1822.595717]  __x64_sys_execveat+0xed/0x130
[ 1822.596194]  do_syscall_64+0x33/0x40
[ 1822.596637]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1822.597213] RIP: 0033:0x7f48cbaccb19
[ 1822.597635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1822.599710] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1822.600580] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1822.601384] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1822.602176] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1822.602975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1822.603779] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1822.608715] FAULT_INJECTION: forcing a failure.
[ 1822.608715] name failslab, interval 1, probability 0, space 0, times 0
[ 1822.610413] CPU: 0 PID: 17372 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1822.611197] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1822.612484] Call Trace:
[ 1822.612786]  dump_stack+0x107/0x163
[ 1822.613205]  should_fail.cold+0x5/0xa
[ 1822.613625]  ? __anon_vma_prepare+0x62/0x4f0
[ 1822.614126]  should_failslab+0x5/0x10
[ 1822.614553]  kmem_cache_alloc+0x5b/0x350
[ 1822.615004]  __anon_vma_prepare+0x62/0x4f0
[ 1822.615471]  ? __pte_alloc+0x194/0x320
[ 1822.615903]  handle_mm_fault+0x2b48/0x3520
[ 1822.616387]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1822.616961]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1822.617555]  ? __pmd_alloc+0x5e0/0x5e0
[ 1822.617996]  __get_user_pages+0x61b/0x1390
[ 1822.618470]  ? follow_page_mask+0x1860/0x1860
[ 1822.618964]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1822.619484]  __get_user_pages_remote+0x1d1/0x860
[ 1822.620020]  get_user_pages_remote+0x63/0x90
[ 1822.620520]  get_arg_page+0xba/0x200
[ 1822.620931]  ? acct_arg_size+0xe0/0xe0
[ 1822.621357]  ? downgrade_write+0x3a0/0x3a0
[ 1822.621841]  ? count.constprop.0+0x1b3/0x280
[ 1822.622335]  copy_string_kernel+0x1b4/0x450
[ 1822.622836]  do_execveat_common+0x518/0x8c0
[ 1822.623337]  ? bprm_execve+0x1b00/0x1b00
[ 1822.623800]  __x64_sys_execveat+0xed/0x130
[ 1822.624284]  do_syscall_64+0x33/0x40
[ 1822.624707]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1822.625298] RIP: 0033:0x7f843b55cb19
[ 1822.625712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1822.627837] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1822.628714] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1822.629543] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1822.630359] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1822.631180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1822.632007] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:53:44 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_setup(0x6fc0, &(0x7f0000019480)={0x0, 0xafd, 0x20, 0x0, 0x20f, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000019500)=<r5=>0x0, &(0x7f0000019540))
syz_io_uring_submit(r5, r1, &(0x7f0000000440)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r4, 0x0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000240)=""/236, 0xec}, {&(0x7f0000000000)=""/11, 0xb}, {&(0x7f0000000480)=""/102400, 0x19000}, {&(0x7f0000000340)=""/142, 0x8e}], 0x4}, 0x0, 0x20, 0x0, {0x3}}, 0xeeba)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r8, r1, &(0x7f0000019580)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r2, 0x5, 0x0, 0x571a, 0x4, 0x1}, 0x20000000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r10)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x4, {}, 0x0, 0x6, 0x0, {0x0, r10}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x2)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f00000003c0)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000300)=0x80, &(0x7f0000000340)=@l2tp={0x2, 0x0, @loopback}, 0x0, 0x800, 0x1, {0x0, r7}}, 0xfffffff7)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x2ed2, &(0x7f0000000240)={0x0, 0x858a, 0x10, 0x0, 0x9a, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000001c0), &(0x7f00000002c0))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
sendfile(r3, r3, &(0x7f0000000000)=0x3, 0x3)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r9, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r9, 0x667d, 0x5a26, 0x1, &(0x7f0000000180)={[0x368]}, 0x8)

17:53:44 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
pipe2(&(0x7f0000000240), 0x80000)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000001640)={<r4=>0x0, 0x5, 0x3})
ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f0000001a40)={0x10, 0x0, {0x3ff, @usage=0xeac, r4, 0x0, 0x40, 0x6, 0x100, 0x1, 0x0, @struct={0xfffffffb, 0xffffffff}, 0x9, 0x1000, [0xfffffffffffff800, 0x101, 0x2, 0x81, 0x627, 0x3fe]}, {0x81, @usage=0x5, 0x0, 0xfffffffffffffc00, 0x8, 0x1f, 0x7, 0x2, 0x93, @usage=0x9, 0x9, 0x6faa, [0x0, 0x8, 0x3, 0x3, 0x83c, 0x36f40156]}, {0x4, @usage=0x8, 0x0, 0xff, 0x0, 0x9, 0x8, 0x9, 0x8a, @usage=0x1, 0x6, 0x5, [0x401, 0xfffffffd, 0x2, 0x8, 0xbb3, 0x9]}, {0x3, 0x2}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x81, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x18c0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x1f, 0x88be}, 0x8124, 0x8000, 0x5710, 0x9, 0x8001, 0x7, 0x800, 0x0, 0x6, 0x0, 0x7ff}, 0x0, 0x8, r5, 0xa)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 21)

17:53:44 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 18)

17:53:44 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xbe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x1c27, 0x72ab, 0x2, &(0x7f00000001c0)={[0x2f77]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r2}, './file0/file0\x00'})
io_uring_enter(r4, 0x98e, 0x8d7c, 0x1, &(0x7f0000000180)={[0x2]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1822.789948] FAULT_INJECTION: forcing a failure.
[ 1822.789948] name failslab, interval 1, probability 0, space 0, times 0
[ 1822.791697] CPU: 0 PID: 17464 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1822.792455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1822.793684] Call Trace:
[ 1822.793972]  dump_stack+0x107/0x163
[ 1822.794370]  should_fail.cold+0x5/0xa
[ 1822.794787]  ? create_object.isra.0+0x3a/0xa20
[ 1822.795279]  should_failslab+0x5/0x10
[ 1822.795687]  kmem_cache_alloc+0x5b/0x350
[ 1822.796127]  create_object.isra.0+0x3a/0xa20
[ 1822.796605]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1822.797151]  kmem_cache_alloc+0x159/0x350
[ 1822.797601]  __anon_vma_prepare+0x62/0x4f0
[ 1822.798052]  ? __pte_alloc+0x194/0x320
[ 1822.798473]  handle_mm_fault+0x2b48/0x3520
[ 1822.798930]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1822.799493]  ? __pmd_alloc+0x5e0/0x5e0
[ 1822.799952]  __get_user_pages+0x61b/0x1390
[ 1822.800442]  ? follow_page_mask+0x1860/0x1860
[ 1822.800960]  ? irqentry_enter+0x26/0x50
[ 1822.801421]  __get_user_pages_remote+0x1d1/0x860
[ 1822.801971]  get_user_pages_remote+0x63/0x90
[ 1822.802472]  get_arg_page+0xba/0x200
[ 1822.802897]  ? acct_arg_size+0xe0/0xe0
[ 1822.803337]  ? downgrade_write+0x3a0/0x3a0
[ 1822.803819]  ? count.constprop.0+0x1b3/0x280
[ 1822.804323]  copy_string_kernel+0x1b4/0x450
[ 1822.804827]  do_execveat_common+0x518/0x8c0
[ 1822.805323]  ? bprm_execve+0x1b00/0x1b00
[ 1822.805797]  __x64_sys_execveat+0xed/0x130
[ 1822.806280]  do_syscall_64+0x33/0x40
[ 1822.806713]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1822.807265] RIP: 0033:0x7f843b55cb19
[ 1822.807668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1822.809653] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1822.810474] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1822.811244] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1822.812006] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1822.812773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1822.813539] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1822.817425] FAULT_INJECTION: forcing a failure.
[ 1822.817425] name failslab, interval 1, probability 0, space 0, times 0
[ 1822.818794] CPU: 0 PID: 17465 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1822.819537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1822.820772] Call Trace:
[ 1822.821064]  dump_stack+0x107/0x163
[ 1822.821467]  should_fail.cold+0x5/0xa
[ 1822.821888]  ? ptlock_alloc+0x1d/0x70
[ 1822.822309]  should_failslab+0x5/0x10
[ 1822.822725]  kmem_cache_alloc+0x5b/0x350
[ 1822.823181]  ptlock_alloc+0x1d/0x70
[ 1822.823588]  pte_alloc_one+0x68/0x190
[ 1822.824018]  __pte_alloc+0x1d/0x320
[ 1822.824426]  handle_mm_fault+0x289a/0x3520
[ 1822.824896]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1822.825492]  ? trace_hardirqs_on+0x5b/0x180
[ 1822.825969]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1822.826567]  ? __pmd_alloc+0x5e0/0x5e0
[ 1822.827004]  __get_user_pages+0x61b/0x1390
[ 1822.827475]  ? follow_page_mask+0x1860/0x1860
[ 1822.827977]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1822.828502]  ? irqentry_enter+0x26/0x50
[ 1822.828948]  __get_user_pages_remote+0x1d1/0x860
[ 1822.829473]  get_user_pages_remote+0x63/0x90
[ 1822.829962]  get_arg_page+0xba/0x200
[ 1822.830373]  ? acct_arg_size+0xe0/0xe0
[ 1822.830803]  ? downgrade_write+0x3a0/0x3a0
[ 1822.831270]  ? count.constprop.0+0x1b3/0x280
[ 1822.831763]  copy_string_kernel+0x1b4/0x450
[ 1822.832232]  do_execveat_common+0x518/0x8c0
[ 1822.832706]  ? bprm_execve+0x1b00/0x1b00
[ 1822.833166]  __x64_sys_execveat+0xed/0x130
[ 1822.833637]  do_syscall_64+0x33/0x40
[ 1822.834051]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1822.834615] RIP: 0033:0x7f48cbaccb19
[ 1822.835034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1822.837083] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1822.837931] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1822.838715] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1822.839505] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1822.840288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1822.841079] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:53:44 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x8, 0x7, &(0x7f00000006c0)=[{&(0x7f0000000240)="1b0a4cf00a9b0d6da985c29f09bd2594ddae0baa197dffe796249092a27e7e10a0e6418fbd222d15c2a73766514a0e88fe37315e097bc3d7b56df9ba5d79848f4d0c9cac74b4468c0fada736838e8d661535d746e79a6b8c0dfcc2329609539d6d0664e242ed088818520eda48d8f8a6b381fb68950b0efc64270c2c9248eb3e176126a465a3e11c949a64cf82199e7d6be3b9ac2cdb63221592316df54f87e9a04963879b648d3b3c66f128cd8c5720", 0xb0, 0xffffffff}, {&(0x7f0000000300)="b449a401c1f69d4e7e01815b3d8e01fd3a8b2cf5fd97d9dfbad26de5e8a9a6e534ea75c34a94399e9f72b126d0bdb451a9c3472b304f3839b1c884363692bd04a4540c6e334d11fb42eedefcefb32000bb5695d25136f363817748125b95f78157632f1ad70bf36b392fcb59a9da51f3da0a84887e754f7cec535079efe6738a8f981e71cd7bb3987b0b3bc7b4ba5796b66c76bb7a699fdc44f897c02cf9c830767a3f14f163", 0xa6, 0x1}, {&(0x7f00000003c0)="3bc22d843f28e11806e151f122c0f51d8f4c6e0a3d72413254b792519943514e56c70124f988632ebba9b5776e6ea4087c3d127926a74b22524cbc8d2fc2d805d2118eb4e8f9fdb616b10ec7b5f26c00fad1244f9d6f236195b6724e713e996d96c93b5c233ef167d1f920f2fb95f0816aa76cb9477a89383e948ef77958622c3e8bab8eddff60a770db1159426cebc11643f5d84dcda9644f56c3574ef8b0ae82643f90e81a550937dd60475ca8e50dea8c64f140d56bc6fbb63c81f3b32e90c257861cf684efb8d602c6dced261f97a6998a405f1af0e95a1041d7d8", 0xdd, 0xfffff80000000000}, {&(0x7f00000004c0)="714f579cee8372278d543adac5b18c832b85a929350332cd9aa34ef21683fc3a8640afb1014a05cac5d1e6bd16e2a76028a7c79380dfe2233351f4a6708ebc4fba52eec4b0a3be14250b35fade5702e8bd09b65124e222eb958cebb9afaa36d989678193d3175c4391df0d51e77e03515384b772aaf7e074881323332ae6471c0849376db7074aa769faf04788", 0x8d, 0x3}, {&(0x7f0000000580)="976139d29eff41d189ca9428b6aa7747a3a533c54f541dddfbd24fe791112475e1ddd179fc53aae6001b5900848289f9e1ce66c2ae28188835eadb4ba6855c61c9b7e6740fe8", 0x46, 0x8}, {&(0x7f0000000600)="db710fefd89cd836a88c7192bace84f274a2388e13f7dd4cf7424d878b4b402294c1095b0e8ffd367fe2a4205a8d209f6d92467bea7325488e1090709803c3768f062171475fc8c51cfab121305a072df17adf7c5bf3df1bb8acf1429f601dafa5931ae4f9cec896bde08dc4e25c370253cefa007757786cbcc1a2719ad26c879a4daee8e40f1cb3c50365f8c49c99db2fbeb21b9ef59705bf634d79c89609", 0x9f, 0x3}, {&(0x7f00000001c0)="6fc1f71d61a56c189cd39b9ad0b00855a06f6b1fe9", 0x15}], 0x4000, &(0x7f0000000780)={[{'\x00'}, {'&-\\),*)]:]*['}, {'*'}, {'\x00'}, {'*'}], [{@seclabel}, {@dont_hash}]})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x114, &(0x7f0000000000)=0x1, 0x0, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:44 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r2, @ANYBLOB='G\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/133, 0x85}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000300)=""/21, 0x15}, {&(0x7f0000000340)=""/213, 0xd5}], 0x4)

17:53:44 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
setresuid(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, <r4=>0x0}, &(0x7f00000002c0)=0xc)
r5 = getegid()
r6 = getegid()
setgroups(0x2, &(0x7f0000000040)=[0x0, r6])
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2000)
r8 = signalfd4(r2, &(0x7f00000001c0)={[0x2]}, 0x8, 0x40800)
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)=""/149, 0x95}, {&(0x7f0000000500)=""/228, 0xe4}], 0x2)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f00000003c0)={{}, {0x1, 0x5}, [{0x2, 0x2}, {0x2, 0x6, 0xee01}], {0x4, 0x2}, [{0x8, 0x2, r4}, {0x8, 0x5, 0xee00}, {0x8, 0x7, r5}, {0x8, 0x7, r6}, {0x8, 0x1, r7}], {}, {0x20, 0xe140762dc85aa21b}}, 0x5c, 0xd52f8da9b4ad2b85)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x5de4, 0x8777, 0x3, &(0x7f0000000600)={[0x1]}, 0x8)

17:53:44 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ftruncate(0xffffffffffffffff, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r7, &(0x7f0000000180)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, r8, 0x0, &(0x7f0000000000)="a3eb68448416ef29494f0b22feb4e197531155448efc792e9aebbd6970d7a0dee7e94a4c6305386d5b811b41689d639bb0c9df0938242a57ade58bb2", 0x3c, 0x100, 0x1, {0x0, r9}}, 0x5a)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 19)

17:53:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x4, 0x2, &(0x7f0000000180)="7f5b991724b7fd3c6768be459e8052f5cce3719210f009bb535dd9e0f17348ac63a470f0d0a6da19e1756a603faded2117977f08d9caf5bd51575dc890f688f6c2979358367a0c4b33f68f28ae80d25a76ed23d86a7687dd6b4ec2e7e8da6e3c36e3a71672c677d742", 0xae1, 0x0, 0x0, {0x0, r5}}, 0x2)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000001500)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd_index=0x3, 0x101, 0x0, 0x4, 0x5}, 0x40)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000000180)=@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x80, &(0x7f0000001440)=[{&(0x7f0000000000)="05904d4db83a897209123a35dbc5bd599bc54d5a74dd828412182175f3", 0x1d}, {&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="9de7c8a745f2c7f956afcbea8b00a0fd943c679067a160498404d0aa4b7f829acc6b763898203637ec924e9a9e2f2b4ed6b99c07c8da13dc9ffbca690e92f6fa9356849ed31369c2a2197ddd36c7aab90f55d9c1eac90dbdad9e9c501c1e7e6b0eb47eb5d8f0eb42029aeca1ba47d52799b5a677bc4ff9943d69120e2de0d17fdef7b3e062f5007f7ae3848da26627886c57dd8fd6247a1d23267ce683ebe311c832774932f7fdc6d80319193f124660b4d41b62ef77c6bb4fd961e26f1c0ee318c74a42", 0xc4}, {&(0x7f0000001340)="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", 0xfa}], 0x4, &(0x7f0000001480)=[{0x10, 0x111, 0x1}], 0x10}, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000700)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000006c0)={&(0x7f0000000280)={0x424, r1, 0x700, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x1bc, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x2}}, {0xc8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xc3, 0x1, "02b719e8f5fe22da8ae0c0fd2168ba69ec7d79302029bfb0fa39f6b915c348c0b69e8ef061bbd3efc2604b736e1d7baca566fd41d2d4a24c3cac84acd827ff43fb6a2913aeae764df6060abe67bf3de5e42ef084d94adde9501283d248c266df6e55cd2e9d408538ee6487018222a5f77c310df14e04f7959f0e0fb8308cd6515c4d2ad8ffd024ba0e7676909a16542f81bf323cbfd9f3508478afc275f3d161cc27d0ab7431751d20dfcedf68cf6b3a79fe45b59ac10a4a5a617da6d5d407"}}, {0xe4, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xde, 0x1, "ebc200d270790ec9abbccbaa0595dba4ac2c5c7afd793f91bbf381975773ab50effad87a024ca8c8e98af32675b70f3b1aa06ba6f198e774dd37071f57c1938df75235ca10e377c6b9b4d94a42fd2c14556a5d1bf101847215debf19913dd86544151ef088de5906a14362704c99be26bdbc60c2cbe78a386e47d797133e5c3c9aeb9569bbf4dbc4466063edaf4889a50ba921a9b4ffc4fc4832a7b91ae37d825f2a4623e7b7835efdcffb3947391320d3be149056239210166601f9d6918b53f668c34b22e79c87cac5c600c5e54597f1b580f23ba0ed323887"}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x6}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x244, 0x3, 0x0, 0x1, [{0x74, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x70, 0x2, "064705d1c3b25837df26f083e8880945f348752cadd52a51d84bdcf000152dbd0c44f5de7291d0d74f0b9b80614c0db287f20b913cfffde53713ad1ed8b449698a3ab50eef098ecc9f4f4b94f42d9de27e563b469ef127d6a23203c3feaaeaea33720720e2bc70f90f8b792a"}}, {0xec, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xe6, 0x1, "b0886d63d1e540d86d2bf9e01a211816793ad361b1b531cff69bd6b411308d011d9db01c65b4dd7c604958ebd2231486cba643116e68b17ac262c8e2da9477bc55e45be62f7839fc8cbf5df51a29d6801e3283aed2d0377713a7d4ce78ddc8ff7b149c73212a98f1f3d875ae3b333b9dfc74e7b17985d260280b6f76a20fc2a5ad3128bf0721ac49d2431b34ad9cd6d0761c996cc05cd786cca71470fedca4dfd26b89c3b5784cd113610915180384a32365c5672c7b5eaf3251ec9700957a57215346ca206c67a831f781e3fc102b700ade65b4a24d271d1d69e32a94850f706daf"}}, {0xe0, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xd9, 0x2, "c17c3027099ec4984fb0fcae7fc954ef800f17b44c3f376d734e1d351dedb942664c9d5bc4ba2a8bba0b99cfcbcb94a0b1ef553cb881202c6b48259369d615f398489e28e037e7ae93932b6d9155aa8b5617e6787fe4e7974496e17e9039dbf306bb3fd88cda456c3a4036197d5ffc0bf7b440e693e1e1fd6b390a3e7f4eabbb132bb577b395e4d0914ee670f955e088be38e13ee4bfa628e67675ce0408e12653f4256eedebd019e042651f7c440c8a5547ce7095e50673bdfed1723d87c67da5fc51d30da31e8d705f3d4212981326ef5aaff539"}}]}]}, 0x424}, 0x1, 0x0, 0x0, 0x8085}, 0x0)
r2 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r3=>0x0)
r4 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r4, 0x4610, 0x737c, 0x2, &(0x7f0000000000)={[0x6845]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 22)

17:53:55 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x4, @fd=r0, 0x0, 0x1ff, 0x9, 0x0, 0x1}, 0x7ff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = dup(r4)
fsmount(r7, 0x1, 0xf8)
r8 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x400083, 0x154)
syz_io_uring_submit(r1, r6, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r8, &(0x7f0000000180)=0x80, &(0x7f0000000240)=@xdp, 0x0, 0x80800}, 0x10000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x3}, 0x3f)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x10000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000180))
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x33df, &(0x7f0000000140)=[r3, r2], 0x2, 0x0, 0x1, {0x0, r4}}, 0xfffffff8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x12, r2, 0x0)
syz_io_uring_setup(0x2a66, &(0x7f0000000200)={0x0, 0xfcd4, 0x20, 0x1, 0x114, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000280), &(0x7f00000002c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000300)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd=r3, 0x69a, 0x0, 0x3f, 0x6, 0x1}, 0x9d)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r8, 0x4)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r8, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r7, r10, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x3}, 0x4)
syz_io_uring_complete(0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1833.697595] FAULT_INJECTION: forcing a failure.
[ 1833.697595] name failslab, interval 1, probability 0, space 0, times 0
[ 1833.698992] CPU: 1 PID: 17544 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1833.699773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1833.701065] Call Trace:
[ 1833.701369]  dump_stack+0x107/0x163
[ 1833.701787]  should_fail.cold+0x5/0xa
[ 1833.702227]  ? create_object.isra.0+0x3a/0xa20
[ 1833.702743]  should_failslab+0x5/0x10
[ 1833.703169]  kmem_cache_alloc+0x5b/0x350
[ 1833.703631]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1833.704319]  create_object.isra.0+0x3a/0xa20
[ 1833.704825]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1833.705390]  kmem_cache_alloc+0x159/0x350
[ 1833.705857]  ptlock_alloc+0x1d/0x70
[ 1833.706282]  pte_alloc_one+0x68/0x190
[ 1833.706733]  __pte_alloc+0x1d/0x320
[ 1833.707167]  handle_mm_fault+0x289a/0x3520
[ 1833.707683]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1833.708303]  ? __pmd_alloc+0x5e0/0x5e0
[ 1833.708785]  __get_user_pages+0x61b/0x1390
[ 1833.709287]  ? follow_page_mask+0x1860/0x1860
[ 1833.709819]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1833.710358]  __get_user_pages_remote+0x1d1/0x860
[ 1833.710928]  ? lock_downgrade+0x6d0/0x6d0
[ 1833.711421]  get_user_pages_remote+0x63/0x90
[ 1833.711941]  get_arg_page+0xba/0x200
[ 1833.712375]  ? acct_arg_size+0xe0/0xe0
[ 1833.712854]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1833.713492]  ? trace_hardirqs_on+0x5b/0x180
[ 1833.713985]  ? count.constprop.0+0x1b3/0x280
[ 1833.714511]  copy_string_kernel+0x1b4/0x450
[ 1833.715021]  ? do_execveat_common+0x2ae/0x8c0
[ 1833.715549]  do_execveat_common+0x518/0x8c0
[ 1833.716057]  ? bprm_execve+0x1b00/0x1b00
[ 1833.716558]  __x64_sys_execveat+0xed/0x130
[ 1833.717061]  do_syscall_64+0x33/0x40
[ 1833.717510]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1833.718116] RIP: 0033:0x7f48cbaccb19
[ 1833.718564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1833.720770] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1833.721673] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1833.722530] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1833.723380] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1833.724223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1833.725082] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:53:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x80010, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x2004, @fd_index, 0x5, 0x0, 0x0, 0x4, 0x0, {0x1}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd, 0x0, {}, 0x0, 0x1}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 7:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x4361, &(0x7f0000000080)={0x0, 0xf933, 0x0, 0x1, 0x354, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:53:55 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0xffff, 0x0, 0xd78f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000000)={0x0, 0x4, 0x9})
syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/pid_for_children\x00')
syz_io_uring_submit(r3, r1, &(0x7f0000000240)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r0, 0x0, {}, 0x0, 0xc}, 0x4)
r5 = openat$cgroup_ro(r0, &(0x7f0000000000)='blkio.bfq.empty_time\x00', 0x0, 0x0)
sync_file_range(r5, 0xffffffff, 0x3, 0x1)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, r5, 0x8000000)
syz_io_uring_submit(r6, r1, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0xa, 0x0, 0x0, 0x88, 0xe, 0x0, {0x0, 0x0, r2}}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1833.985323] FAULT_INJECTION: forcing a failure.
[ 1833.985323] name failslab, interval 1, probability 0, space 0, times 0
[ 1833.988139] CPU: 0 PID: 17565 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1833.989724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1833.992281] Call Trace:
[ 1833.992888]  dump_stack+0x107/0x163
[ 1833.993705]  should_fail.cold+0x5/0xa
[ 1833.994559]  ? __anon_vma_prepare+0x281/0x4f0
[ 1833.995569]  should_failslab+0x5/0x10
[ 1833.996421]  kmem_cache_alloc+0x5b/0x350
[ 1833.997343]  __anon_vma_prepare+0x281/0x4f0
[ 1833.998305]  ? __pte_alloc+0x194/0x320
[ 1833.999178]  handle_mm_fault+0x2b48/0x3520
[ 1834.000130]  ? irqentry_enter+0x26/0x50
[ 1834.001060]  ? __pmd_alloc+0x5e0/0x5e0
[ 1834.001948]  ? __get_user_pages+0x5ca/0x1390
[ 1834.002941]  __get_user_pages+0x61b/0x1390
[ 1834.003913]  ? follow_page_mask+0x1860/0x1860
[ 1834.004946]  __get_user_pages_remote+0x1d1/0x860
[ 1834.006035]  get_user_pages_remote+0x63/0x90
[ 1834.007030]  get_arg_page+0xba/0x200
[ 1834.007879]  ? acct_arg_size+0xe0/0xe0
[ 1834.008779]  copy_string_kernel+0x1b4/0x450
[ 1834.009771]  do_execveat_common+0x518/0x8c0
[ 1834.010746]  ? bprm_execve+0x1b00/0x1b00
[ 1834.011687]  __x64_sys_execveat+0xed/0x130
[ 1834.012656]  do_syscall_64+0x33/0x40
[ 1834.013516]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1834.014672] RIP: 0033:0x7f843b55cb19
[ 1834.015528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1834.019715] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1834.021486] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1834.023116] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1834.024746] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1834.026367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1834.027987] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:08 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 23)

17:54:08 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x4010, r3, 0x8000000)
syz_io_uring_submit(r5, 0x0, &(0x7f0000001700)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000001680)={0x701000, 0x89, 0x1d}, &(0x7f00000016c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x10, r3, 0x10000000)
r7 = syz_open_dev$vcsu(&(0x7f0000000000), 0xd753, 0x8280)
syz_io_uring_submit(r1, r6, &(0x7f0000001640)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r7, 0x0, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000240)="15a629b5f680f7a0ba560ce2e5b30ad86b27f83ea041a83d74fcc453df129a44c006a3edbda2bf2420a2e95f24f207d20561af27c30304b26fb7d7b968799ca850f16f483b0acaaabd5e62c5ee07ed0ff8b6b68d1dd1eb24ddc3dda18f86cf4a1b20bfcfb0ed2e180b7df4e01dbb68f698f22b2e545b3f95fbf55bfd8bf3dbfcef5f467b8e9853a13c1340a5024bff6c94286c4ae0101f5ace700000e088b1524751de3b61fe9456b71a69b3ab6e39", 0xaf}, {&(0x7f0000000180)="b2ed7373ef2afcb815f1fc7d7a5193ffbca5ee22e0cca170b582600186e0af7840fa9e7e5128703c84e034f7e66ac5f390c0ac91668a49780c5d9a7802ddd76eaf42adc6e3733667599a5e20517e684761e506f66ac499574a556a2244987396fb1a599e", 0x64}, {&(0x7f0000000300)="1c0448178182a51d04a4c0f66fab85ccc239c73b667a30d11795278527211bbd37c6a05d60596f904a00307ab9d0e72401c7c7c324cdfa8130e3e290e76d6f1bad2f08a007e8627a59f6647b3ee882a3e69da7964dd827a7e3b1b558a6b0c6ab64b36e", 0x63}, {&(0x7f0000000380)="5f85c0a1ac00aed22cb8d45fd184685e2abed74820e9cbcf37485385061cda8d152d9b47c46c18918ccf55ed47e50ff273a0012f8fd3cbda7a6d1b15a1562b9beef419276c436f1080361f90cd26ff8d38f3dc6da8f7563b4d29eccdcb509d8f46cc4603fc79f728bffcdaee049629eff0a88597ad807fc9b160e5843614d4e2870f87e906f1de85f89dbf1f52ffc08a07eb01138511f0ff8768c774bdded2a323eeb0cb0994e12f9e6bf904982848d91ab4c26ecc891d1d73c94a5279a5eee73bf9891239f32641915afdc25828fe4522bf66e0605ab7b709472fb667c202d3e2a0aae5da63878828c5279015bc", 0xee}, {&(0x7f0000000480)="8a729796a6247c5d7f673a7cba3191982e4bd16f5718cad06895c3d860f43af3c134e865b0046141e48f8dc84a2110ae1c2e1f832ab4758c95ab18730d0ae986cbe4296496583c6e4fadf77dcdb5590e935fd1", 0x53}, {&(0x7f0000000500)="e3e6", 0x2}], 0x6, &(0x7f00000005c0)=[{0x1010, 0x0, 0x4681, "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"}], 0x1010}, 0x0, 0x20040811}, 0x7fffffff)
ftruncate(0xffffffffffffffff, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r10 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000001740), 0x80002, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r11, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(0x0, r9, &(0x7f00000017c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xe13, &(0x7f0000001780)=[r10, r11], 0x2}, 0x6)

17:54:08 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x4010, r0, 0x0)
r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000015c0)={&(0x7f0000000180)=@alg, 0x80, &(0x7f00000026c0)=[{&(0x7f0000000240)=""/192, 0xc0}, {&(0x7f0000000300)=""/250, 0x118}, {&(0x7f0000000400)=""/192, 0xc0}, {&(0x7f00000014c0)=""/194, 0xc2}, {&(0x7f0000001640)=""/114, 0x72}, {&(0x7f00000016c0)=""/4096, 0x1000}], 0x6}, 0x0, 0x40010060, 0x0, {0x0, r4}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='attr/fscreate\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)

17:54:08 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_setup(0x52a7, &(0x7f0000000200)={0x0, 0xd0b, 0x1, 0x2, 0x3ca, 0x0, r0})
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r4, 0x72a0, 0x2e43, 0x2, &(0x7f0000000000)={[0x3ff]}, 0x8)

17:54:08 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x4000010, r3, 0x10000000)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r1, r5, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r7}}, 0x5)

17:54:08 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 20)

17:54:08 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="252f66696c650100afea1ce887ca304dc9ef6d1dfdbd040f1f753febc6cfeb850ea073431d5cc8391f764a0ec7d568eb1e54d6"])
r4 = syz_io_uring_setup(0x72ec, &(0x7f0000000180)={0x0, 0x5aa2, 0x10, 0x1, 0x2f0, 0x0, r3}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f00000002c0)=[r5, r7, r4, r8, r3], 0x5)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x1713, 0xc}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:08 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x4)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000100)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x1}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1847.005896] FAULT_INJECTION: forcing a failure.
[ 1847.005896] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.009401] CPU: 0 PID: 17650 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1847.010365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.011903] Call Trace:
[ 1847.012280]  dump_stack+0x107/0x163
[ 1847.012791]  should_fail.cold+0x5/0xa
[ 1847.013304]  ? create_object.isra.0+0x3a/0xa20
[ 1847.013918]  should_failslab+0x5/0x10
[ 1847.014434]  kmem_cache_alloc+0x5b/0x350
[ 1847.014988]  create_object.isra.0+0x3a/0xa20
[ 1847.015584]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1847.016282]  kmem_cache_alloc+0x159/0x350
[ 1847.016858]  __anon_vma_prepare+0x281/0x4f0
[ 1847.017440]  ? __pte_alloc+0x194/0x320
[ 1847.018024]  handle_mm_fault+0x2b48/0x3520
[ 1847.018595]  ? __schedule+0x850/0x1e80
[ 1847.019111]  ? __pmd_alloc+0x5e0/0x5e0
[ 1847.019652]  __get_user_pages+0x61b/0x1390
[ 1847.020232]  ? follow_page_mask+0x1860/0x1860
[ 1847.020852]  __get_user_pages_remote+0x1d1/0x860
[ 1847.021503]  ? lock_downgrade+0x6d0/0x6d0
[ 1847.022077]  get_user_pages_remote+0x63/0x90
[ 1847.022673]  get_arg_page+0xba/0x200
[ 1847.023181]  ? acct_arg_size+0xe0/0xe0
[ 1847.023770]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1847.024505]  ? trace_hardirqs_on+0x5b/0x180
[ 1847.025116]  ? count.constprop.0+0x1b3/0x280
[ 1847.025723]  copy_string_kernel+0x1b4/0x450
[ 1847.026311]  ? do_execveat_common+0x2ae/0x8c0
[ 1847.026929]  do_execveat_common+0x518/0x8c0
[ 1847.027514]  ? bprm_execve+0x1b00/0x1b00
[ 1847.028075]  __x64_sys_execveat+0xed/0x130
[ 1847.028652]  do_syscall_64+0x33/0x40
[ 1847.029214]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.029976] RIP: 0033:0x7f843b55cb19
[ 1847.030543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.033362] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.034512] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1847.035557] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.036604] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.037663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.038702] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:08 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000180), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x362, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100)

17:54:08 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6888b004668ec46f, 0x11, r0, 0x8000000)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f00000002c0), 0x101002, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000300)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r5, &(0x7f0000000280)={0x8}, r6}, 0x52a913f5)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x704a, &(0x7f0000000180)={0x0, 0x7cba, 0x8, 0x2, 0x185, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000240))

17:54:08 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 24)

17:54:08 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x13, r2, 0x10000000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1847.228037] FAULT_INJECTION: forcing a failure.
[ 1847.228037] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1847.229905] CPU: 0 PID: 17732 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1847.230872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.232454] Call Trace:
[ 1847.232830]  dump_stack+0x107/0x163
[ 1847.233346]  should_fail.cold+0x5/0xa
[ 1847.233889]  __alloc_pages_nodemask+0x182/0x680
[ 1847.234549]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
17:54:08 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9, 0x10, r2, 0x3ef99000)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x800)

[ 1847.235394]  ? up_write+0x191/0x550
[ 1847.236056]  ? rwlock_bug.part.0+0x90/0x90
[ 1847.236657]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 1847.237352]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 1847.238116]  alloc_pages_vma+0xbb/0x410
[ 1847.238682]  handle_mm_fault+0x1547/0x3520
[ 1847.239277]  ? __pmd_alloc+0x5e0/0x5e0
[ 1847.239829]  ? trace_hardirqs_on+0x5b/0x180
[ 1847.240437]  __get_user_pages+0x61b/0x1390
[ 1847.241043]  ? follow_page_mask+0x1860/0x1860
[ 1847.241670]  __get_user_pages_remote+0x1d1/0x860
[ 1847.242325]  ? lock_downgrade+0x6d0/0x6d0
[ 1847.242874]  get_user_pages_remote+0x63/0x90
[ 1847.243500]  get_arg_page+0xba/0x200
[ 1847.244028]  ? acct_arg_size+0xe0/0xe0
[ 1847.244556]  ? downgrade_write+0x3a0/0x3a0
[ 1847.245153]  ? count.constprop.0+0x1b3/0x280
[ 1847.245769]  copy_string_kernel+0x1b4/0x450
[ 1847.246371]  do_execveat_common+0x518/0x8c0
[ 1847.246971]  ? bprm_execve+0x1b00/0x1b00
[ 1847.247543]  __x64_sys_execveat+0xed/0x130
[ 1847.248131]  do_syscall_64+0x33/0x40
[ 1847.248653]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.249382] RIP: 0033:0x7f843b55cb19
[ 1847.249906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.252541] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.253426] FAULT_INJECTION: forcing a failure.
[ 1847.253426] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.253546] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1847.253553] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.253559] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.253574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.260058] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1847.261233] CPU: 1 PID: 17657 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1847.262867] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.265584] Call Trace:
[ 1847.266201]  dump_stack+0x107/0x163
[ 1847.267055]  should_fail.cold+0x5/0xa
[ 1847.267947]  ? __anon_vma_prepare+0x62/0x4f0
[ 1847.268985]  should_failslab+0x5/0x10
[ 1847.269875]  kmem_cache_alloc+0x5b/0x350
[ 1847.270830]  __anon_vma_prepare+0x62/0x4f0
[ 1847.271818]  ? __pte_alloc+0x194/0x320
[ 1847.272751]  handle_mm_fault+0x2b48/0x3520
[ 1847.273753]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1847.274980]  ? lock_chain_count+0x20/0x20
[ 1847.275950]  ? __pmd_alloc+0x5e0/0x5e0
[ 1847.276888]  __get_user_pages+0x61b/0x1390
[ 1847.277892]  ? follow_page_mask+0x1860/0x1860
[ 1847.278940]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1847.280153]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1847.281422]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1847.282680]  __get_user_pages_remote+0x1d1/0x860
[ 1847.283789]  get_user_pages_remote+0x63/0x90
[ 1847.284826]  get_arg_page+0xba/0x200
[ 1847.285688]  ? acct_arg_size+0xe0/0xe0
[ 1847.286584]  ? kcov_remote_stop+0x310/0x310
[ 1847.287585]  ? count.constprop.0+0x1b3/0x280
[ 1847.288606]  copy_string_kernel+0x1b4/0x450
[ 1847.289617]  do_execveat_common+0x518/0x8c0
[ 1847.290617]  ? bprm_execve+0x1b00/0x1b00
[ 1847.291592]  __x64_sys_execveat+0xed/0x130
[ 1847.292573]  do_syscall_64+0x33/0x40
[ 1847.293453]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.294639] RIP: 0033:0x7f48cbaccb19
[ 1847.295506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.299758] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.301512] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1847.303142] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.304778] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.306409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.308040] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:08 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x247c, 0xf967, 0x1, &(0x7f0000000000)={[0x400]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7043, &(0x7f0000000180)={0x0, 0x3055, 0x8, 0x2, 0x3af, 0x0, r2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000000300)={0x10000, 0x0, &(0x7f00000002c0)=[r5]}, 0x1)

17:54:08 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 25)

17:54:09 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x3c4d, &(0x7f0000000180)={0x0, 0xeb6a, 0x8, 0x0, 0x38, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff7000/0x8000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r3=>0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f0000000280)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000640)=[{&(0x7f0000003500)=""/142, 0x8e}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/23, 0x17}, {&(0x7f0000000480)=""/101, 0x65}, {&(0x7f0000000500)=""/18, 0x12}, {&(0x7f0000000540)=""/226, 0xe2}], 0x6}, 0x8}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f00000006c0)}, {&(0x7f0000000700)=""/168, 0xa8}, {&(0x7f00000007c0)=""/181, 0xb5}, {&(0x7f0000000880)=""/32, 0x20}, {&(0x7f00000008c0)=""/154, 0x9a}], 0x5, &(0x7f0000000a00)=""/129, 0x81}}, {{&(0x7f0000000ac0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000b40)=""/1, 0x1}, {&(0x7f0000000b80)=""/18, 0x12}, {&(0x7f0000000bc0)=""/143, 0x8f}], 0x3, &(0x7f0000000cc0)=""/42, 0x2a}, 0x1}, {{&(0x7f0000000d00)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000000d80), 0x0, &(0x7f0000000dc0)=""/90, 0x5a}, 0x8}, {{0x0, 0x0, &(0x7f0000003240)=[{&(0x7f0000000e40)=""/165, 0xa5}, {&(0x7f0000000f00)=""/90, 0x5a}, {&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000001f80)=""/4096, 0x1000}, {&(0x7f0000002f80)=""/207, 0xcf}, {&(0x7f0000003080)=""/215, 0xd7}, {&(0x7f0000003180)=""/38, 0x26}, {&(0x7f00000031c0)=""/93, 0x5d}], 0x8, &(0x7f00000032c0)=""/171, 0xab}, 0x400}, {{&(0x7f0000003380)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000003680)=[{&(0x7f0000003400)=""/216, 0xd8}, {&(0x7f0000000300)=""/137, 0x89}, {&(0x7f00000035c0)=""/132, 0x84}], 0x3, &(0x7f00000036c0)=""/228, 0xe4}, 0x8000}], 0x6, 0x10060, &(0x7f0000003940)={0x0, 0x989680})
syz_io_uring_submit(r1, r3, &(0x7f0000003a40)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r4, 0x0, &(0x7f0000003980)="4c6bf6f673e3cc49657d5e149e8faedfac62c507c34745361e3f63abcd79d581ff9989afbe8e753337e5f44e3731c5cf292225531d6fbf0d2c007f119ac2ec97e0f60e8074637129934ffab7f9bc554fce122a6c4cc2ee42cca63454b66c3fe30ce397eee6dbb10ec9480cf33f0b0dfca75dbe03a5365454f0d287bbc930b6fb41a19f08f70cb44f2e7f67352f2cd9a7e35f0071c5950d43de4b887c0c77b7a5dcc5796eb0ed4e46e8852f2f7eee9da092e96862510b9b09b6", 0xb9, 0x48041, 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:09 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x67f, 0x909, 0x2, &(0x7f0000000000)={[0x6]}, 0x8)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
io_uring_enter(r0, 0x2b07, 0x6390, 0x2, &(0x7f0000000240)={[0x6]}, 0x8)
ioctl$SG_GET_RESERVED_SIZE(r4, 0x1260, &(0x7f00000002c0))
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x1f, {}, 0x0, 0x0, 0xec160de6cd295ca9}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$INCFS_IOC_PERMIT_FILL(r5, 0x40046721, &(0x7f0000000340)={r7})
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r2, 0xc038943b, &(0x7f00000001c0)={0x1, 0x10, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0]})
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0xd4495808b1a75f76, 0x0)
io_uring_enter(r8, 0x58fe, 0x6440, 0x1, &(0x7f0000000300)={[0x3]}, 0x8)

[ 1847.398938] FAULT_INJECTION: forcing a failure.
[ 1847.398938] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.400686] CPU: 0 PID: 17753 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1847.401582] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.403024] Call Trace:
[ 1847.403432]  dump_stack+0x107/0x163
[ 1847.403992]  should_fail.cold+0x5/0xa
[ 1847.404571]  ? dup_fd+0x89/0xca0
[ 1847.405103]  ? dup_fd+0x89/0xca0
[ 1847.405619]  should_failslab+0x5/0x10
[ 1847.406219]  kmem_cache_alloc+0x5b/0x350
[ 1847.406735]  ? io_wake_function+0x2e0/0x2e0
[ 1847.407290]  dup_fd+0x89/0xca0
[ 1847.407702]  ? __io_uring_task_cancel+0x1d1/0x250
[ 1847.408319]  unshare_files+0x171/0x270
[ 1847.408828]  ? __ia32_sys_unshare+0x40/0x40
[ 1847.409390]  ? get_user_pages_remote+0x63/0x90
[ 1847.409962]  ? get_user_pages_remote+0x6c/0x90
[ 1847.410563]  bprm_execve+0x123/0x1b00
[ 1847.411052]  ? acct_arg_size+0xe0/0xe0
[ 1847.411559]  ? strnlen+0x3f/0x70
[ 1847.411978]  ? open_exec+0x70/0x70
17:54:09 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x800)

[ 1847.412440]  ? memcpy+0x39/0x60
[ 1847.412943]  ? copy_string_kernel+0x3b6/0x450
[ 1847.413531]  do_execveat_common+0x765/0x8c0
[ 1847.414097]  ? bprm_execve+0x1b00/0x1b00
[ 1847.414619]  __x64_sys_execveat+0xed/0x130
[ 1847.415178]  do_syscall_64+0x33/0x40
[ 1847.415651]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.416307] RIP: 0033:0x7f843b55cb19
[ 1847.416797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.419173] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.420162] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1847.421089] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.422001] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.422920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.423836] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:09 executing program 4:
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, 0x1, 0x2, 0x701, 0x0, 0x0, {0xc, 0x0, 0x3}, [@CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x40841)
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs/binder-control\x00', 0x1002, 0x0)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
close_range(r3, r4, 0x2)

17:54:09 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 21)

17:54:09 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x200000e, 0x8010, r0, 0x8000000)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PROBE(r2, 0x8, &(0x7f0000000240)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x13)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:09 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 26)

[ 1847.546855] FAULT_INJECTION: forcing a failure.
[ 1847.546855] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.548259] CPU: 0 PID: 17787 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1847.549051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.550346] Call Trace:
[ 1847.550649]  dump_stack+0x107/0x163
[ 1847.551060]  should_fail.cold+0x5/0xa
[ 1847.551489]  ? create_object.isra.0+0x3a/0xa20
[ 1847.552010]  should_failslab+0x5/0x10
[ 1847.552439]  kmem_cache_alloc+0x5b/0x350
[ 1847.552916]  create_object.isra.0+0x3a/0xa20
[ 1847.553410]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1847.553987]  kmem_cache_alloc+0x159/0x350
[ 1847.554458]  __anon_vma_prepare+0x62/0x4f0
[ 1847.554933]  ? __pte_alloc+0x194/0x320
[ 1847.555372]  handle_mm_fault+0x2b48/0x3520
[ 1847.555853]  ? __pmd_alloc+0x5e0/0x5e0
[ 1847.556304]  ? trace_hardirqs_on+0x5b/0x180
[ 1847.556831]  ? __get_user_pages+0x53e/0x1390
[ 1847.557359]  __get_user_pages+0x61b/0x1390
[ 1847.557864]  ? follow_page_mask+0x1860/0x1860
[ 1847.558406]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1847.558936]  ? mark_held_locks+0x9e/0xe0
[ 1847.559408]  __get_user_pages_remote+0x1d1/0x860
[ 1847.559950]  ? lock_downgrade+0x6d0/0x6d0
[ 1847.560419]  get_user_pages_remote+0x63/0x90
[ 1847.560910]  get_arg_page+0xba/0x200
[ 1847.561318]  ? acct_arg_size+0xe0/0xe0
[ 1847.561740]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1847.562322]  ? trace_hardirqs_on+0x5b/0x180
[ 1847.562796]  ? count.constprop.0+0x1b3/0x280
[ 1847.563265]  copy_string_kernel+0x1b4/0x450
[ 1847.563727]  ? do_execveat_common+0x2ae/0x8c0
[ 1847.564209]  do_execveat_common+0x518/0x8c0
[ 1847.564679]  ? bprm_execve+0x1b00/0x1b00
[ 1847.565120]  __x64_sys_execveat+0xed/0x130
[ 1847.565571]  do_syscall_64+0x33/0x40
[ 1847.565970]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.566514] RIP: 0033:0x7f48cbaccb19
[ 1847.566914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.568859] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.569669] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1847.570438] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.571194] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.571948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.572706] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:09 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x80}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1847.764695] FAULT_INJECTION: forcing a failure.
[ 1847.764695] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.767428] CPU: 1 PID: 17814 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1847.768906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1847.771285] Call Trace:
[ 1847.771843]  dump_stack+0x107/0x163
[ 1847.772608]  should_fail.cold+0x5/0xa
[ 1847.773419]  ? create_object.isra.0+0x3a/0xa20
[ 1847.774380]  should_failslab+0x5/0x10
[ 1847.775178]  kmem_cache_alloc+0x5b/0x350
[ 1847.776048]  create_object.isra.0+0x3a/0xa20
[ 1847.776979]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1847.778035]  kmem_cache_alloc+0x159/0x350
[ 1847.778909]  dup_fd+0x89/0xca0
[ 1847.779581]  ? __io_uring_task_cancel+0x1d1/0x250
[ 1847.780596]  unshare_files+0x171/0x270
[ 1847.781427]  ? __ia32_sys_unshare+0x40/0x40
[ 1847.782335]  ? get_user_pages_remote+0x63/0x90
[ 1847.783280]  ? get_user_pages_remote+0x6c/0x90
[ 1847.784366]  bprm_execve+0x123/0x1b00
[ 1847.785304]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1847.786585]  ? trace_hardirqs_on+0x5b/0x180
[ 1847.787602]  ? open_exec+0x70/0x70
[ 1847.788445]  ? do_execveat_common+0x754/0x8c0
[ 1847.789522]  do_execveat_common+0x765/0x8c0
[ 1847.790536]  ? bprm_execve+0x1b00/0x1b00
[ 1847.791501]  __x64_sys_execveat+0xed/0x130
[ 1847.792502]  do_syscall_64+0x33/0x40
[ 1847.793350]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1847.794759] RIP: 0033:0x7f843b55cb19
[ 1847.795663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1847.800902] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1847.802701] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1847.804219] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1847.805774] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1847.807328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1847.809137] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:21 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 27)

17:54:21 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

17:54:21 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4}}, './file0/file0\x00'})
r1 = syz_io_uring_setup(0x43e4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2a4, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:21 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 22)

17:54:21 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = dup2(r0, r0)
io_uring_enter(r2, 0x4788, 0x525c, 0x2, &(0x7f0000000000)={[0x2]}, 0x8)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:21 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000940)={0x34, r3, 0x1, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x34}}, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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"], 0x7c}, 0x1, 0x0, 0x0, 0x20008044}, 0x40000)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000006, 0x8010, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:21 executing program 7:
r0 = syz_io_uring_setup(0x4363, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x2f9}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x1, 0x2004, @fd_index=0x9, 0x8000, &(0x7f0000000240)="0b049a96ad23d107d817027f925d35fbfda3a089423713cc8c1a891b10c46b48623d4cb9b964abc11f3266ccabb39a698fe5d54ec61306a552878da5f7ee7bfd4215f787c9b28879d71cb0accd17a638a2ea5f8af794f9a3d916a817d108a4b38dc04068a1744e87b10c1c1805d7c177f055aa4366003fabae6f30bf3aff91783205a0392c1863f3573a0dbe", 0x8c, 0x6, 0x0, {0x0, r7}}, 0x4e)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:21 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = dup2(r0, r0)
io_uring_enter(r2, 0x3f4e, 0x5785, 0x1, &(0x7f0000000000)={[0x3795]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1859.956511] FAULT_INJECTION: forcing a failure.
[ 1859.956511] name failslab, interval 1, probability 0, space 0, times 0
[ 1859.958257] CPU: 1 PID: 17833 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1859.959210] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1859.960760] Call Trace:
[ 1859.961142]  dump_stack+0x107/0x163
[ 1859.961642]  should_fail.cold+0x5/0xa
[ 1859.962167]  ? alloc_fdtable+0x84/0x280
[ 1859.962716]  should_failslab+0x5/0x10
[ 1859.963237]  kmem_cache_alloc_trace+0x55/0x360
[ 1859.963863]  ? rwlock_bug.part.0+0x90/0x90
[ 1859.964443]  alloc_fdtable+0x84/0x280
[ 1859.964861]  dup_fd+0x71e/0xca0
[ 1859.965341]  unshare_files+0x171/0x270
[ 1859.965874]  ? __ia32_sys_unshare+0x40/0x40
[ 1859.966463]  ? get_user_pages_remote+0x63/0x90
[ 1859.967089]  bprm_execve+0x123/0x1b00
[ 1859.967609]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1859.968324]  ? trace_hardirqs_on+0x5b/0x180
[ 1859.968918]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1859.969651]  ? open_exec+0x70/0x70
[ 1859.970142]  do_execveat_common+0x765/0x8c0
[ 1859.970732]  ? bprm_execve+0x1b00/0x1b00
[ 1859.971291]  __x64_sys_execveat+0xed/0x130
[ 1859.971872]  do_syscall_64+0x33/0x40
[ 1859.972378]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1859.973086] RIP: 0033:0x7f843b55cb19
[ 1859.973574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1859.975485] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1859.976282] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1859.977042] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1859.977793] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1859.978541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1859.979287] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1860.024095] FAULT_INJECTION: forcing a failure.
[ 1860.024095] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.025581] CPU: 1 PID: 17836 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1860.026355] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1860.027539] Call Trace:
[ 1860.027829]  dump_stack+0x107/0x163
[ 1860.028212]  should_fail.cold+0x5/0xa
[ 1860.028618]  ? __anon_vma_prepare+0x281/0x4f0
[ 1860.029127]  should_failslab+0x5/0x10
[ 1860.029529]  kmem_cache_alloc+0x5b/0x350
[ 1860.029986]  __anon_vma_prepare+0x281/0x4f0
[ 1860.030464]  ? __pte_alloc+0x194/0x320
[ 1860.030872]  handle_mm_fault+0x2b48/0x3520
[ 1860.031360]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1860.031946]  ? __pmd_alloc+0x5e0/0x5e0
[ 1860.032364]  __get_user_pages+0x61b/0x1390
[ 1860.032839]  ? follow_page_mask+0x1860/0x1860
[ 1860.033349]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1860.033869]  __get_user_pages_remote+0x1d1/0x860
[ 1860.034406]  get_user_pages_remote+0x63/0x90
[ 1860.034877]  get_arg_page+0xba/0x200
[ 1860.035292]  ? acct_arg_size+0xe0/0xe0
[ 1860.035730]  ? strnlen+0x3f/0x70
[ 1860.036085]  copy_string_kernel+0x1b4/0x450
[ 1860.036571]  do_execveat_common+0x518/0x8c0
[ 1860.037039]  ? bprm_execve+0x1b00/0x1b00
[ 1860.037499]  __x64_sys_execveat+0xed/0x130
[ 1860.037973]  do_syscall_64+0x33/0x40
[ 1860.038382]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1860.038956] RIP: 0033:0x7f48cbaccb19
[ 1860.039348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.041402] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1860.042253] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1860.043047] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1860.043840] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.044634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.045435] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:21 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 28)

17:54:21 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
syz_io_uring_setup(0x8a0, &(0x7f0000000240)={0x0, 0xdd83, 0x2, 0x2, 0x2ff, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000000), &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x77359400}, 0x1, 0x1, 0x0, {0x0, r4}}, 0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1860.222196] FAULT_INJECTION: forcing a failure.
[ 1860.222196] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.228834] CPU: 1 PID: 17894 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1860.230067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1860.231996] Call Trace:
[ 1860.232462]  dump_stack+0x107/0x163
[ 1860.233095]  should_fail.cold+0x5/0xa
[ 1860.233742]  ? create_object.isra.0+0x3a/0xa20
[ 1860.234534]  should_failslab+0x5/0x10
[ 1860.235165]  kmem_cache_alloc+0x5b/0x350
[ 1860.235878]  create_object.isra.0+0x3a/0xa20
[ 1860.236626]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1860.237420]  kmem_cache_alloc_trace+0x151/0x360
[ 1860.237982]  alloc_fdtable+0x84/0x280
[ 1860.238427]  dup_fd+0x71e/0xca0
[ 1860.238831]  unshare_files+0x171/0x270
[ 1860.239266]  ? __ia32_sys_unshare+0x40/0x40
[ 1860.239773]  ? get_user_pages_remote+0x63/0x90
[ 1860.240293]  ? get_user_pages_remote+0x6c/0x90
[ 1860.240850]  bprm_execve+0x123/0x1b00
[ 1860.241300]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1860.241928]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.242410]  ? open_exec+0x70/0x70
[ 1860.242831]  ? do_execveat_common+0x754/0x8c0
[ 1860.243346]  do_execveat_common+0x765/0x8c0
[ 1860.243841]  ? bprm_execve+0x1b00/0x1b00
[ 1860.244325]  __x64_sys_execveat+0xed/0x130
[ 1860.244814]  do_syscall_64+0x33/0x40
[ 1860.245279]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1860.245878] RIP: 0033:0x7f843b55cb19
[ 1860.246334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.248492] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1860.249387] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1860.250203] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1860.251054] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1860.251907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.252728] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:33 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 29)

17:54:33 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x6}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, 0x0)

17:54:33 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x7485, &(0x7f0000000180)={0x0, 0x1ef9, 0x1, 0x2, 0x30c}, &(0x7f0000001000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x5a50, 0xfffffffffffffffa, 0x0, 0x6, 0x4, 0x0, {0x0, r5}}, 0x6)

17:54:33 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 23)

17:54:33 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x1bf4, 0xdefe, 0x3, &(0x7f0000000000)={[0xce]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 7:
r0 = open_tree(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x1001)
ioctl$BLKPG(r0, 0x1269, &(0x7f00000002c0)={0x4ada, 0x1ff, 0x32, &(0x7f0000000280)="9f183903da3551f15e8860665932be92080c458b6ccf8d252894ed93ad5c11ca82da3c97747dc462b8105cb1646b94350b68"})
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = syz_io_uring_setup(0x1c3c, &(0x7f0000000300)={0x0, 0xd20f, 0x10, 0x0, 0x147, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000380), &(0x7f00000003c0))
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0x1, 0x0, 0x0, 0x8, 0xc, 0x0, {0x0, 0x0, r4}}, 0x2)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x2, 0x2004, @fd_index=0x6, 0x80000001, &(0x7f0000000180)="95a3d5ea7703286c5d4555166e1fd462b6335fc332a0cbae57c4ce5d396a3f9b73fd21de75b8b4ed1c5f8635684e0561af0dabf2bed9e4ba7ab89d17607fc88fcdaffff0b394c1f85e6f3257d993bae5b91b4832b3d9c89e9e7117215061bd6226b1", 0x62, 0x8, 0x1}, 0x7)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 1:
r0 = syz_io_uring_setup(0x2004366, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r2, r5, &(0x7f0000000240)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r6, &(0x7f0000000000)=0x80, &(0x7f0000000080)=@phonet, 0x0, 0x80000, 0x0, {0x0, r8}}, 0x0)

[ 1871.651191] FAULT_INJECTION: forcing a failure.
[ 1871.651191] name failslab, interval 1, probability 0, space 0, times 0
[ 1871.652670] CPU: 1 PID: 17928 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1871.653494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1871.654820] Call Trace:
[ 1871.655137]  dump_stack+0x107/0x163
[ 1871.655561]  should_fail.cold+0x5/0xa
[ 1871.656014]  ? kvmalloc_node+0x115/0x170
[ 1871.656493]  should_failslab+0x5/0x10
[ 1871.656942]  __kmalloc_node+0x76/0x4a0
[ 1871.657408]  kvmalloc_node+0x115/0x170
[ 1871.657862]  alloc_fdtable+0xd3/0x280
[ 1871.658305]  dup_fd+0x71e/0xca0
[ 1871.658701]  unshare_files+0x171/0x270
[ 1871.659153]  ? __ia32_sys_unshare+0x40/0x40
[ 1871.659657]  ? get_user_pages_remote+0x63/0x90
[ 1871.660193]  ? get_user_pages_remote+0x6c/0x90
[ 1871.660741]  bprm_execve+0x123/0x1b00
[ 1871.661207]  ? acct_arg_size+0xe0/0xe0
[ 1871.661664]  ? downgrade_write+0x3a0/0x3a0
[ 1871.662198]  ? open_exec+0x70/0x70
[ 1871.662632]  ? memcpy+0x39/0x60
[ 1871.663088]  ? copy_string_kernel+0x3b6/0x450
[ 1871.663619]  do_execveat_common+0x765/0x8c0
[ 1871.664208]  ? bprm_execve+0x1b00/0x1b00
[ 1871.664695]  __x64_sys_execveat+0xed/0x130
[ 1871.665291]  do_syscall_64+0x33/0x40
[ 1871.665802]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1871.666502] RIP: 0033:0x7f843b55cb19
[ 1871.667013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1871.669442] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1871.670332] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1871.671083] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1871.671928] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1871.672762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1871.673611] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:33 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x12, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f00000006c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pwritev(r2, &(0x7f0000000640)=[{&(0x7f0000000240)="79568ee425601cac4889193b03bad7623c7e9b83c18ad6c25737d6ded40754092bd88898049d7f021f93de0783d49f0d5321535e5c112f264d44a695833b0448e1e275c3c726b137b99181704b9a031208aeb757e583f738427707cee490fe5b8853a65240bc302b261c3975488120315d5157080bde0c35862d2a95ffade9c23e391ce174d9f1b325788d468750b3d14f452a62ba6bf0b4a755cde7d1dd12e85622aee27d7beeba5781bf30e0e5408d0356787da1a35f13f17a345004cf294b015faeb84ba3550bd05414", 0xcb}, {&(0x7f0000000340)="ccea5558cf22959e5c83c49eafa5287b99f355c82c8a93b6d2c8ac602d56b26f9092f7f9b206a5db433d38e2c2f9308a85ee74ea7a2c862a37acc6803e3129729e5cd117988368ddd8d2021027e72ce55910cc4df23c4c9f2d2ba2c8cc8e490db641e4910f01912711c9fda9e30918144aeb95340e6ab7127507dc4b4917840c3e5370e090e3e1144136d1f95233108be4dce8057e6444e4dc1047a9297cb7b09d1ddd17d63c845b39e41eadba84f04f3551c31618894fc1c351d101c2ac9b0158b4f5f204b02e2e98fbc94400338612", 0xd0}, {&(0x7f0000000000)="cdea14a26d80773b36819e91aabe84f86cdf3a4b2b63e8c35c16e3f8d93111364973af328139a3cd0371be96261e0cfa615dcf", 0x33}, {&(0x7f0000000440)="2470dda679c5f6f51eb89bae0dead92cc7d2829eea5f707ab178cb9c97b7269a66c149129860e5a1d103b9e8c2c529dbea46aa257d93abf6b62f47c4185c05b34b7a2ba8d4409fb58c3fc510f52ecf8230ed3d85458b484eb1bd40c0d29c895acb85f4e83114c2ec9c9a13650a95cf7a401f9cbeff0c64f87381414ead1231c7e1cae6a71d0d8dd7b7a9ffc5b643fec18abfeb3556eee8ed205b84883fee1aa634481d88fd840cbac8f565b0dbda035e5978fcb53d598f5d89721674759b7fe71195779645e79f4939966ab6ccd7e065518c4b", 0xd3}, {&(0x7f0000000540)="89244c72ea25d0979aa5c3ef4205662f900546d79fbe20f67b568a05fcd15f64180b8f638e527f8e3fb6bfd0f798706c7fe95c461642d1a92ccbf89dfd242eca79c84563e3fe6879da8dd41d9f6a70c77158d1d426ad1a12a6e1f1e88179f27da172a5287b368a66243ccc657bfb294cbcf6f815deff0fbbb211849f8e38eea50d890ae40fe8a5948b5247ce9de3aec0243ba479eaca54886f52062cb34a9ba0a554e3954c190be6d80db322e295ef8992526c5dfb6dd4d84add8d610918d08faceaa8cf41822d931bd0c49be6", 0xcd}, {&(0x7f0000000180)="47f8ba6e4dc1d5de1b4649fc14abd10b3a4d9f5a05674102eccd5b025b05ce52a37bf2bd81812b871187c35dde8f1b5225f3b91a264e98e1191637", 0x3b}], 0x6, 0x3f, 0x8000)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1871.735463] FAULT_INJECTION: forcing a failure.
[ 1871.735463] name failslab, interval 1, probability 0, space 0, times 0
[ 1871.737066] CPU: 1 PID: 17915 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1871.737891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1871.739247] Call Trace:
[ 1871.739534]  dump_stack+0x107/0x163
[ 1871.739969]  should_fail.cold+0x5/0xa
[ 1871.740417]  ? create_object.isra.0+0x3a/0xa20
[ 1871.740963]  should_failslab+0x5/0x10
[ 1871.741435]  kmem_cache_alloc+0x5b/0x350
[ 1871.741915]  create_object.isra.0+0x3a/0xa20
[ 1871.742433]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1871.743027]  kmem_cache_alloc+0x159/0x350
[ 1871.743517]  __anon_vma_prepare+0x281/0x4f0
[ 1871.744019]  ? __pte_alloc+0x194/0x320
[ 1871.744472]  handle_mm_fault+0x2b48/0x3520
[ 1871.744966]  ? __schedule+0x850/0x1e80
[ 1871.745420]  ? __pmd_alloc+0x5e0/0x5e0
[ 1871.745879]  __get_user_pages+0x61b/0x1390
[ 1871.746379]  ? follow_page_mask+0x1860/0x1860
[ 1871.746910]  ? avc_has_perm_noaudit+0x1f8/0x3a0
[ 1871.747451]  ? irqentry_enter+0x26/0x50
[ 1871.747918]  __get_user_pages_remote+0x1d1/0x860
[ 1871.748471]  get_user_pages_remote+0x63/0x90
[ 1871.748986]  get_arg_page+0xba/0x200
[ 1871.749432]  ? acct_arg_size+0xe0/0xe0
[ 1871.749882]  ? count.constprop.0+0x1b3/0x280
[ 1871.750401]  copy_string_kernel+0x1b4/0x450
[ 1871.750905]  do_execveat_common+0x518/0x8c0
[ 1871.751407]  ? bprm_execve+0x1b00/0x1b00
[ 1871.751885]  __x64_sys_execveat+0xed/0x130
[ 1871.752380]  do_syscall_64+0x33/0x40
[ 1871.752822]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1871.753435] RIP: 0033:0x7f48cbaccb19
[ 1871.753842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1871.755972] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1871.756850] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1871.757687] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1871.758511] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1871.759338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
17:54:33 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r9, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r3, r7, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, r8, &(0x7f0000000000)={0x40000005}, r9}, 0x80000001)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0xcb16a8ce93bf6f4a)

[ 1871.760165] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:33 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 30)

17:54:33 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_complete(r7)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r5, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r10 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
syz_io_uring_submit(r1, r9, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x5, 0x0, r10, &(0x7f0000000000)={0x20000000}, 0xffffffffffffffff, 0x3, 0x0, 0x1}, 0x100)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x47ae, &(0x7f0000000180)={0x0, 0x4e9d, 0x2, 0x1, 0xf9, 0x0, r2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x6, 0x745ca857, {0x0, r5}, 0x2, 0x0, 0x1, {0x0, r7, r2}}, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1871.855958] FAULT_INJECTION: forcing a failure.
[ 1871.855958] name failslab, interval 1, probability 0, space 0, times 0
[ 1871.857805] CPU: 1 PID: 17995 Comm: syz-executor.5 Not tainted 5.10.123 #1
17:54:33 executing program 0:
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r0, 0x1274, 0x0)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000001a00)={0xa, &(0x7f00000018c0)=[{0x7862d36b, 0x5f, &(0x7f0000000240)="a5857ce72e663bde446f7e04cc9654f3e56e2475f1c72698e3e8fa6777cdeccfe7f341a03be1f60bccada29c1c60c68d7a86d86a5700342915f8889d3e7b39fc7792353ed35138b9788dce5f8ce26da24d8f219c8ebff3290004871e3db755", 0x0, 0x1}, {0x1ff, 0x76, &(0x7f00000002c0)="329fb4ab343d0307d2a2f1464f432b5ae7d123da12b922d03c325477391002d861ee40ca54634861e3d95145a79767961173346e0c386ad400fcda73a05dd768a5936aa0c0f2bd8c005982e688e4c1774f85eabcef6df754cf41ec7517688c3274a033221c0ccf0a3cd66e588ab4cd551101ff144c39"}, {0x200, 0xc3, &(0x7f00000014c0)="43326b3d16ab672751f99ab203b80f0eb9e219153d9f931812b76e6388f0de155a6b0f2cb97ccdb39661a5f3464ed993fb83af2933a1d15ae414eaf4d8ebdf16d3c85601baa355a35e85a45b3c011e95ce7157e1a07510b11d9e436c631824791cb8262513464ac067029882798696bb00eed36169d5ee59fb3d0a2b03f3b9a4703f1b0ab1b654c169068b5086d49f6648ece512bd2ccb18a7162fa1f69abb4da4e590d2be517a1cb5adf9f2c63b16b035e600b165eb5425f73cda079b2d5c5a0f4ff1", 0x1}, {0xee, 0xbe, &(0x7f0000000340)="257a9333b89d4e12022293925bfab1d73340bd1422aeeac8c3400c7db18c550b468be38fdbb601b13b1405dafe284143279014624bc85d861773ef67a42bad9d9e8f91bf978153f9ff10530d6c516d370989f2723d4687407f2921e74ee2cb79f5d14b386ae7c79000fa403b42ab0a1418a2dc2867e1a8046fa79b68188e29150fc924a84d5c50789ab978835e35a772cfe8e2c8f07c43c9e94a468bb4fbfd95a31812e1155be706a7ef785ee198d2bb5cd04dbc45cb25fd6da42f9a9b7b", 0x0, 0x1}, {0x9, 0x9b, &(0x7f0000001640)="7101dd9a5b6a4651a48dc2d6346e0c865e5e1ea01ddd5c8957fb891462c9d6a45ee7053984290c7a4f2673b2bfdbc841bd153cc7ed3f437321b34edf0070a78bae9500af6cc9d65e13842036dc344db52b36e42caa7ace17fa10d8088e956fc6136f2e5d8c327bf771c874e5a9213d45d3293d1d9b31713ab46df1f0b734e124302b0720851876810ed0d8e3bc00c004c121ae237fa05aff6fba28"}, {0x0, 0xf8, &(0x7f0000001700)="c98f14467a87bf6414d3d3b6c5d7d3af9e5cc16ade9a84cb40c176f075a1e80e5431aac83265774be5116300f47f5fe0ccb9c860a1f6c327b71271cba942bb4e2e55818273e291c2055c2e2b32d12fc0fee94cba0263f17dc76b02f1323a2c53bd134785fa12f352a252ab0d88e49510f0dbfbad8bc5ac837164ebde455f22da7410ab1dc9c577c050db28dd244a847a2a666c644c085cc7c6f31cafa849fe713a227f67b89470c1522d7b8571ec8eb47bbaf12ad83245fef535a6c62f7b10edd6131f3fca56c7c5d51ab1b129b7d17963a14103308d3648aebd3381dcf2e9dec22d5a3edba382ee5181b3b8d014cf21d2fa774f5bbab698", 0x1, 0x1}, {0x7, 0xc, &(0x7f0000000440)="64652dccdd37b7077134de95", 0x1}, {0xd5b7, 0xe, &(0x7f0000000480)="6484b73484d2af546e04d63e3a07"}, {0x8, 0x91, &(0x7f0000001800)="0a4b4e2996bcc51feca5dba83956921379342fa684b4d3908c078c908faa3f8e8ba4ed768bcbe330ba66228a3573fe04285efa3a21866286c342278a77cdf3a0472982638809ff6297331d2028e423ef7081e8ce9507ffc715247314c7d236a0ca109b2b4f20022a964e5cae97c1d61579518aaf28feb13690639e121202508776990238dcf5e3283dccfe5943bd2b79dd", 0x1}, {0x3b5, 0x0, &(0x7f00000015c0)}]})
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r8, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4}, '\x00'})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180), 0x1, 0x1, 0x1, {0x0, r7}}, 0x3e)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1871.858637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1871.860175] Call Trace:
[ 1871.860461]  dump_stack+0x107/0x163
[ 1871.860848]  should_fail.cold+0x5/0xa
[ 1871.861258]  ? create_object.isra.0+0x3a/0xa20
[ 1871.861744]  should_failslab+0x5/0x10
[ 1871.862171]  kmem_cache_alloc+0x5b/0x350
[ 1871.862603]  ? kvmalloc_node+0x115/0x170
[ 1871.863062]  create_object.isra.0+0x3a/0xa20
[ 1871.863523]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1871.864094]  __kmalloc_node+0x1ae/0x4a0
[ 1871.864514]  kvmalloc_node+0x115/0x170
[ 1871.864954]  alloc_fdtable+0xd3/0x280
[ 1871.865399]  dup_fd+0x71e/0xca0
[ 1871.865780]  unshare_files+0x171/0x270
[ 1871.866215]  ? __ia32_sys_unshare+0x40/0x40
[ 1871.866702]  ? get_user_pages_remote+0x63/0x90
[ 1871.867214]  ? get_user_pages_remote+0x6c/0x90
[ 1871.867697]  bprm_execve+0x123/0x1b00
[ 1871.868101]  ? acct_arg_size+0xe0/0xe0
[ 1871.868538]  ? strnlen+0x3f/0x70
[ 1871.868893]  ? open_exec+0x70/0x70
[ 1871.869301]  ? memcpy+0x39/0x60
[ 1871.869650]  ? copy_string_kernel+0x3b6/0x450
[ 1871.870154]  do_execveat_common+0x765/0x8c0
[ 1871.870612]  ? bprm_execve+0x1b00/0x1b00
[ 1871.871077]  __x64_sys_execveat+0xed/0x130
[ 1871.871528]  do_syscall_64+0x33/0x40
[ 1871.871947]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1871.872521] RIP: 0033:0x7f843b55cb19
[ 1871.872940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1871.874865] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1871.875668] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1871.876419] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1871.877177] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1871.877931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
17:54:33 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x6b1f, &(0x7f0000000180)={0x0, 0xc4c5, 0x10, 0x0, 0x100, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r3=>0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
syz_io_uring_submit(r1, r3, &(0x7f0000000280)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x1ff, 0x3, 0x1, {0x0, r5, r6}}, 0xa596)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1871.878674] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:33 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x40010, 0xffffffffffffffff, 0x10000000)
ftruncate(0xffffffffffffffff, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r7, r1, &(0x7f0000000280)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x8, &(0x7f0000000240)={0x77359400}}, 0x2)
syz_io_uring_submit(r4, r6, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000180), 0x1, 0x1, 0x1}, 0x5326e13f)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 24)

17:54:33 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x3938700}, 0x1, 0x0, 0x1, {0x0, r4}}, 0xff)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x300000c, 0x4010, r3, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x10000000)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r2, r5, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0x5}, 0x0, {0x0, r7}}, 0x7)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:33 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x800, 0x2, 0x10}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x1cb)

[ 1872.102949] FAULT_INJECTION: forcing a failure.
[ 1872.102949] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1872.104415] CPU: 1 PID: 18085 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1872.105146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1872.106343] Call Trace:
[ 1872.106632]  dump_stack+0x107/0x163
[ 1872.107024]  should_fail.cold+0x5/0xa
[ 1872.107442]  __alloc_pages_nodemask+0x182/0x680
[ 1872.107938]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1872.108570]  ? up_write+0x191/0x550
[ 1872.108960]  ? anon_vma_interval_tree_insert+0x43/0x450
[ 1872.109540]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 1872.110113]  alloc_pages_vma+0xbb/0x410
[ 1872.110535]  handle_mm_fault+0x1547/0x3520
[ 1872.110990]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1872.111551]  ? __pmd_alloc+0x5e0/0x5e0
[ 1872.111977]  ? ___might_sleep+0x130/0x2c0
[ 1872.112416]  __get_user_pages+0x61b/0x1390
[ 1872.112884]  ? follow_page_mask+0x1860/0x1860
[ 1872.113394]  ? mark_held_locks+0x9e/0xe0
[ 1872.113854]  __get_user_pages_remote+0x1d1/0x860
[ 1872.114388]  ? lock_downgrade+0x6d0/0x6d0
[ 1872.114859]  get_user_pages_remote+0x63/0x90
[ 1872.115360]  get_arg_page+0xba/0x200
[ 1872.115778]  ? acct_arg_size+0xe0/0xe0
[ 1872.116239]  ? downgrade_write+0x3a0/0x3a0
[ 1872.116715]  ? count.constprop.0+0x1b3/0x280
[ 1872.117216]  copy_string_kernel+0x1b4/0x450
[ 1872.117702]  do_execveat_common+0x518/0x8c0
[ 1872.118190]  ? bprm_execve+0x1b00/0x1b00
[ 1872.118653]  __x64_sys_execveat+0xed/0x130
[ 1872.119137]  do_syscall_64+0x33/0x40
[ 1872.119557]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1872.120138] RIP: 0033:0x7f48cbaccb19
[ 1872.120558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1872.122651] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1872.123506] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1872.124310] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1872.125112] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1872.125921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1872.126713] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:43 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 31)

17:54:43 executing program 3:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000000)=0x2)
r5 = dup2(r0, r3)
io_uring_enter(r5, 0x13a, 0xf7db, 0x3, &(0x7f0000000180)={[0x1]}, 0x8)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:43 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xd, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:43 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000000240)={0x947, 0x0, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})

17:54:43 executing program 0:
r0 = syz_io_uring_setup(0x567, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000000180)=ANY=[@ANYBLOB="020d0000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3fd516400"/79936])

17:54:43 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9, 0x20010, r3, 0x10000000)
syz_io_uring_submit(r1, r4, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456}, 0x3)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:43 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:43 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 25)

[ 1882.094470] FAULT_INJECTION: forcing a failure.
[ 1882.094470] name failslab, interval 1, probability 0, space 0, times 0
[ 1882.095994] CPU: 1 PID: 18155 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1882.096941] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1882.098508] Call Trace:
[ 1882.098871]  dump_stack+0x107/0x163
[ 1882.099371]  should_fail.cold+0x5/0xa
[ 1882.099896]  ? kvmalloc_node+0x115/0x170
[ 1882.100448]  should_failslab+0x5/0x10
[ 1882.100971]  __kmalloc_node+0x76/0x4a0
[ 1882.101516]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1882.102205]  kvmalloc_node+0x115/0x170
[ 1882.102623]  alloc_fdtable+0x13f/0x280
[ 1882.103148]  dup_fd+0x71e/0xca0
[ 1882.103611]  unshare_files+0x171/0x270
[ 1882.104141]  ? __ia32_sys_unshare+0x40/0x40
[ 1882.104734]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1882.105321]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1882.105888]  ? trace_hardirqs_on+0x5b/0x180
[ 1882.106344]  bprm_execve+0x123/0x1b00
[ 1882.106753]  ? copy_string_kernel+0x2fb/0x450
[ 1882.107224]  ? open_exec+0x70/0x70
[ 1882.107600]  ? copy_string_kernel+0x3b6/0x450
[ 1882.108075]  do_execveat_common+0x765/0x8c0
[ 1882.108528]  ? bprm_execve+0x1b00/0x1b00
[ 1882.108960]  __x64_sys_execveat+0xed/0x130
[ 1882.109413]  do_syscall_64+0x33/0x40
[ 1882.109808]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1882.110350] RIP: 0033:0x7f843b55cb19
[ 1882.110745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1882.112672] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1882.113489] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1882.114236] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1882.115024] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1882.115817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1882.116615] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1882.123992] FAULT_INJECTION: forcing a failure.
[ 1882.123992] name failslab, interval 1, probability 0, space 0, times 0
[ 1882.125296] CPU: 1 PID: 18154 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1882.126076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1882.127339] Call Trace:
[ 1882.127625]  dump_stack+0x107/0x163
[ 1882.128011]  should_fail.cold+0x5/0xa
[ 1882.128413]  ? dup_fd+0x89/0xca0
[ 1882.128779]  should_failslab+0x5/0x10
[ 1882.129178]  kmem_cache_alloc+0x5b/0x350
[ 1882.129612]  ? io_wake_function+0x2e0/0x2e0
[ 1882.130072]  dup_fd+0x89/0xca0
[ 1882.130417]  ? __io_uring_task_cancel+0x1d1/0x250
[ 1882.130928]  unshare_files+0x171/0x270
[ 1882.131338]  ? __ia32_sys_unshare+0x40/0x40
[ 1882.131792]  ? get_user_pages_remote+0x63/0x90
[ 1882.132273]  ? get_user_pages_remote+0x6c/0x90
[ 1882.132763]  bprm_execve+0x123/0x1b00
[ 1882.133162]  ? acct_arg_size+0xe0/0xe0
[ 1882.133577]  ? downgrade_write+0x3a0/0x3a0
[ 1882.134023]  ? open_exec+0x70/0x70
[ 1882.134402]  ? memcpy+0x39/0x60
[ 1882.134770]  ? copy_string_kernel+0x3b6/0x450
[ 1882.135277]  do_execveat_common+0x765/0x8c0
[ 1882.135767]  ? bprm_execve+0x1b00/0x1b00
[ 1882.136227]  __x64_sys_execveat+0xed/0x130
[ 1882.136706]  do_syscall_64+0x33/0x40
[ 1882.137122]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1882.137709] RIP: 0033:0x7f48cbaccb19
[ 1882.138126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1882.140195] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1882.141048] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1882.141866] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1882.142668] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1882.143471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1882.144276] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:43 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x70}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = syz_io_uring_complete(r1)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x3b, &(0x7f0000000000)=""/5, &(0x7f0000000180)=0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(0x0, r7, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r3, 0x0, &(0x7f0000000240)='./file0\x00', 0x49, 0x632301, 0x23456}, 0x1ff)
ftruncate(r5, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r10 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x11, r0, 0x10000000)
syz_io_uring_submit(r8, r10, &(0x7f00000001c0)=@IORING_OP_NOP={0x0, 0x3}, 0x6)

17:54:54 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x0, 0x0, 0x0, {0x0, 0x0, r2}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:54 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000000)=0x2a)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x675a, &(0x7f0000000180)={0x0, 0x6ca0, 0x1, 0x2, 0xe6, 0x0, r3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0x9, 0x0, 0x0, 0x1, 0x1, 0x0, {0x0, r6, r3}}, 0x7c34c483)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
read(r3, &(0x7f0000000340)=""/107, 0x6b)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r9, &(0x7f0000000300)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r6}}, 0x7)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:54 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 26)

17:54:54 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 32)

17:54:54 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0xc7c1, 0x0, 0x0, 0x20000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
r2 = syz_io_uring_setup(0x3, 0x0, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r5)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
ioctl$TIOCCBRK(r3, 0x5428)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
clock_gettime(0x0, &(0x7f00000001c0)={<r9=>0x0, <r10=>0x0})
syz_io_uring_submit(r6, r1, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000100)={r9, r10+60000000}, 0x1, 0x1}, 0x40)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4d)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:54 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r9, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r4, r8, &(0x7f0000000400)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r9, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)=""/183, 0xb7}, {&(0x7f0000000300)=""/182, 0xb6}], 0x2}, 0x0, 0x10000, 0x0, {0x3}}, 0xff)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:54 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cpuset.effective_mems\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r2, 0x9, 0xc8a3, 0x1, &(0x7f00000001c0)={[0x86]}, 0x8)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r5, 0x3c2d, 0x4268, 0x2, &(0x7f0000000280)={[0x400]}, 0x8)
io_uring_enter(0xffffffffffffffff, 0x2d00, 0x4acd, 0x1, &(0x7f0000000240)={[0x228a]}, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x2010, r0, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, 0x1010, r0, 0x10000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0xffff)

17:54:54 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x8, 0x2010, r0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0, 0x2010, r0, 0x0)
syz_io_uring_setup(0x4748, &(0x7f0000000180)={0x0, 0xb5b5, 0x4, 0x2, 0x9b, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000000000), &(0x7f0000000240))
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1893.268074] FAULT_INJECTION: forcing a failure.
[ 1893.268074] name failslab, interval 1, probability 0, space 0, times 0
[ 1893.269558] CPU: 1 PID: 18220 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1893.270369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1893.271691] Call Trace:
[ 1893.272010]  dump_stack+0x107/0x163
[ 1893.272453]  should_fail.cold+0x5/0xa
[ 1893.272898]  ? create_object.isra.0+0x3a/0xa20
[ 1893.273458]  should_failslab+0x5/0x10
[ 1893.273903]  kmem_cache_alloc+0x5b/0x350
[ 1893.274382]  ? kvmalloc_node+0x115/0x170
[ 1893.274855]  create_object.isra.0+0x3a/0xa20
[ 1893.275378]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1893.275976]  __kmalloc_node+0x1ae/0x4a0
[ 1893.276449]  kvmalloc_node+0x115/0x170
[ 1893.276959]  alloc_fdtable+0x13f/0x280
[ 1893.277446]  dup_fd+0x71e/0xca0
[ 1893.277857]  unshare_files+0x171/0x270
[ 1893.278367]  ? __ia32_sys_unshare+0x40/0x40
[ 1893.278932]  ? get_user_pages_remote+0x63/0x90
[ 1893.279506]  ? get_user_pages_remote+0x6c/0x90
[ 1893.280095]  bprm_execve+0x123/0x1b00
[ 1893.280583]  ? acct_arg_size+0xe0/0xe0
[ 1893.281075]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1893.281810]  ? open_exec+0x70/0x70
[ 1893.282223]  ? memcpy+0x39/0x60
[ 1893.282649]  ? copy_string_kernel+0x3b6/0x450
[ 1893.283226]  do_execveat_common+0x765/0x8c0
[ 1893.283773]  ? bprm_execve+0x1b00/0x1b00
[ 1893.284297]  __x64_sys_execveat+0xed/0x130
[ 1893.284816]  do_syscall_64+0x33/0x40
[ 1893.285300]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1893.285962] RIP: 0033:0x7f843b55cb19
[ 1893.286449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1893.288820] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1893.289805] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1893.290640] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1893.291596] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1893.292516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1893.293462] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000a, 0x10, r2, 0x0)
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x32f0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000000240))
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r5, 0x4008941a, &(0x7f00000001c0)=0x2)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
r7 = syz_open_dev$ptys(0xc, 0x3, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x5, 0x0, 0x0, 0x403, 0x0, 0x1, {0x0, r6, r7}}, 0x7f)

[ 1893.341527] FAULT_INJECTION: forcing a failure.
[ 1893.341527] name failslab, interval 1, probability 0, space 0, times 0
17:54:55 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 33)

[ 1893.343302] CPU: 1 PID: 18218 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1893.344284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1893.345576] Call Trace:
[ 1893.345885]  dump_stack+0x107/0x163
[ 1893.346301]  should_fail.cold+0x5/0xa
[ 1893.346755]  ? create_object.isra.0+0x3a/0xa20
[ 1893.347272]  should_failslab+0x5/0x10
[ 1893.347711]  kmem_cache_alloc+0x5b/0x350
[ 1893.348173]  create_object.isra.0+0x3a/0xa20
[ 1893.348674]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1893.349250]  kmem_cache_alloc+0x159/0x350
[ 1893.349734]  ? trace_hardirqs_on+0x5b/0x180
[ 1893.350224]  dup_fd+0x89/0xca0
[ 1893.350586]  ? unshare_files+0xac/0x270
[ 1893.351035]  unshare_files+0x171/0x270
[ 1893.351474]  ? __ia32_sys_unshare+0x40/0x40
[ 1893.351966]  ? get_user_pages_remote+0x63/0x90
[ 1893.352519]  ? get_user_pages_remote+0x6c/0x90
[ 1893.353026]  bprm_execve+0x123/0x1b00
[ 1893.353497]  ? acct_arg_size+0xe0/0xe0
[ 1893.353935]  ? open_exec+0x70/0x70
[ 1893.354360]  ? memcpy+0x39/0x60
[ 1893.354747]  ? copy_string_kernel+0x3b6/0x450
[ 1893.355303]  do_execveat_common+0x765/0x8c0
[ 1893.355827]  ? bprm_execve+0x1b00/0x1b00
[ 1893.356323]  __x64_sys_execveat+0xed/0x130
[ 1893.356834]  do_syscall_64+0x33/0x40
[ 1893.357288]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1893.357866] RIP: 0033:0x7f48cbaccb19
[ 1893.358324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1893.360585] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1893.361559] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1893.362451] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1893.363355] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1893.364249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1893.365118] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:54:55 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
sendmsg$nl_generic(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="84000000170000022abd7000fbdbdf250c00000008008300ac1414bb08003e0004000000ba55d6633cdb1ce0b04281da56f1cec32996541f101814bbc28070c28dbc7a92cb362ac49a5a6d098534ab580a20d636b15149ce4b0c494660e3cda0ba273a95efa89e4e6fa6cc0020500bc315c0c5be26c1be3ee9ed3f5dee22581cc39f12d0"], 0x84}, 0x1, 0x0, 0x0, 0x24008040}, 0x8000)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000340)={{0x1, 0x1, 0x18, r2, @out_args}, './file0\x00'})
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r3, 0x422, 0xfba5, 0x1, &(0x7f0000000300)={[0x30bea9b7]}, 0x8)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:55 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x100000e, 0x3113, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0xa, 0x1010, r3, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
write(r4, &(0x7f0000000180)="ae1b7a", 0x3)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:55 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 27)

[ 1893.458330] FAULT_INJECTION: forcing a failure.
[ 1893.458330] name failslab, interval 1, probability 0, space 0, times 0
[ 1893.460035] CPU: 1 PID: 18281 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1893.460817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1893.462129] Call Trace:
[ 1893.462441]  dump_stack+0x107/0x163
[ 1893.462862]  should_fail.cold+0x5/0xa
[ 1893.463307]  ? kvmalloc_node+0x115/0x170
[ 1893.463771]  should_failslab+0x5/0x10
[ 1893.464205]  __kmalloc_node+0x76/0x4a0
[ 1893.464660]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1893.465237]  kvmalloc_node+0x115/0x170
[ 1893.465686]  alloc_fdtable+0x13f/0x280
[ 1893.466131]  dup_fd+0x71e/0xca0
[ 1893.466510]  unshare_files+0x171/0x270
[ 1893.466948]  ? __ia32_sys_unshare+0x40/0x40
[ 1893.467434]  ? get_user_pages_remote+0x63/0x90
[ 1893.467953]  ? get_user_pages_remote+0x6c/0x90
[ 1893.468495]  bprm_execve+0x123/0x1b00
[ 1893.468951]  ? acct_arg_size+0xe0/0xe0
[ 1893.469428]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1893.470090]  ? open_exec+0x70/0x70
[ 1893.470534]  ? memcpy+0x39/0x60
[ 1893.470946]  ? copy_string_kernel+0x3b6/0x450
[ 1893.471508]  do_execveat_common+0x765/0x8c0
[ 1893.472042]  ? bprm_execve+0x1b00/0x1b00
[ 1893.472530]  __x64_sys_execveat+0xed/0x130
[ 1893.473054]  do_syscall_64+0x33/0x40
[ 1893.473515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1893.474165] RIP: 0033:0x7f843b55cb19
[ 1893.474634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1893.476942] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1893.477925] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1893.478798] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1893.479680] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1893.480504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1893.481391] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:54:55 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0xa8010, r2, 0x10000000)
syz_io_uring_submit(0x0, r3, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'})

17:54:55 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x105000, 0x48)
syz_io_uring_setup(0xaa, &(0x7f0000000240)={0x0, 0xc988, 0x1, 0x0, 0x189, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000002c0))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xe}, 0x100020)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:54:55 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1893.545640] FAULT_INJECTION: forcing a failure.
[ 1893.545640] name failslab, interval 1, probability 0, space 0, times 0
[ 1893.547010] CPU: 1 PID: 18330 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1893.547791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1893.549078] Call Trace:
[ 1893.549393]  dump_stack+0x107/0x163
[ 1893.549813]  should_fail.cold+0x5/0xa
[ 1893.550239]  ? alloc_fdtable+0x84/0x280
17:54:55 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 34)

[ 1893.550699]  ? alloc_fdtable+0x84/0x280
[ 1893.551390]  should_failslab+0x5/0x10
[ 1893.551826]  kmem_cache_alloc_trace+0x55/0x360
[ 1893.552342]  ? alloc_fdtable+0x15/0x280
[ 1893.552795]  alloc_fdtable+0x84/0x280
[ 1893.553228]  dup_fd+0x71e/0xca0
[ 1893.553614]  unshare_files+0x171/0x270
[ 1893.554056]  ? __ia32_sys_unshare+0x40/0x40
[ 1893.554561]  ? get_user_pages_remote+0x63/0x90
[ 1893.555096]  ? get_user_pages_remote+0x6c/0x90
[ 1893.555634]  bprm_execve+0x123/0x1b00
[ 1893.556079]  ? acct_arg_size+0xe0/0xe0
[ 1893.556540]  ? downgrade_write+0x3a0/0x3a0
[ 1893.557021]  ? open_exec+0x70/0x70
[ 1893.557441]  ? memcpy+0x39/0x60
[ 1893.557830]  ? copy_string_kernel+0x3b6/0x450
[ 1893.558344]  do_execveat_common+0x765/0x8c0
[ 1893.558847]  ? bprm_execve+0x1b00/0x1b00
[ 1893.559329]  __x64_sys_execveat+0xed/0x130
[ 1893.559826]  do_syscall_64+0x33/0x40
[ 1893.560263]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1893.560873] RIP: 0033:0x7f48cbaccb19
[ 1893.561314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1893.563486] RSP: 002b:00007f48c9021188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1893.564381] RAX: ffffffffffffffda RBX: 00007f48cbbe0020 RCX: 00007f48cbaccb19
[ 1893.565190] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1893.566038] RBP: 00007f48c90211d0 R08: 0000000000000000 R09: 0000000000000000
[ 1893.566850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1893.567688] R13: 00007ffd6a10519f R14: 00007f48c9021300 R15: 0000000000022000
17:54:55 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r4, r1, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x2007, @fd=r0, 0x8, 0x9, 0x40, 0x10, 0x0, {0x0, r7}}, 0x400)

[ 1893.722757] FAULT_INJECTION: forcing a failure.
[ 1893.722757] name failslab, interval 1, probability 0, space 0, times 0
[ 1893.724475] CPU: 1 PID: 18351 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1893.725269] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1893.726567] Call Trace:
[ 1893.726882]  dump_stack+0x107/0x163
[ 1893.727296]  should_fail.cold+0x5/0xa
[ 1893.727730]  ? create_object.isra.0+0x3a/0xa20
[ 1893.728251]  should_failslab+0x5/0x10
[ 1893.728689]  kmem_cache_alloc+0x5b/0x350
[ 1893.729148]  create_object.isra.0+0x3a/0xa20
[ 1893.729657]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1893.730231]  kmem_cache_alloc+0x159/0x350
[ 1893.730698]  prepare_creds+0x25/0x5e0
[ 1893.731126]  prepare_exec_creds+0xd/0x250
[ 1893.731600]  bprm_execve+0x1e3/0x1b00
[ 1893.732030]  ? open_exec+0x70/0x70
[ 1893.732451]  ? __sanitizer_cov_trace_pc+0x45/0x60
[ 1893.733027]  ? copy_string_kernel+0x3b6/0x450
[ 1893.733595]  do_execveat_common+0x765/0x8c0
[ 1893.734116]  ? bprm_execve+0x1b00/0x1b00
[ 1893.734605]  __x64_sys_execveat+0xed/0x130
[ 1893.735108]  do_syscall_64+0x33/0x40
[ 1893.735562]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1893.736180] RIP: 0033:0x7f843b55cb19
[ 1893.736634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1893.738836] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1893.739756] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1893.740618] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1893.741488] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1893.742352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1893.743218] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:55:07 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 28)

17:55:07 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 35)

17:55:07 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x61a1, &(0x7f0000000280)={0x0, 0x7f3c, 0x1, 0x1, 0xf9}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340))
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000005, 0x4000010, r0, 0x0)
r4 = dup(r2)
r5 = syz_io_uring_setup(0x23e4, &(0x7f0000000180)={0x0, 0xc04e, 0x2, 0x0, 0x15d, 0x0, r4}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240))
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f0000000380)=r4, 0x1)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:07 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x4}, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x7000)=nil, 0x7000, 0x3000008, 0x2010, 0xffffffffffffffff, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000008, 0x10010, 0xffffffffffffffff, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_STATX={0x15, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000240), &(0x7f0000000180)='./file0\x00', 0x2, 0x800, 0x0, {0x0, r5}}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4d86, &(0x7f0000000340)={0x0, 0xf04e, 0x4, 0x2, 0x353}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x800]}, 0x8, 0x0)

17:55:07 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x80000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000480)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@l2={0x1f, 0x80, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x2, 0x6e417e540a9c90a}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000002c0)="8f6af70e7e215776eb5768561527f21dcfe48e61977d6a586503a19f240bf5c9e9f1d14ded1646ff76181f60d61d19cb94de8aa158bae509e29d8b967ff1e4c5533b6349fc7d3b466e9dca02cea18f6b6bacf1b4923caa6a280cb011397488a44a8df88aef6171de6bfc942718356b72516bf4d62e84d62599cf496d61624fa03a32520e56719a504af56f58f4a2483cf36d38a7af", 0x95}], 0x1, &(0x7f0000000380)=ANY=[@ANYBLOB="a000000000000000070100000500000011fd35b8947e40f70c13fd710d1423545cce18a1cc299e5ea62ed6676f916f5a3564e5623dbf5ab59ee7a6a6ceba1e0568cabe84aa66a258282f96e92fb66626a55e1232c077fedbf99ca8446d525e832a8c7c87d7ef4706f4ff4e9d054f2da2d7585bea170d76119b0000000000000002238ce75504dc227ffe964b35f646be5055db9000"/160], 0xa0}, 0x0, 0x0, 0xffc4e081035b7c9a, {0x0, r5}}, 0x29fe46e1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x80000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r10)
syz_io_uring_submit(r7, r1, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r10}}, 0x1ef8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:07 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
get_mempolicy(&(0x7f0000000000), &(0x7f0000000180), 0x1, &(0x7f0000ffd000/0x2000)=nil, 0x0)

17:55:07 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000180)={0x0, 0xce6f, 0x0, 0x0, 0x16, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000080)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_complete(r5)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:07 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:07 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x519f, &(0x7f0000000080)={0x0, 0xb91d, 0x0, 0x1, 0x3b1, 0x0, r2}, &(0x7f0000000000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000240))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x2)

17:55:08 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0xffffffff, &(0x7f0000000000)=[r4, r3], 0x2, 0x0, 0x1, {0x0, r5}}, 0x8001)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$GIO_CMAP(r7, 0x4b70, &(0x7f00000001c0))
syz_io_uring_complete(r1)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:08 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000001, 0x11, r3, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x143d, &(0x7f0000000180)={0x0, 0x4189, 0x0, 0x3, 0x212, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000240))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:08 executing program 7:
r0 = syz_io_uring_setup(0x4367, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
ioctl$BTRFS_IOC_ADD_DEV(r3, 0x5000940a, &(0x7f0000000180)={{r2}, "d2b179e63a61a800719e96357fc40c1946dbac92c0f539d84ed0d364407e4cc13b860eaea9608fe6ef970549ee5f1e776439076422aca0f1646b905cac191625291b862f1b25c9c4958c518d0d460042bc394ad112b5b4a2dfe516a6587790c3d5958312f06781b5c10ca0935d3797e3838f282049dfc3e69404b0e42451a064d41eed82afd632335abbc79b33ad4425c2a68112c240f74b048a29cb16ef2ee351a22a465f9edf9dbad0491b0ac5351ae3f0ba7085ec3abfdbd307e11465f2c7f7f8e92966afcf31b09f8fcf5e5caa755697de4287f41e2201aff778f0cf8159419e42ec1584c7f419de07bd281acb9973565384db65e94062fa02dbfb4087ec70f04ee3f62843b7aac47bcfddc23f9f1c783e4814b7a0615f665eb76834f9ebe63a0fa3966dc253a6d3b562be68715bb3e029b5a0babe66d9d9ca238c354df86bbbb4c32d78843a368db9df6f123016ce5df66abbd7d435521b8357d2afec88ddfebf45a9e001707856a62cf8d3be09c60f42f9af666877d47b1de1c15cf3cc44ec3d08e3f46d6eb5d4140b3cddd859dc3baedbdd990ccdc9dd3258c14bf4a67a7c6ed647f4bb886eecc8500015959bbb28fabe66740e12e16f3e39e6880f64d364f5f76362f6ed9246b632f13b879f68015b158164ca427a095a83e3fcde97ed5b24adc210131982a21de5addef2ab02692fc0e6788b2e459775018878803047f5c4bf1e3b73ae3a422947778f9e7d9730c2afd406b7b0252f5fda7179fb2d2de4144ba07bc6f5ce05933a65c8d55903b8a9608f800a1b422ff8725426e05c3ae530bd0371fc651d2d2c096fe387cbecaf90616ba96b50bbd3c7c6c4859903c8474430cc63d745d4e950021cdfc833638a90803be2b84f404bbbe6ab4595fa90d4beec593e4c570fd9c40b41e0d458054b5060b484e5d1d94530c02552020275636ac901a75da15a1b6b409fc18db1dfc44d808bfb969a6e859320c791d96b313e3beb26e72ad01f82039b707e6c93f4fb853fd726498af2432bda83929f5bbe56840bebb49725fe42a58d302822a13e6e6ee6eeba5b17a4ab6e34d5dcc2444e2daf8f5fc51545ff8eb27fc6be93642001654aac58fa4e8241233dac69569675805a285fa437674fb5ffbe361cef51c50c279c40be9ec7a5c67d8309e72117f745a5bfe4567423fa4aed218d1fbf53b38e690c22edb25e5f1f092749f7d0f7bc3a928689af61161436a3a5890325b67b069059e76dc537ac33a1b83716caae6d732d27edfe355e22f6ad794e1da149daba8a5ea718a52630d9fc50408fd93f13ba0e7ed839be1c5f9225a0d35669d1606bcd26a1d5ddb0bddd733eef8b496bb09f09f6608c6b0ef114b28bf4859a9f7a7337ea528e5ffe4c3c63c5f8644ab07f320468334494fe5e064f68b85beb7b976c3162a4f8816103309a66d825ce9c1dac45b5daa942ca046cfb6e496a787d6c49ec15036ed8f7b53ec89808d62266c916f9c8ada2468d95387415783409bf97d096db8c29e6b271aa38e2bb15b3dcade9baeaac53d7206ac2ab2b62fb92248127068b376f85baba704b75990e4f0748774d8847959beda0886680b7e87467277eea678d405f86467410141f8431539a905230d4ae62933c3f6d06810d6fce6717d3bda7f819788e1b68019f2f7adb2e0b778ed0a37dc2535ce36c34c85ac5eea41b7a27448a79f02659e9266c593119a59b9a8a781bb19a0de08f1db7beadf5411f45d918dbac59acfa5dd1897f2b74385f91289ee56fd81047a4a6ccbc50fcd093b9ec19166d448fc774bbbb5e60de0235330a029adb7c6e70392766d6ae606b2cd0b17144b14f978dc3ff23d5a9bba83412fd2e3ff879b8d93917756917624e55d0eff62c39d0c113f7a71790c7161bdb818f244fe4f41637680bddb7f24b1bcfa8a4086b7bccd8f78108243fe15130b665514cb585486df011332c737009aec2f9e141e41e2fc4c613ea0d7eeae782a7490cc5a7af3b453247310ed6f660c22c92ef7276075abac276eda32467130cd6b8141c1b14c27b3cf6215f822d6997179a7b8301dce25c842d6304c01700802ba529895a9fb093cbe2ed4b23d538aafe83074fb0c7e43bc618a5e8662c2123680d430f77fea20726497b72d259e5fe9707a9cec51548d56188337f0bd00b0b4e6bf3ab367500692f9aca248cbecbac28d608e7b257b9efac5fc571d2874d6a628d5c1c8035c6012381489ac24f1cf39286a05d2d8b34dd7dd29d6225e94a67b7881583f58b402029cc5392932733487e7f7a108652158f7c108ed97ad59e90d1aa52e7d26fe7c84741eb80a1ac2a3d46b9d329446bc31105f8e856933c8602776f9b27cf7a56a3d93f48f3cd15ba7e5d3473f37718597328ee5de5ea83e01aacd8e6c793e1ca06e6247280c7a58e1a980e2899d6d6840df0d6057167cba5b71f5e301770a26549dd3b15d86be895ebe8b8e5890fa113c0a8ea661e9ebd658bdbd33269e3ec075242472515b6cd44f4e010055c8705190b09c678f64e00655d8d67aa269019722b4195518e45fa74278676b07e24269c595256072456a5646746b24f23994d65997fc917841fc8c86daf3ca638c9dae2c15ff50ac8c536887c84bb2585cc059b7c82249f59b222b9dd21a4a22bf1391b0794e487b1f37229697b888114ec03c086c9a4776487db40cb60821c96992107758b4664c0295d545f5044e81221bd239d4a1d6e516ef68bdbd36666c861a03b6a9a8056d8bbe33196ffec59c2d86c2f91dc33cb14d7359eafc350e1514260bac187ee49b16219d6457fe95bde1e1f44741f240278e1707967b000a01535a0662c5dc74993c3536a3d34f47e8d384be64608d9f83c15ff7f911eca46a9713da6c9c830ea4a7dc9da1badf42c21714a8055022a26fb23b8987cf708eaab037376f758a59a11a5467a9fccb0ff0b1dd5ba673b3fa12af98f5062eb4e02ffeb7e882bb125b17db040eb317af24b1d376ce1080ada67dd22aa3520832e89eb9b15dbfc05b5a3ab29be2d0849144fd8a1f2a34aa15f091370bf1e5240836f346ba6f36ce68e164aecd546a359bd9f9ccc5f222bf6d4e026104651e7e5f0a1159d569aa16fe77f943bb85e4264e8ea5b53a1c06436ee13eaffee2bb0167afddf14edfcaba26a0d46e976c5705a1538b3c12a280102726eeb5e8c571dfe53139f49e230496d087a96b56773f1d74c28708f8c433f6ba5bb17a97dd1c771a8e8f5a692bf0e3465bee3c0f5192b6a0491d98a3b448cee3bb1b2f00ce47329d58d02f8f558712b079b8dc6c86fb8db28205b4d69bd53336d7e06f93b316358b1390fac31956352a25e40e85f1a2b361db7e5ecf2d0cb73d73a674af535cb41804fd2235077eacf83d0b6de8707c3872e551a040e401c925644e9a59ee5b37ff99274ff3d4bf5a0a98360b9d42665048fa70981d03f7235fd133612b442f6dffff56876ae208220019ca55d99c3d6a30b766e1a39d31cc50f4132b6f4967fe60613dc956ea85549bda0065c2958a638988eeae2d574c55019cf94212a4126f276acd1d5c99fb44766339848b3eba761e765355c6c7f7a67dc5ae98d404346583e148910cbf7dec0c27e76fadb14d1b3ca6bc062d5239c42007996185fa5dd7c4b56d43a44fdcc7b38ec13cbc651635c84b4ac223c6a77952e807cfd403020b97b3d55fbb3951b1b7d01415a63786658d63f725b92779e3c4bdf733f67f038f57cc6292392bc99fb5e22b8312510e2bf6da1c01ca4a67a15f57ef46e7703ffcc72d9588e7a0599c22c67ea2f203db1637f05b049b9a5873542d47df0093712b3078f93870afcf197e67bc376fde6bde92a1d2cd458b72b5c88dfbf5093b947042df61183f535d8d269ba6bf0e3fddf9336dfb5ce38b94ab453d110c57b7b982aa8ccfa90d5415b546764bc6967ce9be391127830f8f49689288d44de9a9bd19703fc038cf70eef62e77095a1eb83a72e439a672ad0302dccd3ac7e65268b2a4bb1aa80ae5f81c5064f46630cdecf00f3b4ff18ff6346003ee9234b9f22e350b67024fd8e5286d88010c535e47131086ce2eccce23ff301c0d794aabf2b2bea0e40cce5041aa1ac03fb2e9f6959935b3d87565165671fabd4ac1012c4159839b84d709ab67415d181b18245bcdd2fde27ecce27c24cce390741326125608396639d8eb1e1df1cf72a9383bcdc0a356d2f6bec7b8557d570c9d24ec6b9abc9273d38fd407d4c4386af2d3ebd46575641755948fa1fc412c72e17525f09d6977cd926aadef21a2e5af338b38be5ece08028d2b14ecbd0487658679d7671ac5eae9ad9fa8927517a149726cdebdda1703fdd0d71163c5f14d3fea319268a376b6aae421f2fd6d32579eb6cda09a7bdcdc3c2da9b8c552225d1dfd6e4688e4e04c1769f85d4e19f188d6772816cff8bca45371ca6816a0dccedb4daf9537627b78a46806cfc97d91db3c33f4d8e86d3fddfb47a012fba27b6e4ad7d9146fe0f3610a6945c909563339ae3c1bfdcd91579f5be6dfa92d621ecab00012d8085edfde95a6442c9db5867eab609828cc59ec7dc6da20fe944597d59420907c224cd432ae9f6940f0e41f1d1ceeb8a7febc98e8994dff91ae523c6587c2e21ac34495723b44fb2d775255ed5f49601827f4788fbfbded6f39798a2639dc8b6a3951dfe9387b7663858c7c1df5dd42b1374576947d9b806cee1df7cd79d76e51d7e97e9746dd31ff50c7237e73cb80e0a0a8717ffa08df7ed678f1ddaccbd7da0842356f86c8fd42c62967e793843924dd05ce9e7538917b6cdd635a1b5f4b660069a5d6248331f337879fd2fd4246f9b3ef9cfe6cde0e897ccc707ea8670bdb3b511fe49905ffaaf8e3bedbd33f3e19d25cd0f2ac5a5ac5bf3dc637284060d5fffbd652f66e26a89e55dfa6cbbc63712f1b7f569cc46312508ce5928c14ab442b8f088d51c39871304e605815470a8711cb82881b24047fa772dedc57edffd4e95830247d70579b08ffaf54809fe73de8964287e1082767423435e651627f726e302ddeb988a90b7d3b48fccf7208493aeca8a2efe7433eb902e388bb1ac9ae4bf3d7ea680d6f9831b24662b04db342b75d5d85eceb5ce3fb91f3966fe8f1718e1a104f1254b6bea0895ea11128048638c65a37fcb1ddd9ffcaa0dd7e1d6ba03f92e0a83c04d123f0747ebcdc883e0940177d93a70ba4a5c928d4cfbd2ee4bf9d3aa647d28ec10be6af241f2566079647182d5c1232ceb4fd2b30dcd94185c6feb298f86c94a7a8dfa0c69cae506730cebc9029d4c0c63d597b24bae47b519ad39a9423cea3843c9fe25821d670ed93a15b6d03d501d69423bbbcab3ffe5b7a78053c8cf150ed0dd5dabc8d0873ebbd6640e79c1b4d19850d27ba5f549377ff9cc874e83e2524b51cd8a2d146e98b4bdc4aadf4a8da774d411500dd2d5ffe3a961f2f574259384412d820006763c2c85ae4ec6138679f0dea6e17ce25a26876975cdf98cad808d446417f42efcff11965f699dffcffc3f0382aaf987d9c924de808bf82b3631563667be8a6bab0dea2e5a6375e33cc71cf31e831e8844ada15f2beaeb460e8faf57ceca7489b3e1f95581eaa9040a20da774e87cd0eb0d400fe87c77b4151f8584ee6502d461127652cccd411e20fe100476430ad1fbf9c6679a6492b4bd06c3fdc4e94e120d3b65058a7088f0f1dd3cf10910510098e24c28e4b14ff619c4acdf77d2979fea7e083dc75907d8e75c16ac4b9c01e4dd7949eba93c93edfa31f5b7daecc"})
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:08 executing program 6:
r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x50, r0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
r8 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r8)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)={0x30000002}, r5, 0x1, 0x0, 0x1}, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x1004)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:08 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000240)=""/139)
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x2, 0x30, r3, 0x8000000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:08 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0xde6, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000000240)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}})
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1906.692301] FAULT_INJECTION: forcing a failure.
[ 1906.692301] name failslab, interval 1, probability 0, space 0, times 0
[ 1906.695151] CPU: 0 PID: 18388 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1906.696657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1906.699126] Call Trace:
[ 1906.699689]  dump_stack+0x107/0x163
[ 1906.700460]  should_fail.cold+0x5/0xa
[ 1906.701265]  ? create_object.isra.0+0x3a/0xa20
[ 1906.702230]  ? create_object.isra.0+0x3a/0xa20
[ 1906.703192]  should_failslab+0x5/0x10
[ 1906.703993]  kmem_cache_alloc+0x5b/0x350
[ 1906.704856]  create_object.isra.0+0x3a/0xa20
[ 1906.705797]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1906.706865]  kmem_cache_alloc_trace+0x151/0x360
[ 1906.707848]  alloc_fdtable+0x84/0x280
[ 1906.708645]  dup_fd+0x71e/0xca0
[ 1906.709365]  unshare_files+0x171/0x270
[ 1906.710247]  ? __ia32_sys_unshare+0x40/0x40
[ 1906.711184]  bprm_execve+0x123/0x1b00
[ 1906.712000]  ? acct_arg_size+0xe0/0xe0
[ 1906.712838]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1906.714001]  ? open_exec+0x70/0x70
[ 1906.714755]  ? memcpy+0x39/0x60
[ 1906.715467]  ? copy_string_kernel+0x3b6/0x450
[ 1906.716439]  do_execveat_common+0x765/0x8c0
[ 1906.717372]  ? bprm_execve+0x1b00/0x1b00
[ 1906.718249]  __x64_sys_execveat+0xed/0x130
[ 1906.719162]  do_syscall_64+0x33/0x40
[ 1906.719969]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1906.721078] RIP: 0033:0x7f48cbaccb19
[ 1906.721907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1906.725833] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1906.727478] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1906.728977] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1906.730499] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1906.732004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1906.733530] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1906.788553] FAULT_INJECTION: forcing a failure.
[ 1906.788553] name failslab, interval 1, probability 0, space 0, times 0
[ 1906.791380] CPU: 1 PID: 18381 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1906.792890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1906.795414] Call Trace:
[ 1906.795989]  dump_stack+0x107/0x163
[ 1906.796788]  should_fail.cold+0x5/0xa
[ 1906.797633]  ? create_object.isra.0+0x3a/0xa20
[ 1906.798640]  should_failslab+0x5/0x10
[ 1906.799473]  kmem_cache_alloc+0x5b/0x350
[ 1906.800375]  create_object.isra.0+0x3a/0xa20
[ 1906.801341]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1906.802469]  __kmalloc_node+0x1ae/0x4a0
[ 1906.803353]  kvmalloc_node+0x115/0x170
[ 1906.804207]  alloc_fdtable+0x13f/0x280
[ 1906.805057]  dup_fd+0x71e/0xca0
[ 1906.805802]  unshare_files+0x171/0x270
[ 1906.806653]  ? __ia32_sys_unshare+0x40/0x40
[ 1906.807608]  bprm_execve+0x123/0x1b00
[ 1906.808443]  ? acct_arg_size+0xe0/0xe0
[ 1906.809285]  ? downgrade_write+0x3a0/0x3a0
[ 1906.810226]  ? open_exec+0x70/0x70
[ 1906.810995]  ? memcpy+0x39/0x60
[ 1906.811717]  ? copy_string_kernel+0x3b6/0x450
[ 1906.812699]  do_execveat_common+0x765/0x8c0
[ 1906.813662]  ? bprm_execve+0x1b00/0x1b00
[ 1906.814552]  __x64_sys_execveat+0xed/0x130
[ 1906.815457]  do_syscall_64+0x33/0x40
[ 1906.816265]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1906.817396] RIP: 0033:0x7f843b55cb19
[ 1906.818214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1906.822264] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1906.823934] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1906.825497] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1906.827070] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1906.828632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1906.830199] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:55:21 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 36)

17:55:21 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0xff7fffff}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x5843, 0xf4ce, 0x1, &(0x7f0000000280)={[0x1]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x4}, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0x1126, &(0x7f0000000180)={0x0, 0xaac0, 0x20, 0x0, 0x147, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x0, 0x8, &(0x7f0000000780)=[{&(0x7f0000000240)="69e7c6bca89868525becb86b695da2586256e545dc1b1af891d5e6cacddbffac49479501ebbd8531a9325e8df2cd20747c2585b85c43ad603bb7e30f60af86ecf99adb5c4eb297ee9cd246ff54cd5f5e06090db928fc415a5d72e0bfe512d0e01a096d1eb40eb51a25013eefe8c1c7697bc44ba133aa01497d911a60c2969cdf55fdc60d0070a6ee26d51f8efb0e6db2f91c66c44ff0efdfd899113245e1ed0225afef2e343b490473150a51ca18bae21395923009082546ce4ae0988ff8565001", 0xc1, 0x1ff}, {&(0x7f0000000340)="f0b3d8440d44010e9292ff1128c9c62ae5acd8deedcbc6ec14259e574f3bb4db87160277b63c8d0ffdadfea289bf24b65e2e1642f57c034a9b3f2a3ff07aef66c178e4bd6cc4ab495051e59a4ceddff0b15aa62dc343faae1dc06aa82d33f5acc39e2b440b3b7902235113ee89c09ac69f1390821f8b69adabc4ee6929e8c16fd069792e873ebdf91cd832db0652de184e2932a2894793c4ff89ae81d00b15cd4539371bddf2e1f237b135405a28100c6bcfff6fe30350902382be6f1bb07740f0fcbb60c53d6b5c7aabd653a2838e63e8b8918b62a4db6b7eefdd82182b814c0403e9a41f7e12923f01586cf158ad5121d1", 0xf2, 0x7fff}, {&(0x7f0000000440)="5977e689b7b388c802c4fe69d5b936aeeefbf547ff2fb108dc3f1d08d73284b30dd7040d14319ce951e2c699c90747e8598a832086c78db95b805bf4dce4df114c19aa56ec1a1218102b643b4a34aa7c60afa7208aa3aa616a9e2fc013b51aab3d816df134fa7bda6074b13a044dd01645472ec94fe814934a1192818e6b1053d97aee647fbfc863d36cf074b58c47719cfe667885ab4870fceff02584b5c5719a2e613e9683b787d5fbec9d780adca5c97a61e1fb97131437c7273977f4226fbb72045a6f995e9c20e45f28d64980c56cd057685a4f50ab414dbed747b9c85d6d423e56d4623d86f1e968ade8", 0xed, 0x8000}, {&(0x7f00000001c0)="e915ba85398880b1f3100e", 0xb, 0x100000000}, {&(0x7f0000000540)="6f6ccf23b1dfefa2f477a317751f65e11afb30e3b9a655dc22ca678e2abf758e39396f9b8175a2ecb09d1e46767ed754077688f83c83315efe982ad892a5743d94f1870cede73693e8f43685a90b6e612cc0a011", 0x54, 0x9}, {&(0x7f00000005c0)="3e7bee6fafa03e53a5b52bd4074798d7", 0x10, 0x1}, {&(0x7f0000000600)="4f29ec286581fc0a5166ea8c49869fa27f3b6ab3dc999fa5c2add50a5850703b10f4b6866117eecc3afd8f05ddc19b3a76d59b60be880d51f0f12ae54a18f69aba397584d3fd6f0ea499c257207241295cc80711f87b0dcbf98329e1bcac4d0cd39b38e9ef5492c638c4c87e337f0ab7f41feba463c02057a4fe95df0f387d2dad72d327bb2bf243e39b4305f2ac662cc032e6346b369723c6bb4079760f", 0x9e, 0xfffffffffffffffa}, {&(0x7f00000006c0)="193568a0d2d6e4a24d7776dbb90c48d86b85b31f20b521196aa4b75e79038dce6efca122301b9d566699b68a51a8758a0b50bafb1c7d991cc11670bbfa475f1d1d9fa8be4daccf6dca0279d6bf822acb75d0c9c146572e8cb87770d758c203d8155cc974ca253c8ec404a5971246b2e8a183d2de1f450da57b7b875f4db6cc86f08cbfd4c6e636bc8bba70ba71173509377870e45ffaa30c81aef09081d9e1", 0x9f, 0x5}], 0x2000020, &(0x7f0000000840)={[{'\x00'}, {'\x00'}, {'\x00'}, {'\x00'}], [{@fowner_gt={'fowner>', r3}}, {@subj_user}, {@subj_type={'subj_type', 0x3d, '\x00'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@context={'context', 0x3d, 'system_u'}}, {@euid_lt={'euid<', r4}}]})

17:55:21 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_enter(r0, 0x1664, 0x3ae2, 0x0, &(0x7f0000000000)={[0x2]}, 0x8)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = getuid()
mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240), 0x64040, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,rq=0x0000000000000007,dfltuid=', @ANYRESHEX=r3, @ANYBLOB="2c736d61636b66736861743d5b2c007ed910657d40155a389b609e5ea9e94973d79e0b193580c6eb90"])
r4 = inotify_init1(0x80800)
fcntl$dupfd(r0, 0x0, r4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 29)

17:55:21 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd=r0}, 0x4)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000780)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000740)={&(0x7f0000000180)=@pppol2tpv3in6, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/80, 0x50}, {&(0x7f00000002c0)=""/252, 0xfc}, {&(0x7f00000003c0)=""/239, 0xef}, {&(0x7f00000004c0)=""/66, 0x42}, {&(0x7f0000000000)=""/50, 0x32}, {&(0x7f0000000540)=""/150, 0x96}, {&(0x7f0000000600)=""/138, 0x8a}], 0x7}, 0x0, 0x100, 0x0, {0x1, r5}}, 0xfff)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, r8, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x2007, @fd=r0, 0x429, 0x3, 0xf6, 0x16, 0x1, {0x3}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 0:
r0 = syz_io_uring_setup(0x7fd9, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x1000000, 0x40010, r0, 0x8000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000400)=@IORING_OP_POLL_ADD={0x6, 0x6baa05e8d6589e40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8040}, 0x0, {0x0, r4}}, 0x7fffffff)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x8000000)
r6 = syz_io_uring_setup(0x4b12, &(0x7f0000000200)={0x0, 0xe2fe, 0x25, 0x2, 0x1b7, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000040)=<r7=>0x0, &(0x7f00000000c0)=<r8=>0x0)
syz_io_uring_submit(r5, r8, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x16}, 0x3ff)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r9, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x3b2d, &(0x7f00000002c0)={0x0, 0xa5ed, 0x4, 0x3, 0x310, 0x0, r6}, &(0x7f0000ff7000/0x8000)=nil, &(0x7f0000ff6000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r10=>0x0)
syz_io_uring_submit(r7, r10, &(0x7f00000003c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10000, 0x1, {0x2}}, 0x8000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x400)

17:55:21 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r2, 0x590f, 0x7479, 0x1, &(0x7f0000000000)={[0x100000001]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:21 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x1a)
r7 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r5, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r8, &(0x7f0000000180)=@IORING_OP_POLL_REMOVE, 0x180000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$FIGETBSZ(r7, 0x2, &(0x7f00000001c0))

17:55:22 executing program 4:
r0 = syz_io_uring_setup(0x4363, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r6, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x80000004)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r7, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:22 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_setup(0x1df, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x810, r0, 0x8000000)
syz_io_uring_setup(0x12b2, &(0x7f0000000300)={0x0, 0x87d4, 0x20, 0x2, 0x3e8}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000440)=@IORING_OP_WRITE={0x17, 0x4, 0x2004, @fd=r3, 0x8, &(0x7f0000000400)="17875e24c8a65f2b7153b77afbd8592b8ea3a0be2fbd10914cfc9d3b8f68f253991443cc7dd0edb0c2128b414fad58f5f9d245a2678ca5b298b8ddd147f3a4", 0x3f, 0x4}, 0x3aa2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x4)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r5, 0x0)
r7 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r6, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r7}, 0x0)
syz_io_uring_submit(r4, r8, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x4, 0xfffffffffffffffd}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x3, 0x0, @fd_index=0x9, 0x8, &(0x7f00000014c0)="cc7401114f8b6ae075c2551d1e39a642d55469f1efc4b579c838fdecf8cc35c0f37f083adae94c7783006f84ad3fdfcb0b550a9d82a4da9cc0fbeeed060b71947f20b77e62dea7d27721a7d5a8eabb23f5e64a631b7e1e81aa5aef4c8883046e5c94a61ccd9e973d4cf514d795947509ad0000000000c8a832ddada1ca7ac596c5a33e0a13cb52552ac5", 0x8a, 0xd, 0x1}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

17:55:22 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r7, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r8, 0x0, &(0x7f00000016c0)={&(0x7f0000000280)=@un=@file={0x1, './file0\x00'}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="6e2a7907fe88002a78ac6f4232581719370860620473139e72e8ede85536a3b8571283482ee53d35adfeff647f8bdeea20451a1336c34e4085053f3a14d087aa59903401b50b4a8cd2bac7b40fa00c45e568ae0d3d6a41", 0x57}, {&(0x7f0000000380)="df5c47c12b37fb231693b2d8e46129842bcd103482ec810a4b3f2c5f3dddd908b0a0f600e7e5648cbc01318da4088f", 0x2f}, {&(0x7f00000003c0)="798286b9ff3d0679a84cc32bba98a42fca6f094dc0b3c3f192c119a906b70032cc0913c5fe6f3e87736b7cc0f1b5c8ab0a11a5a43c13a110f9c2da840cb11fb8827328c9688582e7b59fe070ab08be7da0aff0104f3ddfa66f8cff1b36bae4a6318910f92ea07fd386d2f74726855a455d75f3228b56a6aca82b213eed00444a3be684ce3bffef49aff3c36d22246e24dfc2ea25a1c3ab87ff72e10eb8b296b80276acc0f0486906cab666b1132e1f5ef6fa92c27c2c832bc5291e3168fd18630082cb76aa58bb8710b138de2c95926d4ebd126cab44a6cfc2a1dbb3a8c8537a4c2e82cb4cde8ec5096e91", 0xeb}], 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x11c0}, 0x0, 0x4000, 0x1, {0x0, r9}}, 0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r7, &(0x7f0000000240)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x22)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)=ANY=[@ANYBLOB="57beaf01998727e248c3cb17", @ANYRES32=<r11=>r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
io_uring_register$IORING_REGISTER_EVENTFD(r11, 0x4, &(0x7f0000000180), 0x1)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r12, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r11, 0x3344, 0x2e49, 0x2, &(0x7f00000001c0)={[0x3]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:22 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000, 0x11, r0, 0x8000000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r4=>r0, @out_args}, './file0\x00'})
syz_io_uring_submit(r3, r2, &(0x7f0000000380)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, r4, 0x0, &(0x7f0000000300)="e87c03d4418b89f4097cd98c58431c1070eb02bcdbc379a3785d83d466cfe696440831100077cba86c3d36e4d05674e9379f75dd9425fccbd95d264446b452dfbf86d6640b691449d2b393c89e8599f8b999613f1a8f2a51ae923b33cb88f944a7ac0aa2", 0x64, 0x100, 0x1}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x1297, &(0x7f0000000180)={0x0, 0x5a8a, 0x4, 0x0, 0x2bd, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r5=>0x0)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(r1, r5, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x6)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1920.671058] FAULT_INJECTION: forcing a failure.
[ 1920.671058] name failslab, interval 1, probability 0, space 0, times 0
[ 1920.674415] CPU: 1 PID: 18552 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1920.675916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1920.678344] Call Trace:
[ 1920.678906]  dump_stack+0x107/0x163
[ 1920.679676]  should_fail.cold+0x5/0xa
[ 1920.680479]  ? kvmalloc_node+0x115/0x170
[ 1920.681340]  should_failslab+0x5/0x10
[ 1920.682158]  __kmalloc_node+0x76/0x4a0
[ 1920.682986]  kvmalloc_node+0x115/0x170
[ 1920.683804]  alloc_fdtable+0xd3/0x280
[ 1920.684620]  dup_fd+0x71e/0xca0
[ 1920.685321]  unshare_files+0x171/0x270
[ 1920.686150]  ? __ia32_sys_unshare+0x40/0x40
[ 1920.687062]  ? get_user_pages_remote+0x63/0x90
[ 1920.688035]  ? get_user_pages_remote+0x6c/0x90
[ 1920.688997]  bprm_execve+0x123/0x1b00
[ 1920.689831]  ? acct_arg_size+0xe0/0xe0
[ 1920.690655]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1920.691821]  ? open_exec+0x70/0x70
[ 1920.692586]  ? memcpy+0x39/0x60
[ 1920.693296]  ? copy_string_kernel+0x3b6/0x450
[ 1920.694264]  do_execveat_common+0x765/0x8c0
[ 1920.695188]  ? bprm_execve+0x1b00/0x1b00
[ 1920.696061]  __x64_sys_execveat+0xed/0x130
[ 1920.696964]  do_syscall_64+0x33/0x40
[ 1920.697765]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1920.698861] RIP: 0033:0x7f48cbaccb19
[ 1920.699649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1920.703672] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1920.705364] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1920.706968] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1920.708528] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1920.710130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1920.711699] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1920.737756] FAULT_INJECTION: forcing a failure.
[ 1920.737756] name failslab, interval 1, probability 0, space 0, times 0
[ 1920.740649] CPU: 0 PID: 18543 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1920.742139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1920.744577] Call Trace:
[ 1920.745138]  dump_stack+0x107/0x163
[ 1920.745926]  should_fail.cold+0x5/0xa
[ 1920.746727]  ? create_object.isra.0+0x3a/0xa20
[ 1920.747689]  ? create_object.isra.0+0x3a/0xa20
[ 1920.748650]  should_failslab+0x5/0x10
[ 1920.749452]  kmem_cache_alloc+0x5b/0x350
[ 1920.750317]  create_object.isra.0+0x3a/0xa20
[ 1920.751238]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1920.752306]  __kmalloc+0x16e/0x3e0
[ 1920.753058]  security_prepare_creds+0x10a/0x180
[ 1920.754070]  prepare_creds+0x458/0x5e0
[ 1920.754892]  prepare_exec_creds+0xd/0x250
[ 1920.755770]  bprm_execve+0x1e3/0x1b00
[ 1920.756574]  ? acct_arg_size+0xe0/0xe0
[ 1920.757398]  ? copy_strings.isra.0+0x2d/0x690
[ 1920.758357]  ? open_exec+0x70/0x70
[ 1920.759113]  ? memcpy+0x39/0x60
[ 1920.759827]  ? copy_string_kernel+0x3b6/0x450
[ 1920.760797]  do_execveat_common+0x765/0x8c0
[ 1920.761740]  ? bprm_execve+0x1b00/0x1b00
[ 1920.762632]  __x64_sys_execveat+0xed/0x130
[ 1920.763528]  do_syscall_64+0x33/0x40
[ 1920.764319]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1920.765409] RIP: 0033:0x7f843b55cb19
[ 1920.766217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1920.770119] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1920.771732] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1920.773238] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1920.774755] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1920.776256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1920.777769] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:55:35 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 37)

17:55:35 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r0, 0x0)
syz_io_uring_complete(r4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 30)

17:55:35 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x3ffffe, 0x0, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0xfffffffffffffffe, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000240)="4eb9c18bc96523fa3592a46bc079ea135cba01d41968e8a32e58b198f73c8670b13e28f144ba75728003414745f114e8680bc7bf6636163817e55021d33b6a147869247467042cdcb1721a1b17386b3001c16eecc3a6ac405b53adb289950e60e49f525519e732e1f631840fc7ab49bfe9704e647d1491b871e67f005b48bf76d27cd6afb75b71fe67a312620047521ab59e40b0a77d4521f27101cba32fea8a87265390e3984db4441e1e6422bfc6abbdad55c73d27f8aeac5c3020a020d7beb8725bce84b4c5dfaf2ca1704e45a65e8f6a5492134502d833a39517d84272e720b6f0f9b3cdf4846e4c9be79e09b1f8a92a1477705b356a36fc53aa72c911ce84f4c82363fc8388b7ce362d76f3577add0326157d53ad403dca25bf9c2db80e2ab9ac1905f38fdbd40ea23cfac79218e3178bb978c9653694fea6b69beb7d96b67470167f9b9e77da82a14cb090cab4e592b5c2feccd9263b6cb1924d96cd9a0f197d7eed114bf3c5be400d1991b72c56173a57a0ccb3df6ad880a752ce450ea76cb2a91c17caaf8629a1befc80991699e932c2ef60cdac24faea4a50c1c065c9f4dc2653280fb45652e265aeebe9c2bf73484bf02377bb3ef777d99479661ff81757e85d406e3b78c4cc343c94956a0f224e0e40c244f4be67ba7b75d11b6d451665bbe35e8529be4cfb17d48c642dc12621d34f5bb4471a7bdc6792cf00e2d4b7928179a9cdc9bbb9a64badbc7620685231fd3e5427be024c0d46ce4800130d4a45990ddc9ba67962e27176b3ee460e57cfca90f53e5c08bec2f933a368a8a48a7b6e7a579795ff275fe9ed4a0b7d6f70ab5bbb982f0ace11f85dfee82d196ea71d7f2721c70eb9e0d7720b37a92a5511ee97e6d5b5794c7656384a9f01686b7e087f11163f34e3ac1fc69867b7ad1a6e2c19e03350e294d74b75f967941280be5d9ac61b3c7f1f3f160182bcf1c22737e19fcc00696a0704056cfbbc4ccd6211c8613222046decc2063e84dd384f8f477bd4fdeef9df22f8c4277dfc0b67e6e5d20669b1c0ab98d0cabbc2c7ecd00c85c70d39287f789abf179f47bf17eb5415b7046c9d0ff96638dfff27587bbe8f297fd0a871587a25ecda476b857a2f92c320b6b20433d6eaa3bc5c8c74a6907d61dc58df0fb4cf4a0e7abab3e89a0ffcfe5082978579aca9a3a56103e59b11d2b801ebc9b0c1cd9253d2d1b3ff19907237930f573f21e7d8053f6e5056620a1c94bc9bd3d56204d9df9f749fc446d4e4012af38a76b18988eeb351ffddb7e580f6378048774cd4328962bbb116fd6d228a85abb47eab2a653523fb05c41b7aa535805b679f4278ebd0d16497505601dca4b5ceb018f32e2948111efdb2e9a2e49d69692ee5026e466d6a580ccaece0bc42f098ecc89e7f08c4b6c1a71612a45019a8c166375ee5a6821a1a7c832db5c5e8ac1a3548dcd6ca7d25c68b3182d65f9c61a727e3594df0dd1274788d7774d5e612dc1116add13ff12116db00ef8a51e1d26078f6f9f13ea51e312ea8e1eca6e21dc0b76439731c46264e4718165c361dd1a0dd4bcc9428860b383103c770c965397b9497797d86399e7f8e291f81e2a335d2637ffe2333e64b0db751697055622ec9776e7bdb66bb5015288e0a552bb3cbbbe8c9d2b9484be7e7f467855c6ffb64b2d8e00c4cfb92725005bd946ddecde64144e4897a3c5d9222e432dd8a21c3b4a87d2faefb58c342dd9c417bab12ca3b9ca466923fa580805cbdfe1b5420ed1c7b7f6d19e51b663302bfc377064fe85bd1cc3cab33575339b0283c299263aeb46edda3b67d24bc849dd66e4654eca687791a9eb3e4dacfe92082d7fee4e827fe93c92b514510f61c9752b1dd07bb50bb10cb0af5d0c904199e12e668d67024e83c1239a191c20860e1f91a79ed716ef057e836dcd43334e66d0d5e036a72ed223d3ded4532cd08853391acc1569a4935e2eded119e6a60800a050858b245025ae8d69655e9c6f043d8815ee1e7d132bb0dd92c3ec6e9e07604fec39e07537c35634162757c5deeaceacc9079571571e62e6299ad9f9fce63254f1f4d06a571dd3d8065cb627f7ccce378463dfa1ede5e877ddf3387dbf837e2a1e2155fad3dbdc51255ef1a2e58d17f3975e39b4a586d64f2cc414c6f7d21e519bd319a91d4940f50776710697a4f3f7544b7cec8e3091c0e1f1ba14df5211ced2c6f22f8a27538910ecddc2decede6d36b7ae38151912c79cb9a97b37a4f29613e919a49ace9a7d9698afe9480c5c1b4258bb9f018e54e73701e4813dc23dd6526cf3ed51e8826a0c50ca75158fa719e8f356307d3944921963b3610df7cfdc10821973dad2646f89abe51908b775b0bf593aa931863d2decf88948ee5227180634a88caeff27271139f5b0c102fbd1c141fd424251c13af0df69e026926ddee930143bc4fed7bc5db1734d83e4ef14f6fa12faadb4440bc7f89ff49cb8a8435e2b7935c4ca8d6f6f9bb9a422c0d5f71ac38411279f9a68ee50f3865153fc6e7bfd15396af0a4544ff183ddee2ce27a3ad2b0f687715d9f3daf1a46efc9c347253ced9917c8c874bbc1b746590d2bd5d68d882ec343e199e244e725cad48aae5eebf9ad09dcc109a93b1b5fde77d0eecd944e083a47db5e4849ce152cd31eefdddb8ee67a587c3f22aed42059779fa4bac7bbce55d97a3c553a9e6763a787d499d741d8b05675e7573dc4b2d2c77ceae9e10dce7f8bdf150ed6a8755aa298a4273cc03ce7b55760c80604a9defc61c8bf951bcf6ba46dba94ee7d28ff27d3d1c207e92c247635a00f440c4a6879cb78aafe99b8cf231da69d77a8195594953faa821e73204c31ad6126850f08ca30be217c988c51759810235c0a47bb8300b220fb38bbe48dc3a0804616c2612000c576017e6c57ddd6cdff29fb70b41081e46f0b3d08145b4963ebf3c71203bdf157aaf4dedb7ef030a677e43f66c9c7374a073c885c0aaf9516f8e3e7ccb2e2d821fc98a0af23e02bfdcdbe020331fcc96cc1e73d5b418b4ce2c4b94055ba20ca632b5ab80d271c195e20ecc3b3826b46726bace745e5a9528b29230d7d363204be9c381f66e1c32e1290f0a90c67c56d80c3f395989d19f975bdbebfe081b6bdeafcd2dbc1cb4cac9e62ac97426c1cc2c435a3726da7fe0e6a1b6f5382a8a631ccd51838566579085f03c2a51a422855dc0ab462648b238297427280b0d0cb454488d53b5ff96d7a2ea5ea7f63513fd236f2ca09377b88acb94a290ccb4ab764d2042e4d7b1da5c8b48ffa264d64df0ee9f58a3d435b2f9a248f72678f65933578ee8205eacc5857115c7be863caabf14f73242aa3a5fc5f904221986237afce420d8b5dbffb95088377fc6a4920bf41541f11c21b9fd8447bff519be0201466f43f72ddb4ccaf1a7a81eef0301f8d67ef9018f3dfc5ef90c51fe8231cc0be311d0ff3cbba89d74344d01058d851b0e053aa95d51943b2dcd74dbc50877448b43b15020bcfe0786841bf8bc3ecc390969bc68bb9462a377bcf3d46dce0ca0bb17d8be171d847123a5394b9d6b72a307acb9416e0e8bcdb506f8cd88577e1bf133fcd1882e1f06a38917dfaf7db53697f7c814912130550ce4234ba845e5fc2f881cc0e8964dbe93331a7b741fbe32e8936d9ed5a71f14345c8088c349eb72057b9e89f32fc6678c6279c279bbd13fad2d00afcf536370e05c847d17ae12e0b6a12bc0ba08c294e1c82ec4c7953f53861ef3d3647324dbf4598c99ececb792174c7559d8e29e976a633a5eac25000b208d60f7c8ae2001602f66e58f103ee10d512e47ee472c0068608b95f5efcd3f7f84859885fc66a1efe4c28b7ed1bbb29e2ecec4b3509097fb0aa954fbf82843da57612526d4d4b2d5b3cfb0fd18e0d8df3c1e68e88e0623385acbc010a5f4c008e1d1a6327578199ad5386a2270cf93eef0703a38dd2bbeafdf15035d4ed4d4f3fd73352b1100bf9dff6402deb798201447c4f5d1aed6fa1ef30eecbfcf06b22872e354e7c3162ea435e910b49fa9224fb5e4f1243bfeaf9a2599aad9676c70cfc627e5af3ce2ff900189a2ce86c88694f5bb5364cfe93b12caba2b744dc1100325cecb5332c04c5f766abf907c40b5a0a661d8ab154d80673c592ffdc23aa781b7a4182d0e959739b25a60d6a37e3362ae7581567574a67275f7256bccbafef6058371f128a7f2fa6c83a51b186aca239f5d3a7484b6b72a2664883010ddb0c8e01febe56d4d14debaffc213fefa6eb31e4f8f00729ec65a7ed1bfb3ff10b657d93dada5e5edff308a594df1dcb0d8d1d8e10e62da13ed4ee7d63ef7a78bdd992999cd8ccc19588b23bbdb0bd4925f17a54e93f229188643b8f72041aaf1a289d1af808a33514eb712c77cbacb70c1c90031fa726b3439d3de80867c2643b1cf09f75300b009b4b692f3210257825da4cc97af14cf428588a7e0391f83bd5f7d5c0a4c759524f61f361663705a49f19920e6b662a1f054807af2dfde4faf28480e45367fca2a82dde7c41c79e9343f231f409748f47521f9b375d41ca7e32c61635e45d4b9e55402f7f30fd47eac709f22c53e79b3bc88bb29304a3a5a6cf1e81773c1ad985faa10b7bf5075e8a3f4fc3d39f7ce8404b8771819ace714091afc1416173e2174fff6c16361cff2e11e0786202bf5d1e5555fbc1f4e3dbf1c305c5771660bc87c02d21073540fb25a2a0c67ed4d1e1c6414623478b6d334186db678ca7568c7dced3a1369f5382183d0dea839970e90578aa882d2d721af8c79a39ba76370ea85ce0e0c48a2f64bba31a13f442f312b6eb894cc95516fd62b765b1701c2c1148ee085edaabef1b8a3d2a64152dbfb4b9042e92e22d533760c71647c75cd7979cf9589698aa67f8872fedd2d0069717e7ac5a876919e84e55a04054a04f0d42af306238356435ae42e77211cb6c214bef4f71fbd22675c968eaf966dee19703aff1cff26e8c1c77a100d974aef1ed7fb18c6e769e6bc12b09024aba0566706631c3e6ad279ef4f66476cc971956c8cb2c8e675ede6cf2d8af1d7238af711549cc4dfc2e2613b67a8893fd0ba91e5ebc17fa6293699a365ec63220a2b53d3ba6c3043cf61f78bb5cea2cc8b0608cae7078d366b0cd21cf549d7dbaa1b56de7dfb8f871402d0c3b4d2875e5184aa093e84d8d3b6e54a40498229535a3b0dd0fc4a83fadb4fa7a1260235431baaabf4ecd99bd1987c0eeb69e25b2da355c2dd0f4c9a4754b1aadda1a437d6729577e739aeb2a37409f006cdc2394107d481001a7a3230579c9794f60742fed09cf918bf16b07cae04bd75c71743abd32c692b5838b5142d352193c2a68727d07c2451ba618e7f96f106c71076a3581bdd806fe9027df6aeac865fa647efb343ec389e5b7b8516f2e0a695973292a9cf27b66a267207cadd68fdba4ddafa90fae9c871c511247f08f32d9b96d3997257437b3e7e4b6c905de8860f8c08e15f5f43232158bf24a85ce80dde9fbee89fe0a21e46ec5b0683f8cf6da20fd667df61ca474bb06251ef4434500e83d002e4b5c3ebb5d2bb87aae4293a59f3a3ac35bb48892ced605fe62e54067ad53f70ecbce51f13bcc8c7d5e40271460decb339d6dcedd16d66d743ca2788cc8c2e1ddb7119f9e8d2bf7dc1afbcace75287f4db814b04b22b8832c7fceced076a227d9e16d25fbb2c4df6356958c3ae2e6beaeaed26086477e87b9e42500b550ace17eba4454a9eca8af718e92197854f827481861c47f1ed64c7266c3f4a0a45004bf5fd47dc0cc94e", 0x1000, 0x5}, {&(0x7f0000001240)="c5aab4c585e9cb281b6a268800d05a50dc8a91fee80239acc42e23a5f1b5f416a6e031bc47625339971253f944a599bf1c2c8d00b6aa298575fd8f7bd5d75d45e72bb110760eabf9b4427b71de9e9b2d00ae8b6959dc9ce7744214d2a570b8b60d10d39e46a9d6775261b0e17dcd9f4656c6b6610e1c43981ea3", 0x7a, 0x8000}], 0x104000, &(0x7f00000012c0)=ANY=[@ANYBLOB=',\x00,\x00,dont_appraise,rootcontext=sta\x00\x00_u,subj_user=\x00,fsmagic=0xffffffffffFffffe,\x00'])
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r2, r1, &(0x7f0000001440)=@IORING_OP_WRITEV={0x2, 0x5, 0x0, @fd=r3, 0x20, &(0x7f0000001400)=[{&(0x7f0000001340)="988d3faf0317b11130d04fec2dadfa42a489811c2c844d7c2e6b21da27654889c47c56071c616c20941ec204d4401288fe1b92f7609b2379ca2fad57beeb19be707de12eb14203de2f975ba9949300d8045a0e233abd9b3a44c515abb8c56bb9fffc0e3cb74c55b78dc0ff80a44be0aecf6f79395405a50b8bf06f226b6f90d890fad8c7e0341d007f", 0x89}], 0x1, 0x0, 0x1, {0x1, r5}}, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_submit(r2, r1, &(0x7f0000000540)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r3, 0x0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/226, 0xe2}, {}, {&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000340)=""/207, 0xcf}, {&(0x7f00000001c0)=""/22, 0x16}], 0x5, &(0x7f00000004c0)=""/26, 0x1a}, 0x0, 0x40000001, 0x1}, 0xe00000)

17:55:35 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r3=>r2, {r2}}, './file0/file0\x00'})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, 0x0)
syz_io_uring_setup(0x1aa8, &(0x7f0000000180)={0x0, 0x1de, 0x10, 0x1, 0x3cc, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280))
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index=0x1, 0x0, {0x0, r2}, 0x800, 0x3}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000001c0)=[0xffffffffffffffff], 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
clock_gettime(0x0, &(0x7f0000001f40)={<r7=>0x0, <r8=>0x0})
recvmmsg$unix(r4, &(0x7f0000001ec0)=[{{&(0x7f0000000240)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f00000002c0)=""/151, 0x97}, {&(0x7f0000000380)=""/210, 0xd2}, {&(0x7f0000000480)=""/244, 0xf4}, {&(0x7f0000000580)=""/57, 0x39}, {&(0x7f00000005c0)=""/196, 0xc4}, {&(0x7f00000006c0)=""/82, 0x52}, {&(0x7f0000000740)=""/225, 0xe1}, {&(0x7f0000000840)=""/59, 0x3b}], 0x8}}, {{&(0x7f0000000900), 0x6e, &(0x7f0000001d80)=[{&(0x7f0000000980)=""/98, 0x62}, {&(0x7f0000000a00)=""/49, 0x31}, {&(0x7f0000000a40)=""/27, 0x1b}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/152, 0x98}, {&(0x7f0000001b40)=""/23, 0x17}, {&(0x7f0000001b80)=""/160, 0xa0}, {&(0x7f0000001c40)=""/202, 0xca}, {&(0x7f0000001d40)=""/50, 0x32}], 0x9, &(0x7f0000001e40)=ANY=[@ANYBLOB="28da5c0a3c03000000d3142899b875f3", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r9=>0xffffffffffffffff, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x48}}], 0x2, 0x0, &(0x7f0000001f80)={r7, r8+10000000})
r10 = open_tree(r4, &(0x7f0000002040)='./file0\x00', 0x100)
fsconfig$FSCONFIG_SET_PATH(r9, 0x3, &(0x7f0000001fc0)='\x00', &(0x7f0000002000)='./file0\x00', r10)
r11 = mmap$IORING_OFF_SQES(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0xc89c2b3880c7fe9e, r2, 0x10000000)
syz_io_uring_submit(r5, r11, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, &(0x7f00000026c0))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 4:
r0 = syz_io_uring_setup(0x317, &(0x7f0000000080)={0x0, 0x12e2, 0x8, 0xfffffffc}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000180)={0xe45, 0x4, 0x0, 'queue1\x00', 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 6:
sysfs$3(0x3)
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x4, &(0x7f00000001c0), 0x1, 0x0, 0x0, {0x0, r7}}, 0x5)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000000, 0x4010, r2, 0x0)
r9 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r9, 0xa, 0x0, r10)
syz_io_uring_submit(r8, r1, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd_index=0x7, 0x4, 0x0, 0x48, 0x0, 0x1}, 0x7)

17:55:35 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000300)='./file0\x00', 0x16)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x11, r0, 0x0)
syz_io_uring_setup(0x1c32, &(0x7f0000000180)={0x0, 0x1b40, 0x1, 0x3, 0x22a, 0x0, r2}, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r5=>0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r6, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x2, 0x0, r6, &(0x7f0000000280)={0x2000}, r0, 0x1, 0x0, 0x1, {0x0, r7}}, 0xb28f)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:35 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x10000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x1}, 0x7f)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x200, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240), 0x40800, &(0x7f00000003c0)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x2}}, {@common=@version_L}, {@sq={'sq', 0x3d, 0x5}}, {@timeout={'timeout', 0x3d, 0x4}}], [{@smackfshat={'smackfshat', 0x3d, '\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '-.-\\]).'}}, {@euid_lt={'euid<', r4}}, {@uid_lt={'uid<', r5}}, {@obj_role={'obj_role', 0x3d, ')]'}}]}})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1933.935480] FAULT_INJECTION: forcing a failure.
[ 1933.935480] name failslab, interval 1, probability 0, space 0, times 0
[ 1933.938964] CPU: 0 PID: 18682 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1933.940542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1933.943146] Call Trace:
[ 1933.943750]  dump_stack+0x107/0x163
[ 1933.944577]  should_fail.cold+0x5/0xa
[ 1933.945445]  ? create_object.isra.0+0x3a/0xa20
[ 1933.946487]  should_failslab+0x5/0x10
[ 1933.947346]  kmem_cache_alloc+0x5b/0x350
[ 1933.948291]  create_object.isra.0+0x3a/0xa20
[ 1933.949312]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1933.950501]  __kmalloc_node+0x1ae/0x4a0
[ 1933.951481]  kvmalloc_node+0x115/0x170
[ 1933.952407]  alloc_fdtable+0xd3/0x280
[ 1933.953288]  dup_fd+0x71e/0xca0
[ 1933.954083]  unshare_files+0x171/0x270
[ 1933.954985]  ? __ia32_sys_unshare+0x40/0x40
[ 1933.955984]  ? bprm_execve+0x119/0x1b00
[ 1933.956895]  bprm_execve+0x123/0x1b00
[ 1933.957761]  ? copy_string_kernel+0x150/0x450
[ 1933.958782]  ? open_exec+0x70/0x70
[ 1933.959582]  ? __sanitizer_cov_trace_pc+0x14/0x60
[ 1933.960668]  ? copy_string_kernel+0x3b6/0x450
[ 1933.961684]  do_execveat_common+0x765/0x8c0
[ 1933.962668]  ? bprm_execve+0x1b00/0x1b00
[ 1933.963597]  __x64_sys_execveat+0xed/0x130
[ 1933.964556]  do_syscall_64+0x33/0x40
[ 1933.965395]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1933.966574] RIP: 0033:0x7f48cbaccb19
[ 1933.967425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1933.971619] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1933.973347] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1933.974975] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1933.976589] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1933.978209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1933.979821] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:55:35 executing program 7:
r0 = syz_io_uring_setup(0x4360, &(0x7f0000000080)={0x0, 0x1552, 0x1, 0x4, 0xfffffffe}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f00000001c0)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3000001, 0x40010, r2, 0x10000000)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10010, r2, 0x10000000)
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x166)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000f, 0x10, r4, 0x0)
syz_io_uring_setup(0xcf9, &(0x7f0000000080)={0x0, 0x0, 0x18, 0x0, 0x278}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000280), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r5, r3, 0x0, 0x100000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000004, 0x10, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x9}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_complete(r8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1934.076583] FAULT_INJECTION: forcing a failure.
[ 1934.076583] name failslab, interval 1, probability 0, space 0, times 0
[ 1934.084630] CPU: 1 PID: 18688 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1934.086109] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1934.088468] Call Trace:
[ 1934.089020]  dump_stack+0x107/0x163
[ 1934.089776]  should_fail.cold+0x5/0xa
[ 1934.090591]  ? __alloc_file+0x21/0x310
[ 1934.091398]  should_failslab+0x5/0x10
[ 1934.092185]  kmem_cache_alloc+0x5b/0x350
[ 1934.093026]  ? kernel_text_address+0xea/0x120
[ 1934.093975]  __alloc_file+0x21/0x310
[ 1934.094757]  alloc_empty_file+0x6d/0x170
[ 1934.095621]  path_openat+0xde/0x26c0
[ 1934.096410]  ? mark_lock+0xf5/0x2df0
[ 1934.097194]  ? lock_chain_count+0x20/0x20
[ 1934.098072]  ? stack_trace_save+0x8c/0xc0
[ 1934.098948]  ? lock_chain_count+0x20/0x20
[ 1934.099827]  ? path_lookupat+0x850/0x850
[ 1934.100679]  ? lock_chain_count+0x20/0x20
[ 1934.101543]  ? kasan_save_stack+0x32/0x40
[ 1934.102424]  ? kasan_save_stack+0x1b/0x40
[ 1934.103289]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1934.104346]  ? security_prepare_creds+0x10a/0x180
[ 1934.105349]  ? prepare_creds+0x458/0x5e0
[ 1934.106190]  ? prepare_exec_creds+0xd/0x250
[ 1934.107085]  ? bprm_execve+0x1e3/0x1b00
[ 1934.107921]  do_filp_open+0x17e/0x3c0
[ 1934.108722]  ? may_open_dev+0xf0/0xf0
[ 1934.109528]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1934.110669]  ? trace_hardirqs_on+0x5b/0x180
[ 1934.111583]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1934.112681]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1934.113827]  ? find_held_lock+0x2c/0x110
[ 1934.114687]  do_open_execat+0x116/0x690
[ 1934.115523]  ? __ia32_sys_uselib+0x40/0x40
[ 1934.116398]  ? do_raw_spin_lock+0x121/0x260
[ 1934.117303]  ? rwlock_bug.part.0+0x90/0x90
[ 1934.118210]  bprm_execve+0x5b2/0x1b00
[ 1934.119012]  ? open_exec+0x70/0x70
[ 1934.119764]  ? memcpy+0x39/0x60
[ 1934.120450]  ? copy_string_kernel+0x3b6/0x450
[ 1934.121394]  do_execveat_common+0x765/0x8c0
[ 1934.122297]  ? bprm_execve+0x1b00/0x1b00
[ 1934.123152]  __x64_sys_execveat+0xed/0x130
[ 1934.124040]  do_syscall_64+0x33/0x40
[ 1934.124818]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1934.125919] RIP: 0033:0x7f843b55cb19
[ 1934.126701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1934.130530] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1934.132121] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1934.133590] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1934.135069] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1934.136521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1934.138018] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:55:46 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 31)

17:55:46 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x195d, &(0x7f0000000180)={0x0, 0xb7d4, 0x2, 0x2, 0x1ae}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000240))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r3, r6, &(0x7f0000000280)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = open_tree(r4, &(0x7f00000002c0)='./file0\x00', 0x8000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd=r9, 0x101, 0x0, 0x1}, 0xd39)

17:55:46 executing program 6:
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000180), 0x400900, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x144, 0x31, 0x2, 0x70bd27, 0x25dfdbfb, {0x9}, [@generic="c4391623b35b5e43b4ac55d0b1b6b95a5e38ead05073d77218568cdbea758254b6ae4effeff158ef5d470b579da4cd0228ca75dea1b40f04a932c7e5eedbd132199034bf0e3849b9069ef44cd11137a6fa1370750bb5fad85a4393a8f8e5acf3a4b68c9c32d9854923751ddba69af24da4ed576c9df2a3fd53a509b573be1b10270b8d91b93cc89c03e37f2a40d7408aef458d3c1475fee670a3c9931bb11b822fd7f41b7a80c55fb4f3d8ff61b268c4638a97c8aa6d72d51c0f9af38761eb59f4f44b0b4742c39a6cc73cd7a7fdab0f5a63a1c1ff95122736ca", @generic="ffc16b7582640b8f5dfcd0524af9b6ec4839caeaf24348777650ffc466da29aa0608e81550a398dcb534a849f25df4d3c9c046997882982e0fe0122662ed57ecd3e4a780d3f794d44e52293a", @typed={0x8, 0x44, 0x0, 0x0, @u32=0x80}]}, 0x144}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r4, 0x3875, 0xb5b3, 0x1, &(0x7f0000000000)={[0x4]}, 0x8)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
kcmp(0xffffffffffffffff, 0x0, 0x3, r2, r4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 38)

17:55:46 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000240)={0x0, 0x6, 0x3})
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r4, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000014c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000002000000200001800800725acc654138f56c49da6f0300000000001400020073797a5f746123f963f5bdeac290132917f865e37b88da05fb7ef53cc762282556a839ab94ab6769235f54dede47138a6609a347c9fffffffff3e81cee0c37471056b9aab834ee0ad96a2aea2270398b9f97cb6229476cd40c906170df95b2034642afd50ac4ecd51c1eb9d25a50bfae782eb4090d2c7113a419a856d2df6ec0a281b953eacc2d57b59b87f5bd82603158984d0d357632bcac2d10123926be8ee9df1c670f1abfe15e333abf1f4f3b544acc286a8f710eece525393e847298b5187995ad27bcc6eaec79e609651de705423b10dadb689e7ead535c8507a9781cf37ccdcf10"], 0x34}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f0000000180)={'ip6_vti0\x00', <r6=>0x0, 0x29, 0x0, 0x6, 0x5, 0x50, @mcast2, @remote, 0x7800, 0x10, 0xf9, 0x80000000}})
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
dup(r7)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', <r9=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r7, 0x8916, &(0x7f0000000240)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7, r9})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={r9, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r5, @ANYBLOB="020028bd7000ffdbdf2518000000050006000100000054000180080003000200000008000300020000000800030000000000080003000100000008000100", @ANYRES32=r6, @ANYBLOB="080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="d888f1dca5eb3e8bee81e9782429ae7f000300", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0500050001000000050005000000000005000600000000000500060001000000"], 0x90}, 0x1, 0x0, 0x0, 0x44080}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1607, &(0x7f0000000180)={0x0, 0x6a89, 0x2, 0x0, 0x23f, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000240))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[r2, r3]}, 0x2)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0xffffffdb)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 4:
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(0xffffffffffffffff, 0x8010671f, &(0x7f0000000180)={&(0x7f0000000000)=""/23, 0x17})
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x50, r0, 0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r3, r2, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd=r0, 0x2, 0x0, 0x5, 0x1, 0x0, {0x0, r5}}, 0x9)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x2, 0x800, 0x1}, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1944.772775] FAULT_INJECTION: forcing a failure.
[ 1944.772775] name failslab, interval 1, probability 0, space 0, times 0
[ 1944.778917] CPU: 1 PID: 18824 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1944.780400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1944.782835] Call Trace:
[ 1944.783400]  dump_stack+0x107/0x163
[ 1944.784176]  should_fail.cold+0x5/0xa
[ 1944.784993]  ? kvmalloc_node+0x115/0x170
[ 1944.785859]  ? kvmalloc_node+0x115/0x170
[ 1944.786746]  should_failslab+0x5/0x10
[ 1944.787556]  __kmalloc_node+0x76/0x4a0
[ 1944.788385]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1944.789476]  kvmalloc_node+0x115/0x170
[ 1944.790312]  alloc_fdtable+0x13f/0x280
[ 1944.791151]  dup_fd+0x71e/0xca0
[ 1944.791880]  unshare_files+0x171/0x270
[ 1944.792715]  ? __ia32_sys_unshare+0x40/0x40
[ 1944.793663]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1944.794805]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1944.795992]  bprm_execve+0x123/0x1b00
[ 1944.796817]  ? copy_string_kernel+0x363/0x450
[ 1944.797790]  ? open_exec+0x70/0x70
[ 1944.798573]  ? kcov_remote_stop+0x310/0x310
[ 1944.799498]  ? copy_string_kernel+0x3b6/0x450
[ 1944.800457]  do_execveat_common+0x765/0x8c0
[ 1944.801382]  ? bprm_execve+0x1b00/0x1b00
[ 1944.802270]  __x64_sys_execveat+0xed/0x130
[ 1944.803179]  do_syscall_64+0x33/0x40
[ 1944.803970]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1944.805072] RIP: 0033:0x7f48cbaccb19
[ 1944.805863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1944.809832] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1944.811482] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1944.813015] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1944.814562] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1944.816096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1944.816772] FAULT_INJECTION: forcing a failure.
[ 1944.816772] name failslab, interval 1, probability 0, space 0, times 0
[ 1944.817620] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
[ 1944.822227] CPU: 0 PID: 18821 Comm: syz-executor.5 Not tainted 5.10.123 #1
17:55:46 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x6cac, 0xfed6, 0x0, &(0x7f0000000000)={[0x2]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1944.823702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1944.826260] Call Trace:
[ 1944.826816]  dump_stack+0x107/0x163
[ 1944.827596]  should_fail.cold+0x5/0xa
[ 1944.828409]  ? create_object.isra.0+0x3a/0xa20
[ 1944.829371]  should_failslab+0x5/0x10
[ 1944.830179]  kmem_cache_alloc+0x5b/0x350
[ 1944.831054]  create_object.isra.0+0x3a/0xa20
[ 1944.831995]  kmem_cache_alloc+0x159/0x350
[ 1944.832881]  __alloc_file+0x21/0x310
[ 1944.833669]  alloc_empty_file+0x6d/0x170
[ 1944.834552]  path_openat+0xde/0x26c0
[ 1944.835355]  ? lock_chain_count+0x20/0x20
[ 1944.836233]  ? stack_trace_save+0x8c/0xc0
[ 1944.837114]  ? stack_trace_consume_entry+0x160/0x160
[ 1944.838198]  ? path_lookupat+0x850/0x850
[ 1944.839074]  ? kasan_save_stack+0x32/0x40
[ 1944.839949]  ? kasan_save_stack+0x1b/0x40
[ 1944.840832]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1944.841908]  ? security_prepare_creds+0x10a/0x180
[ 1944.842944]  ? prepare_creds+0x458/0x5e0
[ 1944.843810]  ? prepare_exec_creds+0xd/0x250
[ 1944.844712]  ? bprm_execve+0x1e3/0x1b00
[ 1944.845558]  do_filp_open+0x17e/0x3c0
[ 1944.846364]  ? may_open_dev+0xf0/0xf0
[ 1944.847191]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1944.848301]  ? percpu_ref_put_many.constprop.0+0x4e/0x100
[ 1944.849481]  ? find_held_lock+0x2c/0x110
[ 1944.850362]  do_open_execat+0x116/0x690
[ 1944.851208]  ? __ia32_sys_uselib+0x40/0x40
[ 1944.852113]  ? do_raw_spin_lock+0x121/0x260
[ 1944.853026]  ? rwlock_bug.part.0+0x90/0x90
[ 1944.853949]  bprm_execve+0x5b2/0x1b00
17:55:46 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 32)

[ 1944.854820]  ? open_exec+0x70/0x70
[ 1944.855573]  ? memcpy+0x39/0x60
[ 1944.856269]  ? copy_string_kernel+0x3b6/0x450
[ 1944.857243]  do_execveat_common+0x765/0x8c0
[ 1944.858171]  ? bprm_execve+0x1b00/0x1b00
[ 1944.859055]  __x64_sys_execveat+0xed/0x130
[ 1944.859961]  do_syscall_64+0x33/0x40
[ 1944.860770]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1944.861860] RIP: 0033:0x7f843b55cb19
[ 1944.862662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1944.866579] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1944.868187] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1944.869700] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1944.871220] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1944.872891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1944.874415] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:55:46 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x100000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x11df, &(0x7f0000000180)={0x0, 0xe7e5, 0x20, 0x1, 0xa, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r3=>0x0)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_WRITE={0x17, 0x4, 0x6000, @fd=r4, 0x1, &(0x7f0000000280)="396d4150c220067f74946a68d02b32e39ef536a6ab0d27edbe2c86dbf214fd2eaba25e43fccea3dd01666a07843de7004de8b9e01bcba444a7dd29f198137ad86cd4781502d3698d7bb9413b44184ee2da2c6dbeb9858baa952689ff142d7cbdb92b06df3d6cce70bf6f0ac83e2d39f05ee69e7a5ed7bcaf555cc2ce07b8757da5e8d13485bcac771728316574e7d22e18e232fb7813f610a19f58d0943c9fef8676682a7d7eb0b738f93ab8711ad66ff66435c62a618b3aab2c39c7612e99761534f06a73e8f13e8a989be73fe0203a93cf6d6465755f3b", 0xd8, 0x2, 0x1}, 0xd10)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3d1, 0x8723, 0x1, &(0x7f0000000000)={[0x6]}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x3, 0x1c, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @private}}}}}}, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0x400, 0x0)
syz_io_uring_setup(0x725e, &(0x7f0000000180)={0x0, 0xd4ba, 0x2, 0x1, 0x106, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 7:
r0 = syz_io_uring_setup(0x7286, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000006, 0x12, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:46 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x27af, &(0x7f0000000180)={0x0, 0x2516, 0x10, 0x1, 0x2f1, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r3=>0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r1, r3, &(0x7f0000000480)=@IORING_OP_WRITEV={0x2, 0x1, 0x2007, @fd=r0, 0x1, &(0x7f0000000440)=[{&(0x7f0000000280)="4544b18bc9debd7b46a0e67723b4c174d3f13f12cbc2e774e0cd2cee58c5a865d3f7fdc673579672d4311b8f5b6c823dac9a3380e3bc3b8ca78e0371f0852dcbf9d23eb19ab35cec40f52cddc071c44e186b59e676ff2679f078544cd477c3dcdccdfeb2b52df86a68d2a2f660f7b7f29fd600198d844f2ea906b561ac9933f09a663de480", 0x85}, {&(0x7f0000000340)="e03f144defd03f977d0a851d075e99ef6ebf781539981c2ab5135959a35bed92a86189ef768a52a0a79e9df4671e1aa8752f4b97cf9891019b81148d31f94bbc8c86028923fe6c1ec3c0c871609713d06748f397fc7ef55db7d81ebbbde0ada1e7a330195c27a94b41caf2a6a97dbbce4c405fb94fcb8f4bb34b19ece56b338e7d0f862aec30d0355fcb43efb5b8bbe80c1aa79484d1a6dd388f5f981e40fc4df14729469c0212e8279e6b8af985ccd2321fe21df1ac0a8fd4b20e804e81662dd9190a654e470619", 0xc8}], 0x2, 0x13, 0x0, {0x0, r5}}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1945.402778] FAULT_INJECTION: forcing a failure.
[ 1945.402778] name failslab, interval 1, probability 0, space 0, times 0
[ 1945.405373] CPU: 0 PID: 18906 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1945.406584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1945.408545] Call Trace:
[ 1945.409009]  dump_stack+0x107/0x163
[ 1945.409643]  should_fail.cold+0x5/0xa
[ 1945.410331]  ? kvmalloc_node+0x115/0x170
[ 1945.411039]  should_failslab+0x5/0x10
[ 1945.411708]  __kmalloc_node+0x76/0x4a0
[ 1945.412402]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1945.413289]  kvmalloc_node+0x115/0x170
[ 1945.413971]  alloc_fdtable+0x13f/0x280
[ 1945.414670]  dup_fd+0x71e/0xca0
[ 1945.415258]  unshare_files+0x171/0x270
[ 1945.415942]  ? __ia32_sys_unshare+0x40/0x40
[ 1945.416687]  bprm_execve+0x123/0x1b00
[ 1945.417341]  ? acct_arg_size+0xe0/0xe0
[ 1945.418010]  ? open_exec+0x70/0x70
[ 1945.418655]  ? memcpy+0x39/0x60
[ 1945.419224]  ? copy_string_kernel+0x3b6/0x450
[ 1945.420003]  do_execveat_common+0x765/0x8c0
[ 1945.420745]  ? bprm_execve+0x1b00/0x1b00
[ 1945.421453]  __x64_sys_execveat+0xed/0x130
[ 1945.422210]  do_syscall_64+0x33/0x40
[ 1945.422849]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1945.423737] RIP: 0033:0x7f48cbaccb19
[ 1945.424370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1945.427751] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1945.429056] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1945.430382] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1945.431693] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1945.432961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1945.434233] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:55:58 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
syz_io_uring_setup(0x47af, &(0x7f0000000180)={0x0, 0x2b8f, 0x10, 0x3, 0x23c, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_complete(r3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 33)

17:55:58 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r2, @ANYBLOB="020000000000000c2e2f66696c653000"])
io_uring_enter(r4, 0x455b, 0xdc8f, 0x1, &(0x7f0000000180)={[0x69]}, 0x8)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x536a, &(0x7f0000000240)={0x0, 0x8c22, 0x20, 0x3, 0x2c7, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000001c0)=<r5=>0x0, &(0x7f00000002c0))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000440)=@IORING_OP_STATX={0x15, 0x0, 0x0, r4, &(0x7f0000000300), &(0x7f0000000400)='./file0\x00', 0x1, 0x0, 0x0, {0x0, r6}}, 0x1)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0xad9d, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = dup3(r2, r0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8000, &(0x7f0000000300)=0xffff, 0xaa, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x41, 0xfffffffffffffff8, 0xfff, 0xeed3, 0x0, 0x8000, 0x4, 0xfff}, &(0x7f0000000180)={0x8, 0x100, 0x2, 0x81, 0x80, 0x0, 0x9, 0x4}, &(0x7f00000001c0)={0x3, 0xc0000, 0x800, 0x7c2, 0x1, 0x6, 0x2, 0x10001}, &(0x7f0000000240), &(0x7f00000002c0)={&(0x7f0000000280)={[0x4]}, 0x8})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_STATX={0x15, 0x1, 0x0, r3, &(0x7f0000000240), &(0x7f0000000180)='./file0\x00', 0x40, 0x0, 0x1, {0x0, r5}}, 0xf8000000)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:58 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 39)

17:55:58 executing program 1:
r0 = syz_io_uring_setup(0x4365, &(0x7f0000000080)={0x0, 0x6, 0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x284282, 0x100)
syz_io_uring_setup(0x5a36, &(0x7f0000000180)={0x0, 0x70aa, 0x8, 0x2, 0x1fc, 0x0, r3}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:59 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f00000007c0), 0x0)
sendmsg(r3, &(0x7f0000000680)={&(0x7f0000000180)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)="fd3aa836a5c479c67c765649e7309f60f4ea10ad60e9a1f388853391fd26f145669c8e05879eb70e8211f663aef529ecbed54d1463f00759d9123843b1f5e2f6ffbe6ea7c4d5452631fd55afb9ea809611881a466bcf88388959fd806cd3a31c9516b10dfeb3071c55b190ac4dc4a61dd653b08d26fef327179ac29985fc8a699689ecba6c37e62d4ff68ad80eb94b9acc4d5c63a8c20158b38eb2d763ae23c9e22099", 0xa3}], 0x1, &(0x7f0000000300)=[{0xf0, 0x109, 0x8, "897632c196f8a9c3b16a2fecd1f1f9a2981f71c6ea2561c1165ad09f70c94f491d93769739d0b6a37aa2b0b49a05a513be1407bb38add7af0f5632ae00366122a284b2d493539600ab75d3d7197836dd3510c1814419adf6ba26b978f176ab76a67433685fc43ca5c05f3a6bbd10f71c3b4b0d76de92f8c317b88bf3443fcf206d7cf84262cd5455d4586bae60adb37a31f47b03e26709244e4e8e02daad701f941aa1324b65b2513c589238025cf5c80152cdb6c3cf2858d0ce3a0771ac985a5f115a7efea2fd2609bb10c4501aacbc2f192569459fa7e09cb0767d22b3"}, {0x78, 0x105, 0x7f, "dc2fae3bd1de6c64f7fda3bf6fc1f5f9f9d4d0c4aae542ad34c1650efaada91c3b59977a010884258a59085205cf635f7763afc53b6139c299a0291623522dbb3470ce26b330d3fe53ffe58631acbbe2e7c24bd2e7404c476229d733229129698c7b36d6ffc1"}, {0x48, 0x10a, 0x3, "e4110b1c176c41d3202ce278bbe67250900086759e62bc68e3750456c848712e2bf0e099c25dd01bcf4f63bcc61847768a009d69"}, {0x110, 0x2, 0x1f, "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"}, {0x88, 0x117, 0x3, "bca6356339c05710ef22b7d2d68ef16fb690defff3d6f7e28da6b00a326aec8e02ff5f8b60bef735c088dec09828db696af8a477fc845f7bf02f7aaf710a85d8a3ae806c6df3385e0d8010f0637247d080d8cdd5e3243ebcec51552d7f08568aee5218f30ff8d335343d6f32f584c8c855faec"}], 0x348}, 0x840)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:59 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x60, 0x1, {0x2}}, 0x401)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x8e4, &(0x7f0000000180)={0x0, 0xf3f6, 0x10, 0xfffffffb, 0x284, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280))
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r6, 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r8, &(0x7f00000002c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r9}}, 0x401)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:59 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="02000000000000008007000000000000"])
mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x2010, r2, 0x10000000)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:55:59 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000180), 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x4000010, r2, 0x0)
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
syz_io_uring_submit(r4, r1, &(0x7f00000014c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x2004, @fd_index=0xa, 0x9f, &(0x7f0000000440)=[{&(0x7f00000001c0)="4f5047d9", 0x4}, {&(0x7f0000000240)="8d21975ab5cba89c05f80a81c84e0da425f0f6e7065b98a5946b0cf9a06f7968053c8076677d4258b1", 0x29}, {&(0x7f0000000280)="93615951b35f824ddc82ee4ef7d0841a536034f73ee00559dc235c90e4b74ec5ce735d0cd75105e75559df458ba42aa4da797c0ae8c8799f4f57fd1bc8194cf88b2ff2f4bf5b77cad9969e0de4ab7a2be160b6a95fa3f40c3e75cdfc1c3a954c42b231", 0x63}, {&(0x7f0000000300)}, {&(0x7f0000000340)="28674689c02b80a8f0902ef22b423bb687a146eb229339e438bb3c53fe736a85231364a62e5c7776cbd3537924302115c7cfab3b4ce21ca26b06f59dbda21fe85036f2ccb2281cf97d0c909a08c0024641b91623fa5c0f185d80011bc2e3e3ec585ad2e64f31a725cc3d96fba0cd9d91b81564174a23487d4cf0b82a828b16e880875c30c218b3fb9213e2f7509546d753af5523092c1ae85544cc4b3775043598f022f93c4d1b6072dc9ae8311bc95e83e4f6d46fd4a674338fedd49e92ead0e375323b617324b4b9271261fbc2358a069de3cbacb5bab0a56dbdf3bf755dc80c126942da43a8ecfb268cb2532028420af994ed7bb41c", 0xf7}], 0x5, 0x19, 0x0, {0x3, r6}}, 0x8)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x17)
ioctl$sock_SIOCOUTQ(r7, 0x5411, &(0x7f0000000000))

17:55:59 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6, 0x810, r0, 0x10000000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'})
r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0xa, 0x0, r6)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs2/binder0\x00', 0x4, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd=r4, 0x0, 0x0, 0x6d2, 0x1, 0x1, {0x0, r6, r7}}, 0x6)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1957.615059] FAULT_INJECTION: forcing a failure.
[ 1957.615059] name failslab, interval 1, probability 0, space 0, times 0
[ 1957.636975] CPU: 1 PID: 19018 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1957.638521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1957.640976] Call Trace:
[ 1957.641563]  dump_stack+0x107/0x163
[ 1957.642357]  should_fail.cold+0x5/0xa
[ 1957.643182]  ? security_file_alloc+0x34/0x170
[ 1957.644148]  ? security_file_alloc+0x34/0x170
[ 1957.645112]  should_failslab+0x5/0x10
[ 1957.645928]  kmem_cache_alloc+0x5b/0x350
[ 1957.646821]  security_file_alloc+0x34/0x170
[ 1957.647754]  __alloc_file+0xb6/0x310
[ 1957.648552]  alloc_empty_file+0x6d/0x170
[ 1957.649424]  path_openat+0xde/0x26c0
[ 1957.650232]  ? lock_chain_count+0x20/0x20
[ 1957.651123]  ? stack_trace_save+0x8c/0xc0
[ 1957.652007]  ? stack_trace_consume_entry+0x160/0x160
[ 1957.653123]  ? path_lookupat+0x850/0x850
[ 1957.654005]  ? kasan_save_stack+0x32/0x40
[ 1957.654900]  ? kasan_save_stack+0x1b/0x40
[ 1957.655781]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1957.656859]  ? security_prepare_creds+0x10a/0x180
[ 1957.657886]  ? prepare_creds+0x458/0x5e0
[ 1957.658764]  ? prepare_exec_creds+0xd/0x250
[ 1957.659692]  ? bprm_execve+0x1e3/0x1b00
[ 1957.660540]  do_filp_open+0x17e/0x3c0
[ 1957.661348]  ? may_open_dev+0xf0/0xf0
[ 1957.662180]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1957.663334]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1957.664483]  ? trace_hardirqs_on+0x5b/0x180
[ 1957.665400]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1957.666582]  ? lock_is_held_type+0xd2/0x100
[ 1957.667528]  ? find_held_lock+0x2c/0x110
[ 1957.668398]  do_open_execat+0x116/0x690
[ 1957.669243]  ? __ia32_sys_uselib+0x40/0x40
[ 1957.670146]  ? do_raw_spin_lock+0x121/0x260
[ 1957.671093]  ? rwlock_bug.part.0+0x90/0x90
[ 1957.672025]  bprm_execve+0x5b2/0x1b00
[ 1957.672863]  ? check_memory_region+0x18c/0x1e0
[ 1957.673862]  ? open_exec+0x70/0x70
[ 1957.674654]  ? memcpy+0x39/0x60
[ 1957.675380]  ? copy_string_kernel+0x3b6/0x450
[ 1957.676363]  do_execveat_common+0x765/0x8c0
[ 1957.677285]  ? bprm_execve+0x1b00/0x1b00
[ 1957.678167]  __x64_sys_execveat+0xed/0x130
[ 1957.679076]  do_syscall_64+0x33/0x40
[ 1957.679869]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1957.680964] RIP: 0033:0x7f843b55cb19
[ 1957.681761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1957.685702] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1957.687375] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1957.688931] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1957.689044] FAULT_INJECTION: forcing a failure.
[ 1957.689044] name failslab, interval 1, probability 0, space 0, times 0
[ 1957.690467] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1957.690478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1957.690488] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
[ 1957.701867] CPU: 0 PID: 18999 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1957.703297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1957.705594] Call Trace:
[ 1957.706134]  dump_stack+0x107/0x163
[ 1957.706886]  should_fail.cold+0x5/0xa
[ 1957.707662]  ? prepare_creds+0x25/0x5e0
[ 1957.708465]  should_failslab+0x5/0x10
[ 1957.709225]  kmem_cache_alloc+0x5b/0x350
[ 1957.710042]  ? __ia32_sys_unshare+0x40/0x40
[ 1957.710928]  prepare_creds+0x25/0x5e0
[ 1957.711691]  prepare_exec_creds+0xd/0x250
[ 1957.712520]  bprm_execve+0x1e3/0x1b00
[ 1957.713283]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 1957.714348]  ? trace_hardirqs_on+0x5b/0x180
[ 1957.715218]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1957.716303]  ? open_exec+0x70/0x70
[ 1957.717033]  do_execveat_common+0x765/0x8c0
[ 1957.717921]  ? bprm_execve+0x1b00/0x1b00
[ 1957.718784]  __x64_sys_execveat+0xed/0x130
[ 1957.719662]  do_syscall_64+0x33/0x40
[ 1957.720425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1957.721484] RIP: 0033:0x7f48cbaccb19
[ 1957.722262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1957.726033] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1957.727606] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1957.729044] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1957.730480] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1957.731904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1957.733317] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:11 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 34)

17:56:11 executing program 4:
r0 = syz_io_uring_setup(0x4366, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:11 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 40)

17:56:11 executing program 3:
r0 = syz_io_uring_setup(0x4362, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000440), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r2 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, r3)
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
r6 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r5, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index, 0x0, {}, 0x101, 0x0, 0x0, {0x0, r3}}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r6, 0x4f22, 0x71f9, 0x2, &(0x7f0000000240)={[0x29152c2f]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)=""/233, 0xe9}, {&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/197, 0xc5}], 0x3)
readv(r8, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
fsconfig$FSCONFIG_SET_PATH(r8, 0x3, &(0x7f0000000280)='%\x00', &(0x7f00000002c0)='./file0\x00', 0xffffffffffffff9c)

17:56:11 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_io_uring_setup(0x3d87, &(0x7f0000000080)={0x0, 0xfffffffd, 0x20, 0x0, 0xfffffffd, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x400)

17:56:11 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0xa480}, 0x0, {0x0, r5}}, 0x1)

17:56:11 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x96, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000000200), &(0x7f0000000180)=<r2=>0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
write(r3, &(0x7f00000019c0)="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", 0x1000)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_IOC_CATATONIC(r5, 0x9362, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
fcntl$setstatus(r1, 0x4, 0x0)
readv(r6, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
preadv(r0, &(0x7f00000017c0)=[{&(0x7f00000002c0)=""/133, 0x85}, {&(0x7f0000000380)=""/241, 0xf1}, {&(0x7f0000000080)=""/4, 0x4}, {&(0x7f00000014c0)=""/205, 0xcd}, {&(0x7f0000001640)=""/241, 0xf1}, {&(0x7f0000001740)=""/123, 0x7b}], 0x6, 0xaa, 0x81)
fcntl$setpipe(r6, 0x407, 0x5)
recvmsg$unix(r5, &(0x7f0000000140)={&(0x7f0000001840)=@abs, 0x6e, &(0x7f00000000c0), 0x0, &(0x7f00000018c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe8}, 0x0)

17:56:11 executing program 6:
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002580), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEV(r1, &(0x7f0000002a40)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f00000029c0)={0x14, r0, 0x1}, 0x14}}, 0x0)
r2 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x24, r4, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_PAGE={0x5}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x38, r4, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0xe2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x48042)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r7, r3, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1970.326518] FAULT_INJECTION: forcing a failure.
[ 1970.326518] name failslab, interval 1, probability 0, space 0, times 0
[ 1970.328426] CPU: 1 PID: 19114 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1970.329227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1970.330510] Call Trace:
[ 1970.330835]  dump_stack+0x107/0x163
[ 1970.331256]  should_fail.cold+0x5/0xa
[ 1970.331690]  ? create_object.isra.0+0x3a/0xa20
[ 1970.332204]  ? create_object.isra.0+0x3a/0xa20
[ 1970.332739]  should_failslab+0x5/0x10
[ 1970.333171]  kmem_cache_alloc+0x5b/0x350
[ 1970.333626]  ? percpu_ref_put_many.constprop.0+0x4e/0x100
[ 1970.334235]  create_object.isra.0+0x3a/0xa20
[ 1970.334754]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1970.335383]  kmem_cache_alloc+0x159/0x350
[ 1970.335871]  security_file_alloc+0x34/0x170
[ 1970.336349]  __alloc_file+0xb6/0x310
[ 1970.336795]  alloc_empty_file+0x6d/0x170
[ 1970.337282]  path_openat+0xde/0x26c0
[ 1970.337721]  ? mark_lock+0xf5/0x2df0
[ 1970.338166]  ? lock_chain_count+0x20/0x20
[ 1970.338679]  ? stack_trace_save+0x8c/0xc0
[ 1970.339172]  ? lock_chain_count+0x20/0x20
[ 1970.339634]  ? path_lookupat+0x850/0x850
[ 1970.340119]  ? kasan_save_stack+0x32/0x40
[ 1970.340580]  ? kasan_save_stack+0x1b/0x40
[ 1970.341068]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1970.341670]  ? security_prepare_creds+0x10a/0x180
[ 1970.342214]  ? prepare_creds+0x458/0x5e0
[ 1970.342696]  ? prepare_exec_creds+0xd/0x250
[ 1970.343182]  ? bprm_execve+0x1e3/0x1b00
[ 1970.343656]  do_filp_open+0x17e/0x3c0
[ 1970.344074]  ? may_open_dev+0xf0/0xf0
[ 1970.344537]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1970.345179]  ? trace_hardirqs_on+0x5b/0x180
[ 1970.345663]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1970.346290]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1970.346897]  ? find_held_lock+0x2c/0x110
[ 1970.347388]  do_open_execat+0x116/0x690
[ 1970.347864]  ? __ia32_sys_uselib+0x40/0x40
[ 1970.348367]  ? do_raw_spin_lock+0x121/0x260
[ 1970.348852]  ? rwlock_bug.part.0+0x90/0x90
[ 1970.349359]  bprm_execve+0x5b2/0x1b00
[ 1970.349817]  ? open_exec+0x70/0x70
[ 1970.350242]  ? memcpy+0x39/0x60
[ 1970.350647]  ? copy_string_kernel+0x3b6/0x450
[ 1970.351185]  do_execveat_common+0x765/0x8c0
[ 1970.351696]  ? bprm_execve+0x1b00/0x1b00
[ 1970.352161]  __x64_sys_execveat+0xed/0x130
[ 1970.352690]  do_syscall_64+0x33/0x40
[ 1970.353129]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1970.353736] RIP: 0033:0x7f843b55cb19
[ 1970.354184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1970.356395] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1970.357304] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1970.358161] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1970.359021] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1970.359883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1970.360727] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:56:12 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r2, 0x3df4, 0x68e1, 0x1, &(0x7f0000000180)={[0x7f]}, 0x8)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = getgid()
chown(&(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, r4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_wait_time\x00', 0x0, 0x0)
syz_io_uring_setup(0x6b9f, &(0x7f0000000180)={0x0, 0x49f1, 0x1, 0x1, 0x3a4, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 41)

17:56:12 executing program 7:
r0 = syz_io_uring_setup(0x8c0, &(0x7f0000000180)={0x0, 0x0, 0x4, 0x0, 0x259}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_io_uring_setup(0x3a51, &(0x7f0000000080)={0x0, 0x2dfd, 0x20, 0x1, 0x28d, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(r3, r5, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r2, 0xffffffffffffff9c, 0x0, 0x5}, 0x1f)
r6 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r6)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000140)={0x0, 0x5, 0x7, 0x100000000})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000300)={[0x7]}, 0x0, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1970.492384] FAULT_INJECTION: forcing a failure.
[ 1970.492384] name failslab, interval 1, probability 0, space 0, times 0
[ 1970.494339] CPU: 1 PID: 19135 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1970.495185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1970.496470] Call Trace:
[ 1970.496778]  dump_stack+0x107/0x163
[ 1970.497190]  should_fail.cold+0x5/0xa
[ 1970.497629]  ? create_object.isra.0+0x3a/0xa20
[ 1970.498150]  should_failslab+0x5/0x10
[ 1970.498580]  kmem_cache_alloc+0x5b/0x350
[ 1970.499027]  ? prepare_creds+0x25/0x5e0
[ 1970.499478]  create_object.isra.0+0x3a/0xa20
[ 1970.499971]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1970.500545]  kmem_cache_alloc+0x159/0x350
[ 1970.501013]  prepare_creds+0x25/0x5e0
[ 1970.501454]  prepare_exec_creds+0xd/0x250
[ 1970.501921]  bprm_execve+0x1e3/0x1b00
[ 1970.502350]  ? acct_arg_size+0xe0/0xe0
[ 1970.502794]  ? downgrade_write+0x3a0/0x3a0
[ 1970.503269]  ? open_exec+0x70/0x70
[ 1970.503667]  ? memcpy+0x39/0x60
[ 1970.504040]  ? copy_string_kernel+0x3b6/0x450
[ 1970.504538]  do_execveat_common+0x765/0x8c0
[ 1970.505023]  ? bprm_execve+0x1b00/0x1b00
[ 1970.505485]  __x64_sys_execveat+0xed/0x130
[ 1970.505966]  do_syscall_64+0x33/0x40
[ 1970.506385]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1970.506958] RIP: 0033:0x7f48cbaccb19
[ 1970.507384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1970.509421] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1970.510265] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1970.511103] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1970.511908] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1970.512733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1970.513547] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:12 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {r5}}, './file1\x00'})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_setup(0x2290, &(0x7f0000000180)={0x0, 0xa43, 0x8, 0x2, 0x18c, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r7=>0x0)
syz_io_uring_submit(r5, r7, &(0x7f0000000280)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x1}, 0x800)

17:56:12 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x406, r0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r3, 0x7, &(0x7f0000000000)=r4, 0x1)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r6 = socket$netlink(0x10, 0x3, 0xb)
write$binfmt_elf32(r6, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x7f, 0x4, 0x7, 0x3ff, 0x3, 0x3, 0x3, 0x237, 0x38, 0xb4, 0x5, 0x397, 0x20, 0x1, 0x8e, 0x5, 0xb8}, [{0x1, 0x7, 0x7fffffff, 0x80000001, 0x7, 0xe0d8, 0x7ed, 0x8f5}], "77d7cfc303e495655789307c4f253c6107e2beda23d27a40bc240ef55e35cb01281070a4a08c6239cee863f8ab988df5f0326d44c1fe545d46ea2e1f31d418811dc5", ['\x00']}, 0x19a)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1970.620207] FAULT_INJECTION: forcing a failure.
[ 1970.620207] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1970.622123] CPU: 1 PID: 19190 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1970.622929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1970.624193] Call Trace:
[ 1970.624498]  dump_stack+0x107/0x163
[ 1970.624904]  should_fail.cold+0x5/0xa
[ 1970.625338]  __alloc_pages_nodemask+0x182/0x680
[ 1970.625849]  ? mark_held_locks+0x9e/0xe0
[ 1970.626297]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[ 1970.626981]  ? kmem_cache_free+0xa7/0x310
[ 1970.627446]  alloc_pages_current+0x187/0x280
[ 1970.627935]  __get_free_pages+0xc/0xa0
[ 1970.628370]  ? kmem_cache_free+0x253/0x310
[ 1970.628843]  tlb_remove_table+0x3ca/0xcb0
[ 1970.629308]  ___pte_free_tlb+0x86/0xb0
[ 1970.629761]  free_pgd_range+0x752/0x13a0
[ 1970.630246]  free_pgtables+0x230/0x2f0
[ 1970.630721]  exit_mmap+0x28e/0x4e0
[ 1970.631129]  ? do_munmap+0x40/0x40
[ 1970.631559]  mmput+0xca/0x340
[ 1970.631920]  free_bprm+0x65/0x2e0
[ 1970.632316]  do_execveat_common+0x2d8/0x8c0
[ 1970.632811]  ? bprm_execve+0x1b00/0x1b00
[ 1970.633289]  __x64_sys_execveat+0xed/0x130
[ 1970.633785]  do_syscall_64+0x33/0x40
[ 1970.634214]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1970.634808] RIP: 0033:0x7f843b55cb19
[ 1970.635241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1970.637389] RSP: 002b:00007f8438ad2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1970.638269] RAX: ffffffffffffffda RBX: 00007f843b66ff60 RCX: 00007f843b55cb19
[ 1970.639118] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1970.639948] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1970.640778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1970.641605] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:56:12 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 35)

17:56:12 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
r5 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r4, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_setup(0xe26, &(0x7f0000000280)={0x0, 0xa4e, 0x0, 0x0, 0x111, 0x0, r3}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300)=<r7=>0x0, &(0x7f0000000340)=<r8=>0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000980)=@IORING_OP_READV=@pass_iovec={0x1, 0x2, 0x4000, @fd=r5, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000380)=""/234, 0xea}, {&(0x7f0000000480)=""/92, 0x5c}, {&(0x7f0000000500)=""/125, 0x7d}, {&(0x7f0000000580)=""/204, 0xcc}, {&(0x7f0000000680)=""/169, 0xa9}, {&(0x7f0000000740)=""/189, 0xbd}, {&(0x7f0000000800)=""/60, 0x3c}, {&(0x7f0000000840)}, {&(0x7f0000000880)=""/32, 0x20}], 0x9, 0xe, 0x1}, 0xffffffff)
io_uring_enter(r1, 0x2923, 0x6ce1, 0x5, &(0x7f0000000240)={[0x1]}, 0x8)
syz_io_uring_submit(r2, r6, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x8, 0x0, {}, 0x0, 0xf}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x4010, r5, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000840)=@IORING_OP_POLL_REMOVE={0x7, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x8)
io_uring_enter(r1, 0x6015, 0xc287, 0x0, &(0x7f00000001c0)={[0x8000]}, 0x8)

17:56:12 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r7, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r10 = accept$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000000)=0x6e)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r9, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r10, 0x80, &(0x7f0000000240)=@llc={0x1a, 0x103, 0x9, 0x1c, 0x9, 0x6}, 0x0, 0x0, 0x1, {0x0, r11}}, 0x1)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000a40)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000240)="6a4dee164a6adf15f47918410e7a0466cd8886fb066b761d7f01af974e5b98aa3cf24e25112b6e6bfe8448e5c31bd0a3a45c213542c52eb1ddd2ce086e5d460b65bcd5b51907bce238b8fd8aeeae141cfdb304bac9cb209af83c8040ddadc7c2e427e07dd57ff1587f5c61077027ecb65cf13875c13d609e140e1c045d940e7a630d004bb8311c6d755c24dd86a32ea9be17", 0x92}, {&(0x7f0000000180)="6e9a6bd96ede11401e6df2edaea992b55ab3c147f473055f7774470c3bf187956b0431285cb98a97defdfa8f58edd33b0fe92d0b6cc3eed8266b6ecf1b065b0ffcb2f1bfde497fa415e8b514fda060373e55922fa3128fec243c88087693ee48b5aea318c2c0cd0d045f793914c81f99fd3b5e932885de91a8a31eccceb083db", 0x80}, {&(0x7f0000000300)="0679951c2ffc58c8dc995261d3df50981bdd0128765a8d4ec05b731e08b19d70d1dc89774f92a709bfa1abb92ca62a2ee4f734a26e5128a42940943021d965c8766520ca9400b0c72eeade2d273ec0c089b5348c1304a8b2df5d6fe3a176d1e88918a101204a78caf2378185469c5a52f49930582d347d3c8c82fd2af7ab2e5572b747e8fbb1fc6f6fea43a92df06c86ab83aee727a6a90956877906d729ff56d5ee0ed85cd8f910", 0xa8}, {&(0x7f00000003c0)="96faa456885daa233a198612c9f7b4855c4bd41433d8a63fd3b87bcdeaaf660eba855cfe4e454d2bfb8102289fda64dc993d1d6cba73ffe26c0fc6a4b8ecb8c519c3cf2b90a7a7a3a7a88fd66261aee2d5b5d66d134e9607d8be142d8dafab219f544c70f41bdde9a74f66c58961fea1da0883abb923c825115efe06c8caea", 0x7f}, {&(0x7f0000000440)="89cc3834b96630200827888c119a4bf328443c5751d5deedffe492f11857df9b00ef59428ea62f4599677d4fb5e6e5999d5b40c1394c82e8acafe4a52e83810e10e2d06dd1fe641df1ee1c27136dc44b744e3724c3a19eb674", 0x59}], 0x5, &(0x7f0000000540)=[{0xd8, 0x5, 0xdb6c, "8b94ef688e3136054f85c9827fb236f57fff498f5602d45140d45b426a967aae81cf270076d7f8ff3d8d67418a8ffc83c576e6248c01c7f58e291fc8d8bc245f6b19eef5154e83f791f4f0dfb4aee60541e4830eb1f4dd405a85c70154ed61323a86a58a65ba4e811ee49e0379801184dffe2983fda8b606309b073e30d2655c8ebd381bd986015ed9195d15da5c355711369b860e3f5ed83ba7072ce5fbf48773348081609d543033482e87d865dd2f6787901eb061a29b32463fa9f6d3d8abd62c9d"}, {0x98, 0xd, 0x3, "b3acf6484df7c5fbadbed3cd9a6a76a3322f586510efde1868238d9259f0977d04cb2e3bd63647d7fde401a2cb4a350e141af8b9d7903ca147eba01aa6c656b20b98533816ca7813828e845a98dd2ead3703c7d2dcb64d648df8d423f7e9bcbdb441d7e47e77725594764570237f95a5745b6a0b8711c3f74b9dc889cebbf347b4"}, {0x88, 0xff, 0x2, "743afedb505ffe109c4bc0986f81193fabccf2f8d1dc1fbfe53c5acc133363b7708c8c9a56847efe60de90e5d8f53e629b9bf7851789da3fa267d8db5472c705789c0bd297d48d9e9c2f020ae2e30f7f2ae50ab541d56e6cb6ee7bb51dcd5c8241f07fb633c4d3bd80fa3cf126c341b87c1f3d"}, {0x70, 0x111, 0xfc, "330aa614ffe5b56c122768561e4e87bf581ec0c2aeb2fa8404375210d37109807a6d2d59e0f0c092725e806f9ec426b2cae63b69a575d04d677aa1833f2147766f2128b7a8261fdc96b85608b8943b95fb48a50c2c66d1fba5"}, {0x88, 0x101, 0xffffffff, "09fa69a01ef69f777a512982a2170e973e72f9eb983cbeabaa34977ddfb448964145e7d9ac926b73c10f467a197d3934348261d8a3855b227f5815fa59469aab547212a8de6a7acc85fb267936f48f8cd63ac56fe08187ebe68c4850085ffd630d278435bfd922d58c709c31919d0e840e2f"}, {0x98, 0x116, 0x1, "63b3ddf8bee7062a304b3d3358cbadc5a092957d534a009096550b5b47f17f24326eb2ad41e4e0aaf3855be8d87febdcef8b66ef4a8718d8b46bbee32e84d3ab1cadb36d03d6c4983d488b1ed1e1dbc8c984ab25a01c9393af2a57187eae6160c2fa54d5395bd31625e4af1b0365520e6295b31baf5e952a60b55567685e53eb8189dc"}, {0x78, 0x115, 0x1, "43517bace59c1a811e156159f586dc19c13dc99c49dd6549490a4d23af0637be2cc21bd7779177437949aeab8948b8d74e071b9d1066f5f1e8c439bd22fcce7813ce5a6a7dc53051c9cd7db3667c3dc4d198ee0304b083d38add832e429c657f901abbc442"}, {0x70, 0x1e, 0x1, "8f0655ea4f81cc2fa7802b32167ef4ef3f774e4365058a0edc230b4e0a10613c891b94dc254032fe2ee6afb9b9849dce7a854516717f47238865cbbb8f6b06d5961c3120f5858ea2e77401fce055ed0c2d6aa0c8aa811838857d45952394"}, {0x80, 0x10c, 0x4, "eb3a584407946a680f53bbefc8e53d8e3bce6a8b24aa2c235861ceaae39a61b3c529d872dfce58aee3bcdde90d6158e1c8e2878cf51b62e74f428f516c7cdcfb79c5fe6038acebc501868c6826a10579b7becbfac1be637d84bddd1574ee1335d93de8353d3706f2bcdd18bc0e464738"}], 0x4f0}}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x60c7}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r6, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r7, 0x0, 0x0, 0x195, 0x5, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_setup(0xbc4, &(0x7f0000000180)={0x0, 0x2a6c, 0x4, 0x1, 0x260}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)=<r4=>0x0)
r5 = socket$inet6(0xa, 0x96d2f2265585f9a3, 0x7fffffff)
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd=r0, 0x0, 0x0, 0x1, 0x1, 0x1, {0x0, 0x0, r5}}, 0x31)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:12 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x40010, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x1, 0x2004, @fd=r2, 0x47, &(0x7f0000000240)=""/201, 0xc9, 0x4}, 0xffffff80)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x52b9, &(0x7f0000000680)={0x0, 0x34b2, 0x20, 0x2, 0x368, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000700), &(0x7f0000000740)=<r6=>0x0)
syz_io_uring_submit(r4, r6, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0xf17, 0x3, &(0x7f0000000180)="369312a2e9e68397062096f4adab1efb7b0c1be6", 0x1, 0x0, 0x1, {0x0, r5}}, 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)=""/195, 0xc3}, {&(0x7f0000000540)=""/61, 0x3d}, {&(0x7f0000000580)=""/50, 0x32}, {&(0x7f00000005c0)=""/82, 0x52}], 0x4)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x80010, r0, 0x0)
syz_io_uring_setup(0x6528, &(0x7f0000000340)={0x0, 0x5f1a, 0x0, 0x3, 0x306}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000001c0), &(0x7f00000003c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r5}}, 0xffffffff)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1971.045572] FAULT_INJECTION: forcing a failure.
[ 1971.045572] name failslab, interval 1, probability 0, space 0, times 0
[ 1971.048653] CPU: 0 PID: 19246 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1971.050298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1971.052996] Call Trace:
[ 1971.053632]  dump_stack+0x107/0x163
[ 1971.054514]  should_fail.cold+0x5/0xa
[ 1971.055427]  ? security_prepare_creds+0x10a/0x180
[ 1971.056574]  should_failslab+0x5/0x10
[ 1971.057479]  __kmalloc+0x72/0x3e0
[ 1971.058314]  security_prepare_creds+0x10a/0x180
[ 1971.059427]  prepare_creds+0x458/0x5e0
[ 1971.060354]  prepare_exec_creds+0xd/0x250
[ 1971.061338]  bprm_execve+0x1e3/0x1b00
[ 1971.062244]  ? acct_arg_size+0xe0/0xe0
[ 1971.063180]  ? copy_string_kernel+0x110/0x450
[ 1971.064242]  ? open_exec+0x70/0x70
[ 1971.065083]  ? memcpy+0x39/0x60
[ 1971.065869]  ? copy_string_kernel+0x3b6/0x450
[ 1971.066947]  do_execveat_common+0x765/0x8c0
[ 1971.067969]  ? bprm_execve+0x1b00/0x1b00
[ 1971.068947]  __x64_sys_execveat+0xed/0x130
[ 1971.069956]  do_syscall_64+0x33/0x40
[ 1971.070841]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1971.072054] RIP: 0033:0x7f48cbaccb19
[ 1971.072939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1971.077327] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1971.079138] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1971.080827] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1971.082535] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1971.084226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1971.085916] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:31 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 42)

17:56:31 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x9}, 0x2080, 0x0, 0x1002, 0x0, 0x0, 0x3, 0x8}, 0x0, 0x11, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)=ANY=[@ANYBLOB="010020000100000018000000", @ANYRES32=<r7=>r0, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000001c0)=[r2, r3, r0, r5, r7, r0, r8], 0x7)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000340)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x9, 0x3, {0x0, r8}, 0x0, 0x8, 0x1, {0x0, 0x0, r3}}, 0x0)
syz_io_uring_submit(r9, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:31 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r0, 0x20, 0x0, 0x81}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:31 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 36)

17:56:31 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:31 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000180)={'syztnl2\x00', <r2=>0x0, 0x0, 0xff, 0xb4, 0x40, 0x66, @ipv4={'\x00', '\xff\xff', @remote}, @dev={0xfe, 0x80, '\x00', 0x26}, 0x40, 0x80, 0xbf0, 0x10001}})
ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000240)=r2)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:31 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0x9}}, './file0\x00'})
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000180)=r3, 0x1)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:31 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r3, 0x3eda, 0xd74, 0x0, &(0x7f0000000000)={[0x5]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 1989.952647] FAULT_INJECTION: forcing a failure.
[ 1989.952647] name failslab, interval 1, probability 0, space 0, times 0
[ 1989.955301] CPU: 1 PID: 19348 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 1989.956421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1989.958255] Call Trace:
[ 1989.958650]  dump_stack+0x107/0x163
[ 1989.959250]  should_fail.cold+0x5/0xa
[ 1989.959867]  ? create_object.isra.0+0x3a/0xa20
[ 1989.960606]  should_failslab+0x5/0x10
[ 1989.961223]  kmem_cache_alloc+0x5b/0x350
[ 1989.961879]  create_object.isra.0+0x3a/0xa20
[ 1989.962531]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1989.963201]  __kmalloc+0x16e/0x3e0
[ 1989.963675]  ? prepare_creds+0x6f/0x5e0
[ 1989.964209]  security_prepare_creds+0x10a/0x180
[ 1989.964850]  prepare_creds+0x458/0x5e0
[ 1989.965383]  prepare_exec_creds+0xd/0x250
[ 1989.965953]  bprm_execve+0x1e3/0x1b00
[ 1989.966479]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1989.967240]  ? trace_hardirqs_on+0x5b/0x180
[ 1989.967853]  ? open_exec+0x70/0x70
[ 1989.968357]  ? do_execveat_common+0x754/0x8c0
[ 1989.968980]  do_execveat_common+0x765/0x8c0
[ 1989.969582]  ? bprm_execve+0x1b00/0x1b00
[ 1989.970130]  __x64_sys_execveat+0xed/0x130
[ 1989.970748]  do_syscall_64+0x33/0x40
[ 1989.971259]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1989.971967] RIP: 0033:0x7f48cbaccb19
[ 1989.972484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1989.975045] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1989.976090] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 1989.977068] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 1989.978020] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 1989.979021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1989.979994] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:31 executing program 0:
r0 = syz_io_uring_setup(0x721a, &(0x7f0000000080)={0x0, 0x2d2f, 0x20, 0x0, 0x272}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000380), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = syz_io_uring_setup(0x1090, &(0x7f0000000180)={0x0, 0xe55e, 0x8, 0xfffffffe, 0xa6}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_submit(r3, r1, &(0x7f0000000300)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffff9c, &(0x7f0000000280)={0x2, 0x0, 0x10}, &(0x7f00000002c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0xc50f)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0x1000226, &(0x7f00000003c0)={0x0, 0x7c93, 0x1, 0x3, 0x3e7, 0x0, r5}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000440)=<r7=>0x0)
r8 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r9)
syz_io_uring_submit(r6, r1, &(0x7f0000000480)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x5, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x5)
openat(r5, &(0x7f0000000340)='./file0\x00', 0xe040, 0x0)
r10 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000000, 0x810, r2, 0x8000000)
syz_io_uring_submit(r10, r7, &(0x7f00000014c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index=0x2, 0x2, 0x0, 0x9, 0x3}, 0x3)

[ 1990.164303] FAULT_INJECTION: forcing a failure.
[ 1990.164303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1990.167101] CPU: 0 PID: 19349 Comm: syz-executor.5 Not tainted 5.10.123 #1
[ 1990.168635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1990.171158] Call Trace:
[ 1990.171754]  dump_stack+0x107/0x163
[ 1990.172563]  should_fail.cold+0x5/0xa
[ 1990.173418]  _copy_to_user+0x2e/0x180
[ 1990.174272]  simple_read_from_buffer+0xcc/0x160
[ 1990.175321]  proc_fail_nth_read+0x194/0x220
[ 1990.176283]  ? proc_sessionid_read+0x220/0x220
[ 1990.177311]  ? proc_sessionid_read+0x220/0x220
[ 1990.178323]  vfs_read+0x228/0x580
[ 1990.179133]  ksys_read+0x12d/0x250
[ 1990.179921]  ? __ia32_sys_pwrite64+0x230/0x230
[ 1990.180932]  ? __x64_sys_read+0xd/0xb0
[ 1990.181801]  ? __sanitizer_cov_trace_pc+0x14/0x60
[ 1990.182895]  do_syscall_64+0x33/0x40
[ 1990.183735]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1990.184881] RIP: 0033:0x7f843b50f69c
[ 1990.185708] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1990.189806] RSP: 002b:00007f8438ad2170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1990.191513] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f843b50f69c
[ 1990.193096] RDX: 000000000000000f RSI: 00007f8438ad21e0 RDI: 0000000000000006
[ 1990.194689] RBP: 00007f8438ad21d0 R08: 0000000000000000 R09: 0000000000000000
[ 1990.196276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1990.197855] R13: 00007ffdc8e4b2ef R14: 00007f8438ad2300 R15: 0000000000022000
17:56:44 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:44 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0xa}, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = signalfd4(r2, &(0x7f0000000000)={[0x1]}, 0x8, 0x800)
r9 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$LOOP_CTL_GET_FREE(r9, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r9, 0x4c81, r10)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x82, &(0x7f0000000180)=[r0, r5, r2, r7, r8, r9], 0x6}, 0x9)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r11, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:44 executing program 6:
ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, &(0x7f0000000000)={0x2d, 0x39, 0x0, 0x3, 0x9, 0x9, 0x1, 0x12c, 0xffffffffffffffff})
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r3 = signalfd(r0, &(0x7f0000000180)={[0x200]}, 0x8)
io_cancel(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x1, r2, &(0x7f0000000240)="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", 0x1000, 0xfffffffffffff801, 0x0, 0xf688c5bd49b08b92, r3}, &(0x7f0000001240))
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:44 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 37)

17:56:44 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_setup(0x3a7, &(0x7f0000000240)={0x0, 0x1d34, 0x1, 0x1, 0x3db, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)=<r5=>0x0)
syz_io_uring_submit(r3, r5, &(0x7f00000003c0)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000340)=@sco={0x1f, @none}}, 0x5)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r7, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'})
ftruncate(r7, 0x4)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r6, r9, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x800c}}, 0x5)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:44 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x7bb1, &(0x7f0000000180)={0x0, 0x9475, 0x8, 0x3, 0x275, 0x0, r2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280))
syz_io_uring_submit(r3, r1, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x5, 0x6, 0x0, 0x60, 0x4, 0x1}, 0x5)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000001, 0x110, r2, 0x8000000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x3, 0x2007, @fd=r0, 0x1, 0x6f9, 0x7fffffff, 0x5f082e309f491f9f, 0x1, {0x2, r6}}, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:44 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
io_uring_enter(r3, 0x2ba0, 0xa0ae, 0x1, &(0x7f00000001c0)={[0x7]}, 0x8)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x118, &(0x7f0000000000), 0x0, 0x4)

17:56:44 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4046e2, 0x82)
ftruncate(r3, 0x4)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0x6bcc, &(0x7f0000000200)={0x0, 0xcd72, 0x2, 0x3, 0x20, 0x0, r4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x4, 0x11, r0, 0x10000000)
syz_io_uring_submit(r5, r7, &(0x7f0000000180)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xb}, 0x9)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r8, r1, &(0x7f0000000000)=@IORING_OP_SPLICE, 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000100)={0x0, r2, 0x2, 0x7, 0x1f, 0x6})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 2003.367538] FAULT_INJECTION: forcing a failure.
[ 2003.367538] name failslab, interval 1, probability 0, space 0, times 0
[ 2003.369175] CPU: 0 PID: 19400 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 2003.369918] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2003.371199] Call Trace:
[ 2003.371488]  dump_stack+0x107/0x163
[ 2003.371877]  should_fail.cold+0x5/0xa
[ 2003.372281]  ? __alloc_file+0x21/0x310
[ 2003.372689]  should_failslab+0x5/0x10
[ 2003.373094]  kmem_cache_alloc+0x5b/0x350
[ 2003.373535]  ? kernel_text_address+0xea/0x120
[ 2003.374008]  __alloc_file+0x21/0x310
[ 2003.374442]  alloc_empty_file+0x6d/0x170
[ 2003.374918]  path_openat+0xde/0x26c0
[ 2003.375312]  ? mark_lock+0xf5/0x2df0
[ 2003.375703]  ? lock_chain_count+0x20/0x20
[ 2003.376142]  ? stack_trace_save+0x8c/0xc0
[ 2003.376583]  ? lock_chain_count+0x20/0x20
[ 2003.377022]  ? path_lookupat+0x850/0x850
[ 2003.377483]  ? kasan_save_stack+0x32/0x40
[ 2003.377946]  ? kasan_save_stack+0x1b/0x40
[ 2003.378415]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 2003.378996]  ? security_prepare_creds+0x10a/0x180
[ 2003.379534]  ? prepare_creds+0x458/0x5e0
[ 2003.379994]  ? prepare_exec_creds+0xd/0x250
[ 2003.380479]  ? bprm_execve+0x1e3/0x1b00
[ 2003.380927]  do_filp_open+0x17e/0x3c0
[ 2003.381363]  ? may_open_dev+0xf0/0xf0
[ 2003.381800]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2003.382409]  ? trace_hardirqs_on+0x5b/0x180
[ 2003.382907]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2003.383502]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2003.384118]  ? find_held_lock+0x2c/0x110
[ 2003.384582]  do_open_execat+0x116/0x690
[ 2003.385022]  ? __ia32_sys_uselib+0x40/0x40
[ 2003.385507]  ? do_raw_spin_lock+0x121/0x260
[ 2003.385995]  ? rwlock_bug.part.0+0x90/0x90
[ 2003.386481]  bprm_execve+0x5b2/0x1b00
[ 2003.386915]  ? check_memory_region+0xc7/0x1e0
[ 2003.387421]  ? open_exec+0x70/0x70
[ 2003.387820]  ? memcpy+0x39/0x60
[ 2003.388191]  ? copy_string_kernel+0x3b6/0x450
[ 2003.388701]  do_execveat_common+0x765/0x8c0
[ 2003.389191]  ? bprm_execve+0x1b00/0x1b00
[ 2003.389656]  __x64_sys_execveat+0xed/0x130
[ 2003.390137]  do_syscall_64+0x33/0x40
[ 2003.390554]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2003.391146] RIP: 0033:0x7f48cbaccb19
[ 2003.391564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2003.393652] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2003.394517] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 2003.395349] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 2003.396147] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 2003.396960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2003.397770] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:45 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x2)

17:56:45 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 38)

17:56:45 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
dup3(r3, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:45 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
fallocate(0xffffffffffffffff, 0x0, 0x9, 0xfffffffffffffffc)
fsetxattr$trusted_overlay_origin(r3, &(0x7f0000000000), &(0x7f0000000180), 0x2, 0x1)

17:56:45 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x3)

17:56:45 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x6000, @fd_index=0x2, 0xfff, 0x3, 0x0, 0x14, 0x1, {0x1}}, 0x3)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_submit(r5, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r6, 0x0, {}, 0x0, 0xa}, 0x4)
io_uring_enter(r0, 0x7d08, 0xbf80, 0x1, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:45 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
dup(r3)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000240)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7, r5})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={r5, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
setxattr$incfs_id(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)={'0000000000000000000000000000000', 0x30}, 0x20, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@private2, 0x4e24, 0xb23e, 0x4e20, 0x0, 0xa, 0x80, 0x20, 0x5c, r5, r6}, {0x1, 0x80000000, 0x1fffe0000000, 0x6, 0x20, 0x200, 0x2, 0x3}, {0x3f, 0x100, 0xfffffffffffffff7, 0x7fff}, 0xfffffff8, 0x6e6bbe, 0x0, 0x0, 0x2, 0x1}, {{@in6=@private2, 0x4d2, 0x32}, 0x2, @in=@loopback, 0x3507, 0x1, 0x3, 0xa4, 0x6e63, 0x7fff, 0x792}}, 0xe8)
stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380))
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:45 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r2, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
socket$inet(0x2, 0x5, 0x231)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2003.628079] FAULT_INJECTION: forcing a failure.
[ 2003.628079] name failslab, interval 1, probability 0, space 0, times 0
[ 2003.629519] CPU: 0 PID: 19494 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 2003.630313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2003.631611] Call Trace:
[ 2003.631910]  dump_stack+0x107/0x163
[ 2003.632315]  should_fail.cold+0x5/0xa
[ 2003.632740]  ? create_object.isra.0+0x3a/0xa20
[ 2003.633245]  should_failslab+0x5/0x10
[ 2003.633677]  kmem_cache_alloc+0x5b/0x350
[ 2003.634135]  create_object.isra.0+0x3a/0xa20
[ 2003.634623]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 2003.635205]  kmem_cache_alloc+0x159/0x350
[ 2003.635677]  __alloc_file+0x21/0x310
[ 2003.636091]  alloc_empty_file+0x6d/0x170
[ 2003.636541]  path_openat+0xde/0x26c0
[ 2003.636956]  ? mark_lock+0xf5/0x2df0
[ 2003.637366]  ? stack_trace_save+0x8c/0xc0
[ 2003.637835]  ? stack_trace_consume_entry+0x160/0x160
[ 2003.638423]  ? path_lookupat+0x850/0x850
[ 2003.638918]  ? kasan_save_stack+0x32/0x40
[ 2003.639410]  ? kasan_save_stack+0x1b/0x40
[ 2003.639900]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 2003.640473]  ? security_prepare_creds+0x10a/0x180
[ 2003.641053]  ? prepare_creds+0x458/0x5e0
[ 2003.641534]  ? prepare_exec_creds+0xd/0x250
[ 2003.642046]  ? bprm_execve+0x1e3/0x1b00
[ 2003.642526]  do_filp_open+0x17e/0x3c0
[ 2003.642967]  ? may_open_dev+0xf0/0xf0
[ 2003.643417]  ? mark_held_locks+0x9e/0xe0
[ 2003.643896]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[ 2003.644520]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2003.645162]  ? trace_hardirqs_on+0x5b/0x180
[ 2003.645675]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2003.646322]  ? find_held_lock+0x2c/0x110
[ 2003.646800]  do_open_execat+0x116/0x690
[ 2003.647278]  ? __ia32_sys_uselib+0x40/0x40
[ 2003.647775]  ? do_raw_spin_lock+0x121/0x260
[ 2003.648286]  ? rwlock_bug.part.0+0x90/0x90
[ 2003.648798]  bprm_execve+0x5b2/0x1b00
[ 2003.649246]  ? copy_strings.isra.0+0x24/0x690
[ 2003.649772]  ? open_exec+0x70/0x70
[ 2003.650195]  ? memcpy+0x39/0x60
[ 2003.650584]  ? copy_string_kernel+0x3b6/0x450
[ 2003.651117]  do_execveat_common+0x765/0x8c0
[ 2003.651622]  ? bprm_execve+0x1b00/0x1b00
[ 2003.652114]  __x64_sys_execveat+0xed/0x130
[ 2003.652612]  do_syscall_64+0x33/0x40
[ 2003.653048]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2003.653651] RIP: 0033:0x7f48cbaccb19
[ 2003.654097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2003.656292] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2003.657196] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 2003.658032] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 2003.658837] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 2003.659660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2003.660415] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:56:56 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x4)

17:56:56 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0xecb, &(0x7f0000000240)={0x0, 0x87e2, 0x0, 0x0, 0x378, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r6 = signalfd4(r0, &(0x7f00000001c0)={[0x100]}, 0x8, 0x80000)
io_uring_enter(r6, 0x7008, 0xa0cf, 0x0, &(0x7f0000000380)={[0x3]}, 0x8)
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
fcntl$setpipe(r0, 0x407, 0x1)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x5, 0x2, {0x0, r5}, 0x3f, 0x4, 0x0, {0x0, r8, r0}}, 0x2)
ioctl$FS_IOC_MEASURE_VERITY(r5, 0xc0046686, &(0x7f0000000340)=ANY=[@ANYBLOB="01fa96aaee49000000"])

17:56:56 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_io_uring_setup(0x7b91, &(0x7f0000000180)={0x0, 0xc5f1, 0x0, 0x0, 0x1, 0x0, r0}, &(0x7f0000feb000/0x3000)=nil, &(0x7f0000fec000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_setup(0xfffffffe, 0x0, &(0x7f0000fed000/0x13000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ftruncate(r3, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
r6 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
syz_io_uring_submit(r1, r5, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index=0xa, 0x0, 0x0, 0x2, 0xc, 0x1, {0x0, r7, r8}}, 0x8000)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r10, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0x0, 0x4}, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x1}, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_complete(r4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000180)={0x6, 0x1ff, 0x2, 0x0, 0x0, [{{r0}, 0xffffffffffffffc1}, {{r6}, 0x3}]})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 39)

17:56:56 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x7fffffff)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r8, 0x0, 0x5, &(0x7f0000000040)=0xace, 0x4)
dup3(r7, r8, 0x0)
syz_io_uring_submit(r6, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x800)

17:56:56 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x7fff)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x10941, 0x0)
copy_file_range(r3, &(0x7f00000001c0)=0x7, r6, 0x0, 0x94, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:56 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
execveat(r3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000180)='^\x03,--1\x00', &(0x7f00000001c0)='\x00'], &(0x7f00000002c0)=[&(0x7f0000000280)='#\xaa\x12/$(.@}-%.-)\x00'], 0x1000)

17:56:56 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000000), 0x4, 0x185000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r3, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:57 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200301, 0x11)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r5, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000180)=[r2, r4, r0, r2, r5]}, 0x5)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:57 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wg2\x00'})
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:56:57 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x6800)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x200c02, 0x0)
getsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 2015.530733] FAULT_INJECTION: forcing a failure.
[ 2015.530733] name failslab, interval 1, probability 0, space 0, times 0
[ 2015.533596] CPU: 0 PID: 19559 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 2015.535241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2015.537892] Call Trace:
[ 2015.538515]  dump_stack+0x107/0x163
[ 2015.539373]  should_fail.cold+0x5/0xa
[ 2015.540273]  ? security_file_alloc+0x34/0x170
[ 2015.541315]  should_failslab+0x5/0x10
[ 2015.542195]  kmem_cache_alloc+0x5b/0x350
[ 2015.543149]  security_file_alloc+0x34/0x170
[ 2015.544152]  __alloc_file+0xb6/0x310
[ 2015.545015]  alloc_empty_file+0x6d/0x170
[ 2015.545959]  path_openat+0xde/0x26c0
[ 2015.546828]  ? lock_chain_count+0x20/0x20
[ 2015.547804]  ? stack_trace_save+0x8c/0xc0
[ 2015.548768]  ? stack_trace_consume_entry+0x160/0x160
[ 2015.549948]  ? path_lookupat+0x850/0x850
[ 2015.550892]  ? kasan_save_stack+0x32/0x40
[ 2015.551856]  ? kasan_save_stack+0x1b/0x40
[ 2015.552803]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 2015.553946]  ? security_prepare_creds+0x10a/0x180
[ 2015.555050]  ? prepare_creds+0x458/0x5e0
[ 2015.555990]  ? prepare_exec_creds+0xd/0x250
[ 2015.556968]  ? bprm_execve+0x1e3/0x1b00
[ 2015.557875]  do_filp_open+0x17e/0x3c0
[ 2015.558740]  ? may_open_dev+0xf0/0xf0
[ 2015.559632]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2015.560828]  ? percpu_ref_put_many.constprop.0+0x4e/0x100
[ 2015.562090]  ? find_held_lock+0x2c/0x110
[ 2015.563039]  do_open_execat+0x116/0x690
[ 2015.563946]  ? __ia32_sys_uselib+0x40/0x40
[ 2015.564908]  ? do_raw_spin_lock+0x121/0x260
[ 2015.565891]  ? rwlock_bug.part.0+0x90/0x90
[ 2015.566865]  bprm_execve+0x5b2/0x1b00
[ 2015.567747]  ? trace_hardirqs_on+0x5b/0x180
[ 2015.568731]  ? open_exec+0x70/0x70
[ 2015.569548]  ? do_execveat_common+0x716/0x8c0
[ 2015.570564]  ? do_execveat_common+0x724/0x8c0
[ 2015.571596]  do_execveat_common+0x765/0x8c0
[ 2015.572581]  ? bprm_execve+0x1b00/0x1b00
[ 2015.573521]  __x64_sys_execveat+0xed/0x130
[ 2015.574491]  do_syscall_64+0x33/0x40
[ 2015.575353]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2015.576521] RIP: 0033:0x7f48cbaccb19
[ 2015.577370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2015.581565] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2015.583302] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 2015.584930] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 2015.586555] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 2015.588193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2015.589815] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:57:09 executing program 2:
syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) (fail_nth: 40)

17:57:09 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r2 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:09 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x5)

17:57:09 executing program 0:
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'ip6tnl0\x00', &(0x7f00000001c0)={'syztnl2\x00', <r0=>0x0, 0x29, 0x5, 0x4, 0x0, 0x40, @local, @dev={0xfe, 0x80, '\x00', 0x3b}, 0x7, 0x8, 0xf3, 0x8}})
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000006c0)={&(0x7f0000000280)={0x428, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x330, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xfe, 0x5, "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"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0xf0, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '{!:\\-\'(+]-^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '#/\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffc51}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa625}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '+\'{:\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_VALUE={0xe7, 0x4, "582f93fc59cfdcada20b50884d177fbf4f73b37c1d67aaf88d99931b48d9dbbdb1c7a85ea81e4a75f41875c60569d8f5b7420a7179d89078ccd7f3f7d97e4c804be859f0019e4a41a6e17b8308af18d4c83566d83a9ddb0ca4e602e6b00680206543bcb41d4a43b4bc5fe11112a5f965e683991b7836226c6748d6f5906288505d7034eed6432c3236e500bece28b9df68bb69063825fc01f7f4659ef3413a340dde59e4377b9a1298f58da967e5e2206a9292d18611bc74c1678e95efdc42b640ccde5d4ed994e985d70f9e986778792e88dd8fa2f8ef0494daa40d4b9daba548f2c3"}, @ETHTOOL_A_BITSET_MASK={0x3a, 0x5, "d25f35ba17ff750a420175ca3521b9159d69242790609c9634fab12bd288199baa9794c93c05cfae6c3b032e593b471294c0fb701509"}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_DEBUG_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @ETHTOOL_A_DEBUG_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @ETHTOOL_A_DEBUG_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x428}, 0x1, 0x0, 0x0, 0x800}, 0x1081)
r1 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000140)={0x0, 0x0, 0x8, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r3, 0x4)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r2, r5, &(0x7f0000001980)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, r6, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@isdn={0x22, 0x2, 0xff, 0xf7, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f00000002c0)="548a5a63eac43426664ba9b4cb696711a5bdd9545fc7eae25dc6841684955f0eceb16b3d95c3cb98aef8abe43e96dc8b81aab97d62198cee3ff856149207028b87af818b38c0d1e7d696c60bc79dd92d25e4776106c00179f57ba0f2f9ab36eebe53d049677eba4299e7a29e380ff385f89f6bb583ef68525a7224aa9b084c91b9876b1541b073f65edb821f642341a5d90f8a6bfedb8c8114b75adea8624e09c1af", 0xa2}, {&(0x7f0000000380)="0b4521eb8a5205684939ff3964853835924b27bd2247933d7f037dab6dd9b9d39e8502da793b98a561a3b6490a1f284d0ebfccb277ac75cace994fce16c6007d426d67c3fb6e9b06d767ab35972502b958b94929e52326292ad5305c6a4677c1766c6a2e4ce110c674e749eb39d9b2379250bdbc3fbf6f0b089d8dd76931a8c5bef96f42ac930403a425445002070622dc5ccf0ebe495a237948f62a186f07f4c8a2302c58924eac53de184f", 0xac}], 0x2, &(0x7f0000000440)=[{0x108, 0x109, 0x80, "4ffc9150f38e7a479c8fc235e0708130594873b9063e63dcc403452677229f1409530022c6a9a0ec0cb20e73db0c42529f2459064347f715302950f4a0f1cc3749ca5bc7ed78864defb0a3b5d52480e23657f6c9eb38e86344e1ed4fc00dee6543c7f65d1fdc3e76271e7d212ebd0212993fe0b825d03373001113e11efa66d5ad6c7e872d5ee3de3bbea4d61e30981ded7adf669e2d6c3ed0398b2e01f04693bb705f66cda7628fa7cf2ae0540f2c7e783129b9cfee9d067b48e022fa5d3bc63715e3e89af9070b0cff6b53ec7d59810d15d7917cdc67fd874190d7652ce024300bd5b748617b9612bc41f6ba2b7024b63bc332f1"}, {0x108, 0xff, 0x1, "32a2aa2b624ef9326226f4a62a4b038c63b32950f018dd71d70e21a646cb3f7e4fe1c485097cd2d711d56fe883bc53ae21bfc2d0623c5298dfe563c7a07bde97c90121af92c6142ecdacf73418927a1ff21bc12b6287eef27bc890a29c610b123e3507a15e47a67a824be780265eb392e705af7d7a4d872e99e84cc818297b4ebc990455216899c7924e833177055fa03fe438d77c62bae0f896959c4c396d395acd60388c72e44e57c8223ef4783bf080f740a995f919ce1fb1ee626760588cd7ec51eafc5855f1777fb7e085839d1484d1563d30f75ac5ba82b975352286cc2797d31555d3e9432af8f5dc96afccd815bc550e8e10"}, {0xe0, 0x101, 0xffffffff, "8efcb285a85e40c203120e3c6bdc82e26c7b5c62f49fb6eea2e564b132e89064cde5d215af114db383a126a9ebf184cf51e9cba7e5d8a1e5cf1eca0bfc054ad83a2ec9c52ade83c43777b173f359f6e79179ab759dc2f07abf0bd9d09350706eefad111ff001358f0b8ac6820ce23b6b87a9c0a79caa833f85900df748fec89c3a05d14323ed733b4bf6c0a4246ccdeee1f30b986960aef7bb9e78d269d297ea0940ffc4f5e908d0a8394b7270b94f70b2c32a24c45b489238b672ff0166a13348ee9ec871388ff63e2f1090"}, {0x10, 0x114, 0x5}, {0x60, 0x84, 0xffff, "dd6b8fdb380179268f9365bba4baa1773ab4823f2713648423de87f66093861bbbdb3672915273a61637794d0ed4fdb7b582734564bb0ae334089aa7a3b9f74f64f75cfcaac3ed0d39512f8b6a9e79"}, {0x1010, 0x115, 0xff, "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"}, {0x10, 0x111, 0x6}, {0xf8, 0x102, 0x7fffffff, "1dd0f54307b77752cdcc9ceaf42e8bb3b7845246829923b86d409a1c87094c8f42a2f587951329fdf0e93a6d8c93aa961dc8232010ab5d702fcbe4f8422ef8a46105d498f6237e5deea34844c3fa76ae69e86eeccf82e3da4e0e22098c5fd087775256316162b53db9ebdaf1c53e67a5a4ecb8d03a01dec63b1793651ba4543bc12db611f11ee564d90ce4c8994115cd32d10989ce29e6ee67f7224b3e02ee21e4f1285dc59b89bdba363c243fd4ae016d2dbba79f56c931ec55581eb7dbfdac6661c9f73d3f40e1bb55ce888cf7e957b05a0ca91b142568c6e0385ec8e7bd19c3a53d24c361"}, {0x40, 0x103, 0x7, "c6c71960b169901c7dd2fbc0c0772d6ffb02e1aa7b664b54cacd05a2185baf57275f313d72807053b16ae4306b"}, {0x50, 0x109, 0x6, "cdf03af9049dd1b49554a55ad43426fa488151ab8f60a835e9a80e6e42287f56ac4e4aa33dfb96f4de862d057cfd10dfbb52646d9e5e70d8680316da6b16"}], 0x1508}, 0x0, 0x40014, 0x0, {0x0, r8}}, 0x9)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x10000000)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r5, 0x4018f50b, &(0x7f0000000000)={0x0, 0x40, 0x9})
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r5, 0x1f, 0x0, 0x40, 0x3}, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f0000000000)={0x766, {0x6, 0xef5e, 0x9, 0x2, 0x4}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0}, 0xffff)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r7, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r8 = eventfd(0x4)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r7, 0x7, &(0x7f0000000000)=r8, 0x1)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 3:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x3)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000b, 0x1010, 0xffffffffffffffff, 0x8000000)
r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(r3, r2, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)={0x84041, 0x24, 0x3}, &(0x7f00000001c0)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r5}}, 0x7)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

[ 2028.441151] FAULT_INJECTION: forcing a failure.
[ 2028.441151] name failslab, interval 1, probability 0, space 0, times 0
[ 2028.442955] CPU: 1 PID: 19700 Comm: syz-executor.2 Not tainted 5.10.123 #1
[ 2028.443937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2028.445530] Call Trace:
[ 2028.445901]  dump_stack+0x107/0x163
[ 2028.446415]  should_fail.cold+0x5/0xa
[ 2028.446950]  ? create_object.isra.0+0x3a/0xa20
[ 2028.447611]  should_failslab+0x5/0x10
[ 2028.448146]  kmem_cache_alloc+0x5b/0x350
[ 2028.448716]  ? percpu_ref_put_many.constprop.0+0x4e/0x100
[ 2028.449482]  create_object.isra.0+0x3a/0xa20
[ 2028.450092]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 2028.450809]  kmem_cache_alloc+0x159/0x350
[ 2028.451413]  security_file_alloc+0x34/0x170
[ 2028.452017]  __alloc_file+0xb6/0x310
[ 2028.452536]  alloc_empty_file+0x6d/0x170
[ 2028.453113]  path_openat+0xde/0x26c0
[ 2028.453646]  ? mark_held_locks+0x9e/0xe0
[ 2028.454226]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2028.454990]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.455616]  ? path_lookupat+0x850/0x850
[ 2028.456188]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2028.456967]  do_filp_open+0x17e/0x3c0
[ 2028.457497]  ? may_open_dev+0xf0/0xf0
[ 2028.458039]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2028.458804]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.459433]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2028.460174]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2028.460940]  ? find_held_lock+0x2c/0x110
[ 2028.461517]  do_open_execat+0x116/0x690
[ 2028.462078]  ? __ia32_sys_uselib+0x40/0x40
[ 2028.462676]  ? do_raw_spin_lock+0x121/0x260
[ 2028.463289]  ? rwlock_bug.part.0+0x90/0x90
[ 2028.463895]  bprm_execve+0x5b2/0x1b00
[ 2028.464434]  ? open_exec+0x70/0x70
[ 2028.464930]  ? memcpy+0x39/0x60
[ 2028.465390]  ? copy_string_kernel+0x3b6/0x450
[ 2028.466016]  do_execveat_common+0x765/0x8c0
[ 2028.466612]  ? bprm_execve+0x1b00/0x1b00
[ 2028.467204]  __x64_sys_execveat+0xed/0x130
[ 2028.467806]  do_syscall_64+0x33/0x40
[ 2028.468331]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2028.469051] RIP: 0033:0x7f48cbaccb19
[ 2028.469575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2028.472175] RSP: 002b:00007f48c9042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2028.473249] RAX: ffffffffffffffda RBX: 00007f48cbbdff60 RCX: 00007f48cbaccb19
[ 2028.474260] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 2028.475281] RBP: 00007f48c90421d0 R08: 0000000000000000 R09: 0000000000000000
[ 2028.476291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2028.477300] R13: 00007ffd6a10519f R14: 00007f48c9042300 R15: 0000000000022000
17:57:10 executing program 1:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r4, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000000)="f41c43deb894bc62ddea7ac7d182f82002f2", 0x7, 0x0, 0x1}, 0x3)
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r4, 0x0, &(0x7f00000005c0)={&(0x7f0000000240)=@can, 0x80, &(0x7f0000000500)=[{&(0x7f00000002c0)=""/153, 0x99}, {&(0x7f0000000380)=""/82, 0x52}, {&(0x7f00000001c0)=""/50, 0x32}, {&(0x7f0000000400)=""/193, 0xc1}], 0x4, &(0x7f0000000540)=""/76, 0x4c}, 0x0, 0x203}, 0x3ff)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 0:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
io_uring_enter(r4, 0x2f72, 0x7b86, 0x0, &(0x7f0000000180)={[0x3]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 5:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x9)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000000)={0x0, 0x0, 0x9})
ftruncate(r5, 0xffffffffffff8000)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x6)

17:57:10 executing program 4:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x8fa9, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ff2000/0xe000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x12, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
io_uring_enter(r3, 0x3cbb, 0x16da, 0x2, &(0x7f0000000180)={[0x2]}, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, {0x8060}}, 0x7fffffff)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 6:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080)={0x0, 0x2a8f, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

17:57:10 executing program 7:
r0 = syz_io_uring_setup(0x4364, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
syz_io_uring_setup(0x6b67, &(0x7f0000000180)={0x0, 0x9bb9, 0x2c8167b1039aa02, 0x2, 0x23, 0x0, r3}, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000240))

[ 2184.576509] INFO: task syz-executor.3:19750 blocked for more than 143 seconds.
[ 2184.578631]       Not tainted 5.10.123 #1
[ 2184.579767] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2184.581817] task:syz-executor.3  state:D stack:28112 pid:19750 ppid:   288 flags:0x00004004
[ 2184.583994] Call Trace:
[ 2184.584736]  __schedule+0x848/0x1e80
[ 2184.585891]  ? io_schedule_timeout+0x140/0x140
[ 2184.587412]  ? tctx_inflight+0xb9/0x230
[ 2184.588677]  ? __io_recvmsg_copy_hdr+0x330/0x330
[ 2184.589764]  schedule+0xcb/0x270
[ 2184.590533]  __io_uring_task_cancel+0x1ae/0x250
[ 2184.591574]  ? __io_uring_files_cancel+0x1b0/0x1b0
[ 2184.592665]  ? wait_woken+0x250/0x250
[ 2184.593531]  ? get_user_pages_remote+0x63/0x90
[ 2184.594547]  ? get_user_pages_remote+0x6c/0x90
[ 2184.595562]  bprm_execve+0x114/0x1b00
[ 2184.596417]  ? acct_arg_size+0xe0/0xe0
[ 2184.597250]  ? downgrade_write+0x3a0/0x3a0
[ 2184.598209]  ? open_exec+0x70/0x70
[ 2184.599009]  ? memcpy+0x39/0x60
[ 2184.599749]  ? copy_string_kernel+0x3b6/0x450
[ 2184.600752]  do_execveat_common+0x765/0x8c0
[ 2184.601722]  ? bprm_execve+0x1b00/0x1b00
[ 2184.602651]  __x64_sys_execveat+0xed/0x130
[ 2184.603596]  do_syscall_64+0x33/0x40
[ 2184.604432]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2184.605579] RIP: 0033:0x7f79461c0b19
[ 2184.606407] RSP: 002b:00007f7943736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2184.608079] RAX: ffffffffffffffda RBX: 00007f79462d3f60 RCX: 00007f79461c0b19
[ 2184.609668] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffffff
[ 2184.611239] RBP: 00007f794621af6d R08: 0000000000000000 R09: 0000000000000000
[ 2184.612811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2184.614387] R13: 00007fff2b3542ff R14: 00007f7943736300 R15: 0000000000022000
[ 2184.615981] 
[ 2184.615981] Showing all locks held in the system:
[ 2184.617381] 1 lock held by khungtaskd/23:
[ 2184.618307]  #0: ffffffff84df7460 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x269
[ 2184.620330] 1 lock held by in:imklog/178:
[ 2184.621210]  #0: ffff88800c4fb4f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[ 2184.623136] 
[ 2184.623516] =============================================
[ 2184.623516] 

VM DIAGNOSIS:
17:59:46  Registers:
info registers vcpu 0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822816cc RDI=ffffffff876d8fe0 RBP=ffffffff876d8fa0 RSP=ffff888008e1f8b8
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0edb247 R14=fffffbfff0edb1fe R15=dffffc0000000000
RIP=ffffffff82281720 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff2e69a7000 CR3=000000001aa0e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 0000000000000000 3f847ae147ae147b
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 3f73e956b4c916e0
YMM04=0000000000000000 0000000000000000 78651100657a696d 696e696d20636578
YMM05=0000000000000000 0000000000000000 0073747261747365 7220726f74756365
YMM06=0000000000000000 0000000000000000 206365786509006e 6567206365786508
YMM07=0000000000000000 0000000000000000 69646e6163206365 78650e007a7a7566
YMM08=0000000000000000 0000000000000000 6565732063657865 0a006873616d7320
YMM09=0000000000000000 0000000000000000 7a696d696e696d20 636578650d007364
YMM10=0000000000000000 0000000000000000 7473657220726f74 7563657865110065
YMM11=0000000000000000 0000000000000000 09006e6567206365 7865080073747261
YMM12=0000000000000000 0000000000000000 20636578650e007a 7a75662063657865
YMM13=0000000000000000 0000000000000000 20636578650b0065 74616469646e6163
YMM14=0000000000000000 0000000000000000 6e69682063657865 0a00656761697274
YMM15=0000000000000000 0000000000000000 00006c61746f7420 636578650a007374
info registers vcpu 1
RAX=dffffc0000000000 RBX=1ffff11002dd7ee5 RCX=0000000000000000 RDX=ffff888016ebf858
RSI=0000000000003e41 RDI=ffff88800f872000 RBP=ffff888019e296e8 RSP=ffff888016ebf6f8
R8 =ffff888016ebf748 R9 =ffff888019e29407 R10=ffffed10033c5280 R11=0000000000000001
R12=ffff888016ebf858 R13=ffff888019e29400 R14=dffffc0000000000 R15=0000000000003e41
RIP=ffffffff819c0279 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2898ae8700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0436962000 CR3=000000001a174000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 2036343a39353a37 31203332206e754a
YMM01=0000000000000000 0000000000000000 5d3231343738352e 34383132205b203a
YMM02=0000000000000000 0000000000000000 6c666e695f787463 74203f20205d3231
YMM03=0000000000000000 0000000000000000 72656b2072656c6c 616b7a7973203634
YMM04=0000000000000000 0000000000000000 6620383832202020 3a64697070203035
YMM05=0000000000000000 0000000000000000 61747320443a6574 6174732020332e72
YMM06=0000000000000000 0000000000000000 205d373138313835 2e34383132205b20
YMM07=0000000000000000 0000000000000000 732036343a39353a 3731203332206e75
YMM08=0000000000000000 0000000000000000 692022636f727022 3d76656420227374
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000